Mock Version: 1.3.4
Mock Version: 1.3.4
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'], nspawn_args=[]user='mockbuild'timeout=172800printOutput=Falseuid=1000env={'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'TERM': 'vt100', 'LANG': 'en_US.UTF-8'}chrootPath='/var/lib/mock/module-7e01f122edf0cdba-build-8455095-747358/root'gid=425shell=Falselogger=<mockbuild.trace_decorator.getLog object at 0x7f4d4938c400>)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'TERM': 'vt100', 'LANG': 'en_US.UTF-8'} and shell False
Building target platforms: x86_64
Building for target x86_64
Wrote: /builddir/build/SRPMS/nss-3.29.1-2.1.module_7e01f122.src.rpm
Child return code was: 0
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'], nspawn_args=[]user='mockbuild'timeout=172800printOutput=Falseuid=1000env={'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'TERM': 'vt100', 'LANG': 'en_US.UTF-8'}chrootPath='/var/lib/mock/module-7e01f122edf0cdba-build-8455095-747358/root'gid=425shell=Falselogger=<mockbuild.trace_decorator.getLog object at 0x7f4d4938c400>)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'TERM': 'vt100', 'LANG': 'en_US.UTF-8'} and shell False
Building target platforms: x86_64
Building for target x86_64
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.PwGg8h
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf nss-3.29.1
+ /usr/bin/gzip -dc /builddir/build/SOURCES/nss-3.29.1.tar.gz
+ /usr/bin/tar -xof -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd nss-3.29.1
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
Patch #2 (add-relro-linker-option.patch):
+ echo 'Patch #2 (add-relro-linker-option.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .relro --fuzz=0
patching file nss/coreconf/Linux.mk
Hunk #1 succeeded at 179 (offset 5 lines).
Patch #3 (renegotiate-transitional.patch):
+ echo 'Patch #3 (renegotiate-transitional.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .transitional --fuzz=0
patching file ./nss/lib/ssl/sslsock.c
Hunk #1 succeeded at 65 (offset -7 lines).
Patch #16 (nss-539183.patch):
+ echo 'Patch #16 (nss-539183.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .539183 --fuzz=0
patching file ./nss/cmd/httpserv/httpserv.c
Hunk #1 succeeded at 969 (offset 16 lines).
patching file ./nss/cmd/selfserv/selfserv.c
Hunk #1 succeeded at 1678 (offset -33 lines).
Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):
+ echo 'Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .noocsptest --fuzz=0
patching file nss/tests/chains/scenarios/scenarios
Hunk #1 succeeded at 18 (offset -32 lines).
Patch #47 (utilwrap-include-templates.patch):
+ echo 'Patch #47 (utilwrap-include-templates.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .templates --fuzz=0
patching file nss/lib/nss/config.mk
Patch #49 (nss-skip-bltest-and-fipstest.patch):
+ echo 'Patch #49 (nss-skip-bltest-and-fipstest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skipthem --fuzz=0
patching file ./nss/cmd/Makefile
Patch #50 (iquote.patch):
+ echo 'Patch #50 (iquote.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .iquote --fuzz=0
patching file ./nss/cmd/certcgi/Makefile
patching file ./nss/cmd/certutil/Makefile
patching file ./nss/cmd/lib/Makefile
patching file ./nss/cmd/modutil/Makefile
patching file ./nss/cmd/selfserv/Makefile
patching file ./nss/cmd/ssltap/Makefile
patching file ./nss/cmd/strsclnt/Makefile
patching file ./nss/cmd/tstclnt/Makefile
patching file ./nss/cmd/vfyserv/Makefile
patching file ./nss/coreconf/location.mk
patching file ./nss/gtests/pk11_gtest/Makefile
patching file ./nss/gtests/ssl_gtest/Makefile
Hunk #1 succeeded at 50 (offset 7 lines).
patching file ./nss/lib/certhigh/Makefile
patching file ./nss/lib/cryptohi/Makefile
patching file ./nss/lib/nss/Makefile
patching file ./nss/lib/pk11wrap/Makefile
patching file ./nss/lib/ssl/Makefile
Hunk #1 succeeded at 56 (offset 7 lines).
Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):
+ echo 'Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .1185708_3des --fuzz=0
patching file ./nss/lib/ssl/ssl3con.c
Hunk #1 succeeded at 108 (offset -10 lines).
~/build/BUILD/nss-3.29.1/nss ~/build/BUILD/nss-3.29.1
Patch #59 (nss-check-policy-file.patch):
+ pushd nss
+ echo 'Patch #59 (nss-check-policy-file.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .check_policy_file --fuzz=0
patching file lib/pk11wrap/pk11pars.c
Patch #62 (nss-skip-util-gtest.patch):
+ echo 'Patch #62 (nss-skip-util-gtest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skip_util_gtest --fuzz=0
patching file ./gtests/manifest.mn
Patch #63 (nss-gcc7.patch):
+ echo 'Patch #63 (nss-gcc7.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .gcc7 --fuzz=0
patching file lib/libpkix/pkix_pl_nss/pki/pkix_pl_ocsprequest.c
Patch #64 (nss-1334976-1336487.patch):
+ echo 'Patch #64 (nss-1334976-1336487.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .1334976-1336487 --fuzz=0
patching file cmd/addbuiltin/addbuiltin.c
patching file cmd/lib/secutil.c
patching file lib/ckfw/builtins/certdata.txt
patching file lib/nss/nss.def
~/build/BUILD/nss-3.29.1
+ popd
+ /usr/bin/cp ./nss/lib/softoken/lowkeyi.h ./nss/cmd/rsaperf
+ /usr/bin/cp ./nss/lib/softoken/lowkeyti.h ./nss/cmd/rsaperf
+ /usr/bin/mv ./nss/lib/util/verref.h ./nss/verref.h
+ /usr/bin/rm -rf ./nss/lib/freebl
+ /usr/bin/rm -rf ./nss/lib/softoken
+ /usr/bin/rm -rf ./nss/lib/util
+ /usr/bin/rm -rf ./nss/cmd/bltest
+ /usr/bin/rm -rf ./nss/cmd/fipstest
+ /usr/bin/rm -rf ./nss/cmd/rsaperf_low
+ /usr/bin/rm -rf ./nss/external_tests/util_gtests
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.rmfnIm
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ NSS_NO_PKCS11_BYPASS=1
+ export NSS_NO_PKCS11_BYPASS
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ XCFLAGS='-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic'
+ export XCFLAGS
+ PKG_CONFIG_ALLOW_SYSTEM_LIBS=1
+ PKG_CONFIG_ALLOW_SYSTEM_CFLAGS=1
+ export PKG_CONFIG_ALLOW_SYSTEM_LIBS
+ export PKG_CONFIG_ALLOW_SYSTEM_CFLAGS
++ /usr/bin/pkg-config --cflags-only-I nspr
++ sed s/-I//
+ NSPR_INCLUDE_DIR='/usr/include/nspr4 '
+ NSPR_LIB_DIR=/usr/lib64
+ export NSPR_INCLUDE_DIR
+ export NSPR_LIB_DIR
++ /usr/bin/pkg-config --cflags-only-I nss-util
++ sed s/-I//
+ export 'NSSUTIL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ NSSUTIL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export NSSUTIL_LIB_DIR=/usr/lib64
+ NSSUTIL_LIB_DIR=/usr/lib64
++ /usr/bin/pkg-config --cflags-only-I nss-softokn
++ sed s/-I//
+ export 'FREEBL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ FREEBL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export FREEBL_LIB_DIR=/usr/lib64
+ FREEBL_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_FREEBL=1
+ USE_SYSTEM_FREEBL=1
+ export NSS_USE_SYSTEM_FREEBL=1
+ NSS_USE_SYSTEM_FREEBL=1
++ /usr/bin/pkg-config --libs nss-softokn
+ export 'FREEBL_LIBS=-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ FREEBL_LIBS='-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_NSSUTIL=1
+ USE_SYSTEM_NSSUTIL=1
+ export USE_SYSTEM_SOFTOKEN=1
+ USE_SYSTEM_SOFTOKEN=1
+ export NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_USE_SYSTEM_SQLITE=1
+ export NSS_USE_SYSTEM_SQLITE
+ USE_64=1
+ export USE_64
+ export IN_TREE_FREEBL_HEADERS_FIRST=1
+ IN_TREE_FREEBL_HEADERS_FIRST=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export NSS_DISABLE_TLS_1_3=1
+ NSS_DISABLE_TLS_1_3=1
+ /usr/bin/make -C ./nss/coreconf
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic nsinstall.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pathsub.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -m64 -Wl,-z,relro   -lpthread  -ldl -lc
true -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
+ /usr/bin/make -C ./nss/lib/dbm
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
Creating ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
Creating ../../../../dist/private/dbm
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
cd include; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
make[1]: Nothing to be done for 'libs'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/db.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic db.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic h_bigkey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_func.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic h_func.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic h_log2.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_page.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic h_page.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic hash.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic hash_buf.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic mktemp.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dirent.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic dirent.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/db.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_func.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_page.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dirent.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
+ export POLICY_FILE=nss.config
+ POLICY_FILE=nss.config
+ export POLICY_PATH=/etc/crypto-policies/back-ends
+ POLICY_PATH=/etc/crypto-policies/back-ends
+ /usr/bin/mkdir -p ./dist/private/nss
+ /usr/bin/mv ./nss/verref.h ./dist/private/nss/verref.h
+ /usr/bin/make -C ./nss
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss'
cd coreconf; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
true -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd lib; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd dbm; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd base; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
Creating ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssbaset.h nssbase.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 baset.h base.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cd dev; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ckhelper.h devm.h devtm.h devt.h dev.h nssdevt.h nssdev.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cd pki; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pki.h pkit.h nsspkit.h nsspki.h pkistore.h pki3hack.h pkitm.h pkim.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cd libpkix; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd include; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd certdb; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cert.h certt.h certdb.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 genname.h xconst.h certxutl.h certi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cd certhigh; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocsp.h ocspt.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocspti.h ocspi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmod.h secmodt.h secpkcs5.h pk11func.h pk11pub.h pk11priv.h pk11sdr.h pk11pqg.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmodi.h dev3hack.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cryptohi.h cryptoht.h key.h keyhi.h keyt.h keythi.h sechash.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 keyi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cd nss; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nss.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssrenam.h nssoptions.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cd ssl; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ssl.h sslt.h sslerr.h sslproto.h preenc.h ../../../dist/public/nss
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cd pkcs7; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmime.h secpkcs7.h pkcs7t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkcs12t.h pkcs12.h p12plcy.h p12.h p12t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cd smime; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cms.h cmst.h smime.h cmsreclist.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cd crmf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmf.h crmft.h cmmf.h cmmft.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmfi.h crmfit.h cmmfi.h cmmfit.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cd jar; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 jar.h jar-ds.h jarfile.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cd ckfw; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd builtins; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssckbi.h ../../../../dist/public/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssck.api nssckepv.h nssckft.h nssckfw.h nssckfwc.h nssckfwt.h nssckg.h nssckmdt.h nssckt.h ../../../dist/public/nss
cd builtins; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ck.h ckfw.h ckfwm.h ckfwtm.h ckmd.h ckt.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd sysinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd cmd; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd lib; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 basicutil.h secutil.h pk11table.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cd shlibsign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd mangle; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cd atob; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cd btoa; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cd certcgi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cd certutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cd chktest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cd crlutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cd crmftest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cd dbtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cd derdump; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cd digest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cd httpserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cd listsuites; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cd makepqg; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cd multinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cd p7content; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cd p7env; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cd p7sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cd p7verify; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cd pk12util; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cd pp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cd signtool; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cd signver; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cd smimetools; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cd ssltap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cd tests; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cd tstclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cd modutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd gtests; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd google_test; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
cd common; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
cd der_gtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd coreconf; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
true -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd lib; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd dbm; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd base; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic arena.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic error.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic errorval.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic hashops.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic libc.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic tracker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic item.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic utf8.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic list.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic hash.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cd dev; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic devslot.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic devtoken.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic devutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ckhelper.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cd pki; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic asymmkey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certificate.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cryptocontext.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic symmkey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic trustdomain.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic tdcache.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certdecode.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkistore.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkibase.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pki3hack.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cd libpkix; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_certselector.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_comcertselparams.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_crlselector.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_comcrlselparams.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_basicconstraintschecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_certchainchecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_crlchecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_ekuchecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_expirationchecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_namechainingchecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_nameconstraintschecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_ocspchecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_revocationmethod.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_revocationchecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_policychecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_signaturechecker.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_targetcertchecker.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_trustanchor.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_procparams.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_valparams.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_resourcelimits.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_buildresult.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_policynode.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_valresult.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_verifynode.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_store.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_validate.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_lifecycle.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_build.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_tools.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_error.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_logger.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_list.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_errpaths.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_basicconstraints.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_cert.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_certpolicyinfo.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_certpolicymap.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_certpolicyqualifier.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_crl.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_crldp.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_crlentry.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_date.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_generalname.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_infoaccess.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_nameconstraints.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_ocsprequest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_ocspresponse.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_publickey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_x500name.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_ocspcertid.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_bigint.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_bytearray.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_common.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_error.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_hashtable.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_lifecycle.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_mem.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_monitorlock.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_mutex.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_object.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_oid.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_primhash.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_rwlock.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_string.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_aiamgr.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_colcertstore.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_httpcertstore.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_httpdefaultclient.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_ldaptemplates.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_ldapcertstore.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_ldapresponse.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_ldaprequest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_ldapdefaultclient.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_nsscontext.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_pk11certstore.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix_pl_socket.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
../../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a ../../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd certdb; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic alg1485.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certdb.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certv3.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certxutl.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crl.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic genname.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic stanpcertdb.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic polcyxtn.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic secname.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic xauthkid.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic xbsconst.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic xconst.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cd certhigh; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certhtml.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certreq.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crlv2.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ocsp.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ocspsig.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certhigh.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certvfy.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certvfypkix.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic xcrldist.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic dev3hack.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11akey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11auth.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11cert.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11cxt.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11err.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11kea.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11list.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11load.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11mech.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11merge.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11nobj.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11obj.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11pars.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11pbe.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11pk12.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11pqg.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11sdr.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11skey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11slot.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11util.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sechash.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic seckey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic secsign.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic secvfy.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic dsautil.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cd nss; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic nssinit.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic nssoptions.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic nssver.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic utilwrap.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
grep -v ';-' nss.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss.def
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnss3.so  -Wl,--version-script,Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss.def -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o ../certhigh/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o ../cryptohi/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o ../cryptohi/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o ../cryptohi/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o ../cryptohi/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o ../cryptohi/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o ../pk11wrap/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o ../certdb/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o ../pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o ../dev/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o ../dev/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o ../dev/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o ../dev/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o ../base/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o ../libpkix/pkix/certsel/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o ../libpkix/pkix/certsel/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o ../libpkix/pkix/checker/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o ../libpkix/pkix/params/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o ../libpkix/pkix/params/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o ../libpkix/pkix/params/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o ../libpkix/pkix/params/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o ../libpkix/pkix/results/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o ../libpkix/pkix/results/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o ../libpkix/pkix/results/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o ../libpkix/pkix/results/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o ../libpkix/pkix/top/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o ../libpkix/pkix/top/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o ../libpkix/pkix/top/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o ../libpkix/pkix/util/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o ../libpkix/pkix/util/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o ../libpkix/pkix/util/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o ../libpkix/pkix/util/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o ../libpkix/pkix/util/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o ../libpkix/pkix/crlsel/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o ../libpkix/pkix/crlsel/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o ../libpkix/pkix/store/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o   -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cd ssl; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic dtlscon.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic prelib.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ssl3con.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ssl3gthr.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslauth.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslcon.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ssldef.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslenum.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslerr.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslerrstrs.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslinit.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ssl3ext.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ssl3exthandle.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslmutex.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslnonce.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslreveal.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslsecur.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslsnce.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslsock.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ssltrace.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslver.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic authcert.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmpcert.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslinfo.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ssl3ecc.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic tls13con.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic tls13exthandle.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic tls13hkdf.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslcert.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sslgrp.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic unix_err.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
grep -v ';-' ssl.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl.def
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libssl3.so  -Wl,--version-script,Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl.def -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o    -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
chmod +x Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cd pkcs7; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certread.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7common.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7create.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7decode.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7encode.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7local.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic secmime.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p12local.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p12creat.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p12dec.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p12plcy.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p12tmpl.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p12e.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p12d.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cd smime; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsarray.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsasn1.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsattr.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmscinfo.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmscipher.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsdecode.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsdigdata.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsdigest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsencdata.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsencode.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsenvdata.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsmessage.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmspubkey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsrecinfo.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsreclist.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmssigdata.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmssiginfo.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsudf.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic smimemessage.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic smimeutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic smimever.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
grep -v ';-' smime.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smime.def
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libsmime3.so  -Wl,--version-script,Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smime.def -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o ../pkcs12/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o ../pkcs12/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o ../pkcs12/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o ../pkcs12/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o ../pkcs12/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o ../pkcs12/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o ../pkcs12/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o ../pkcs7/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o ../pkcs7/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o ../pkcs7/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o ../pkcs7/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o ../pkcs7/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o ../pkcs7/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o ../pkcs7/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o   -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cd crmf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crmfenc.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crmftmpl.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crmfreq.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crmfpop.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crmfdec.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crmfget.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crmfcont.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmmfasn1.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmmfresp.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmmfrec.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmmfchal.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/servget.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic servget.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic encutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcli.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic respcli.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic respcmn.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/challcli.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic challcli.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic asn1cmn.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/servget.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcli.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/challcli.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cd jar; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic jarver.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic jarsign.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic jar.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic jar-ds.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic jarfile.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarint.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic jarint.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarver.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarint.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cd ckfw; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crypto.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crypto.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/find.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic find.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic hash.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instance.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic instance.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mutex.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic mutex.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/object.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic object.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/session.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic session.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sessobj.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/slot.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic slot.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/token.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic token.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/wrap.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic wrap.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic mechanism.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crypto.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/find.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instance.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mutex.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/object.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/session.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/slot.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/token.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/wrap.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
cd builtins; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/anchor.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic anchor.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/constants.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic constants.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bfind.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic bfind.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/binst.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic binst.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bobject.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic bobject.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bsession.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic bsession.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bslot.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic bslot.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoken.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic btoken.c
perl certdata.perl certdata.txt Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ckbiver.c
grep -v ';-' nssckbi.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnssckbi.so  -Wl,--version-script,Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/anchor.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/constants.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bfind.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/binst.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bobject.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bsession.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bslot.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoken.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o   ../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a ../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so ../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd sysinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic nsssysinit.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnsssysinit.so  -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o    -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd cmd; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd lib; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic basicutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic secutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic secpwd.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derprint.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic derprint.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic moreoids.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pppolicy.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ffs.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ffs.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11table.c
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derprint.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ffs.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cd shlibsign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic shlibsign.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -m64 -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
cd mangle; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic mangle.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle.o -m64 -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle ../../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic addbuiltin.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cd atob; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic atob.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cd btoa; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic btoa.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cd certcgi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certcgi.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cd certutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certext.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certext.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic keystuff.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certext.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cd chktest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic chktest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cd crlutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crlgen_lex.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crlgen.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic crlutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cd crmftest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic testcrmf.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cd dbtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic dbtest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cd derdump; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic derdump.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cd digest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic digest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cd httpserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic httpserv.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cd listsuites; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic listsuites.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cd makepqg; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic makepqg.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cd multinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic multinit.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ocspclnt.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ocspresp.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic oidcalc.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cd p7content; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7content.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cd p7env; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7env.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cd p7sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7sign.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cd p7verify; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic p7verify.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cd pk12util; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk12util.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11ectest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11gcmtest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11mode.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk1sign.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cd pp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pp.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pwdecrypt.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic rsaperf.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/defkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic defkey.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/defkey.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sdrtest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic selfserv.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cd signtool; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic signtool.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certgen.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic certgen.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/javascript.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic javascript.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic list.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic sign.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/util.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic util.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/verify.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic verify.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/zip.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic zip.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certgen.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/javascript.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sign.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/util.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/verify.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/zip.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cd signver; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic signver.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk7print.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cd smimetools; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic cmsutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cd ssltap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic ssltap.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic strsclnt.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic symkeyutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cd tests; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic baddbdir.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic conflict.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic dertimetest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic encodeinttest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic nonspr10.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic remtest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic secmodtest.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cd tstclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic tstclnt.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic vfychain.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic vfyserv.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic vfyutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cd modutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic modutil.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pk11.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instsec.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic instsec.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic install.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/installparse.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic installparse.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic install-ds.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic lex.Pk11Install_yy.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instsec.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/installparse.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic pkix-errcodes.c
cc -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd gtests; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd google_test; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
if test ! -d Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; then rm -rf Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; ../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; fi
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -Igtest/include/ -Igtest -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/gtest -I../../../dist/private/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic -std=c++0x gtest/src/gtest-all.cc
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
ar cr Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o
echo Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
rm -f Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
g++ -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro  -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o   ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
chmod +x Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
cd common; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
if test ! -d Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic -std=c++0x gtests.cc
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
cd der_gtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
if test ! -d Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic -std=c++0x der_getint_unittest.cc
if test ! -d Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic -std=c++0x der_private_key_import_unittest.cc
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_gtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a  ../common/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_gtest ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
if test ! -d Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/config.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x config.cc
if test ! -d Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x nsskeys.cc
if test ! -d Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x nss_bogo_shim.cc
g++ -o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=generic -I../../lib/ssl Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/config.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -m64 -Wl,-z,relro ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim ../../../dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss'
~/build/BUILD/nss-3.29.1/nss ~/build/BUILD/nss-3.29.1
+ unset NSS_BLTEST_NOT_AVAILABLE
+ pushd ./nss
+ /usr/bin/make clean_docs build_docs
/usr/bin/make -C ./doc clean
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
rm -f date.xml version.xml *.tar.bz2
rm -f html/*.proc
rm -fr nss-man ascii
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
/usr/bin/make -C ./doc
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
date +"%e %B %Y" | tr -d '\n' > date.xml
echo -n  > version.xml
mkdir -p html
mkdir -p nroff
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
~/build/BUILD/nss-3.29.1
+ popd
+ /usr/bin/mkdir -p ./dist/docs/nroff
+ /usr/bin/cp ./nss/doc/nroff/certutil.1 ./nss/doc/nroff/cmsutil.1 ./nss/doc/nroff/crlutil.1 ./nss/doc/nroff/derdump.1 ./nss/doc/nroff/modutil.1 ./nss/doc/nroff/pk12util.1 ./nss/doc/nroff/pp.1 ./nss/doc/nroff/signtool.1 ./nss/doc/nroff/signver.1 ./nss/doc/nroff/ssltap.1 ./nss/doc/nroff/vfychain.1 ./nss/doc/nroff/vfyserv.1 ./dist/docs/nroff
+ /usr/bin/mkdir -p ./dist/pkgconfig
+ /usr/bin/cat /builddir/build/SOURCES/nss.pc.in
+ sed -e s,%libdir%,/usr/lib64,g -e s,%prefix%,/usr,g -e s,%exec_prefix%,/usr,g -e s,%includedir%,/usr/include/nss3,g -e s,%NSS_VERSION%,3.29.1,g -e s,%NSPR_VERSION%,4.13.0,g -e s,%NSSUTIL_VERSION%,3.29.1,g -e s,%SOFTOKEN_VERSION%,3.29.1,g
++ grep '#define.*NSS_VMAJOR'
++ awk '{print $3}'
++ cat nss/lib/nss/nss.h
+ NSS_VMAJOR=3
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMINOR'
++ awk '{print $3}'
+ NSS_VMINOR=29
++ cat nss/lib/nss/nss.h
++ awk '{print $3}'
++ grep '#define.*NSS_VPATCH'
+ NSS_VPATCH=1
+ export NSS_VMAJOR
+ export NSS_VMINOR
+ export NSS_VPATCH
+ sed -e s,@libdir@,/usr/lib64,g -e s,@prefix@,/usr,g -e s,@exec_prefix@,/usr,g -e s,@includedir@,/usr/include/nss3,g -e s,@MOD_MAJOR_VERSION@,3,g -e s,@MOD_MINOR_VERSION@,29,g -e s,@MOD_PATCH_VERSION@,1,g
+ /usr/bin/cat /builddir/build/SOURCES/nss-config.in
+ chmod 755 ./dist/pkgconfig/nss-config
+ /usr/bin/cat /builddir/build/SOURCES/setup-nsssysinit.sh
+ chmod 755 ./dist/pkgconfig/setup-nsssysinit.sh
+ /usr/bin/cp ./nss/lib/ckfw/nssck.api ./dist/private/nss/
+ date '+%e %B %Y'
+ tr -d '\n'
+ echo -n 3.29.1
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/nss-config.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/setup-nsssysinit.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/pkcs11.txt.xml .
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man nss-config.xml
Note: Writing nss-config.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man setup-nsssysinit.xml
Note: Writing setup-nsssysinit.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man pkcs11.txt.xml
Note: Writing pkcs11.txt.5
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert8.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert9.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key3.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key4.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/secmod.db.xml .
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert8.db.xml
Note: Writing cert8.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert9.db.xml
Note: Writing cert9.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key3.db.xml
Note: Writing key3.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key4.db.xml
Note: Writing key4.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man secmod.db.xml
Note: Writing secmod.db.5
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.SMKH4f
+ umask 022
+ cd /builddir/build/BUILD
+ '[' /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64 '!=' / ']'
+ rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64
++ dirname /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64
+ mkdir -p /builddir/build/BUILDROOT
+ mkdir /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64
+ cd nss-3.29.1
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3/templates
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/pkgconfig
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/doc/nss-tools
+ mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1
+ mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man5
+ touch /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/libnssckbi.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/libnssckbi.so
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//etc/pki/nssdb
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert8.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//etc/pki/nssdb/cert8.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key3.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//etc/pki/nssdb/key3.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-secmod.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//etc/pki/nssdb/secmod.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert9.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//etc/pki/nssdb/cert9.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key4.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//etc/pki/nssdb/key4.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/system-pkcs11.txt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//etc/pki/nssdb/pkcs11.txt
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/certutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/cmsutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/crlutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/modutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/signtool /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/signver /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/ssltap /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/atob /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/btoa /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/derdump /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/listsuites /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/ocspclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pp /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/selfserv /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/strsclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/symkeyutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/tstclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/vfyserv /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/vfychain /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/nss/unsupported-tools
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cert.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certdb.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmf.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cms.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmsreclist.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmst.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmf.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptohi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptoht.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar-ds.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jarfile.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/key.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyhi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keythi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nss.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbase.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbaset.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckbi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckepv.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfw.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwc.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckg.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckmdt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocsp.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocspt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12plcy.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11func.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pqg.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11priv.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pub.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11sdr.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs7t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/preenc.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sechash.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmime.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmod.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmodt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs5.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs7.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/smime.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ssl.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslerr.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslproto.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3
+ for file in dist/private/nss/nssck.api
+ /usr/bin/install -p -m 644 dist/private/nss/nssck.api /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/include/nss3/templates
+ /usr/bin/install -p -m 644 ./dist/pkgconfig/nss.pc /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/lib64/pkgconfig/nss.pc
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/nss-config /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin/nss-config
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin/setup-nsssysinit.sh
+ ln -r -s -f /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64//usr/bin/setup-nsssysinit
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 nss-config.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/nss-config.1
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 setup-nsssysinit.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/setup-nsssysinit.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/certutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/certutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/cmsutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/cmsutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/crlutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/crlutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/derdump.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/derdump.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/modutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/modutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/pk12util.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/pk12util.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signtool.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/signtool.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signver.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/signver.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/ssltap.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/ssltap.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfychain.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/vfychain.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfyserv.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man1/vfyserv.1
+ install -c -m 644 ./dist/docs/nroff/pp.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/doc/nss-tools/pp.1
+ for f in pkcs11.txt
+ install -c -m 644 pkcs11.txt.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man5/pkcs11.txt.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert8.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man5/cert8.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert9.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man5/cert9.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key3.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man5/key3.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key4.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man5/key4.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 secmod.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/man/man5/secmod.db.5
+ /usr/lib/rpm/find-debuginfo.sh --strict-build-id -m --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 110000000 /builddir/build/BUILD/nss-3.29.1
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/libnssckbi.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/btoa
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/tstclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/derdump
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/vfychain
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/symkeyutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/listsuites
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/pp
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/strsclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/vfyserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/atob
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/selfserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/nss/unsupported-tools/ocspclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/libssl3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/libnsssysinit.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/libsmime3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/lib64/libnss3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/bin/signtool
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/bin/signver
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/bin/pk12util
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/bin/modutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/bin/certutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/bin/cmsutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/bin/crlutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/bin/ssltap
/usr/lib/rpm/sepdebugcrcfix: Updated 25 CRC32s, 0 CRC32s did match.
cpio: nss-3.29.1/nss/cmd/modutil/lex.Pk11Install_yy.cpp: Cannot stat: No such file or directory
cpio: nss-3.29.1/nss/cmd/modutil/ytab.c: Cannot stat: No such file or directory
25228 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/brp-compress
+ /usr/lib/rpm/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/brp-python-bytecompile /usr/bin/python 1
+ /usr/lib/rpm/brp-python-hardlink
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.QC76rA
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ '[' 0 -eq 1 ']'
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ USE_64=1
+ export USE_64
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export NSS_DISABLE_TLS_1_3=1
+ NSS_DISABLE_TLS_1_3=1
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export NSS_IGNORE_SYSTEM_POLICY=1
+ NSS_IGNORE_SYSTEM_POLICY=1
++ find ./nss/tests
++ grep -c ' '
+ SPACEISBAD=0
+ :
+ '[' 0 -ne 0 ']'
++ perl -e 'print 9000 + int rand 1000'
+ MYRAND=9247
+ echo 9247
9247
+ RANDSERV=selfserv_9247
+ echo selfserv_9247
selfserv_9247
++ ls -d ./dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ DISTBINDIR=./dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ echo ./dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
./dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
++ pwd
+ pushd /builddir/build/BUILD/nss-3.29.1
~/build/BUILD/nss-3.29.1 ~/build/BUILD/nss-3.29.1
+ cd ./dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ ln -s selfserv selfserv_9247
+ popd
~/build/BUILD/nss-3.29.1
+ find ./nss/tests -type f
+ grep -v '\.db$'
+ xargs grep -lw selfserv
+ grep -vw CVS
+ grep -v '\.crl$'
+ xargs -l perl -pi -e 's/\bselfserv\b/selfserv_9247/g'
+ grep -v '\.crt$'
+ killall selfserv_9247
selfserv_9247: no process found
+ :
+ rm -rf ./tests_results
~/build/BUILD/nss-3.29.1/nss/tests ~/build/BUILD/nss-3.29.1
+ pushd ./nss/tests/
++ echo
+ SKIP_NSS_TEST_SUITE=
+ '[' x == x ']'
+ HOST=localhost
+ DOMSUF=localdomain
+ PORT=9247
+ NSS_CYCLES=
+ NSS_TESTS='libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests'
+ NSS_SSL_TESTS=
+ NSS_SSL_RUN=
+ ./all.sh
testdir is /builddir/build/BUILD/nss-3.29.1/tests_results/security
init.sh init: Creating /builddir/build/BUILD/nss-3.29.1/tests_results/security
which: no domainname in (.:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin)
********************************************
   Platform: Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ
   Results: localhost.1
********************************************
init.sh init: Testing PATH .:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin against LIB /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Tue May  2 15:15:48 UTC 2017
TIMESTAMP libpkix END: Tue May  2 15:15:48 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:15:48 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #1: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -f ../tests.pw
cert.sh: #2: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #3: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #5: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -f ../tests.pw
cert.sh: #6: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #7: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #9: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #10: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #11: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #12: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #13: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -f ../tests.pw
cert.sh: #14: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #15: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #16: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #17: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #18: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #19: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #20: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #21: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #22: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #23: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #24: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #25: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #26: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #27: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #28: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #29: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #30: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #31: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #32: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #33: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #34: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #35: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #36: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #37: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #38: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #39: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #40: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #41: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #42: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #43: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #44: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #45: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #46: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #47: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #48: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #49: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw
cert.sh: #50: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #51: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #52: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #53: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #54: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #55: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #56: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #57: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #58: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #59: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #60: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #61: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #62: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #63: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #64: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #65: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #66: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #67: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #68: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #69: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #70: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #71: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #72: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #73: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #74: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #75: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #76: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #77: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #78: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw
cert.sh: #79: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #80: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #81: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #82: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #83: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #84: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #85: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #86: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #87: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #88: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #89: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #90: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #91: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #92: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #93: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #94: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #95: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #96: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #97: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #98: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #99: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #100: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #101: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #102: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #103: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #104: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #105: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #106: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #107: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw
cert.sh: #108: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #109: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA.ca.cert
cert.sh: #110: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #111: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #112: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #113: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #114: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #115: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #116: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #117: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #118: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #119: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #120: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #121: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #122: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #123: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #124: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #125: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #126: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #127: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #128: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #129: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA.ca.cert
cert.sh: #130: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #131: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #132: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #133: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #134: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #135: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #136: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #137: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #138: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #139: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #140: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #141: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #142: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #143: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #144: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #145: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #146: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #147: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #148: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #149: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #150: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #151: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #152: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #153: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #154: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #155: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #156: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #157: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #158: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #159: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #160: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #161: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #162: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #163: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #164: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #165: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw
cert.sh: #166: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #167: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #168: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #169: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #170: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #171: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #172: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #173: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #174: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #175: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #176: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #177: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #178: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #179: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #180: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #181: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #182: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #183: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #184: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #185: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw
cert.sh: #186: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #187: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #188: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #189: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #190: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #191: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #192: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #193: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #194: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #195: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #196: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #197: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #198: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #199: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #200: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #201: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #202: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #203: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #204: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #205: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw
cert.sh: #206: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #207: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA.ca.cert
cert.sh: #208: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #209: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #210: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #211: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #212: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #213: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #214: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #215: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #216: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #217: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #218: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #219: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #220: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #221: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #222: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #223: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #224: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #225: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw
cert.sh: #226: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #227: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA.ca.cert
cert.sh: #228: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #229: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #230: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #231: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #232: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #233: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #234: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #235: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #236: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #237: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #238: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #239: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #240: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #241: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #242: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #243: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #244: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #245: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #246: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #247: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #248: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #249: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #250: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #251: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #252: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #253: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -f ../tests.fipspw
cert.sh: #254: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #255: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #256: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #257: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw
cert.sh: #258: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #259: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #260: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #261: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #262: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #263: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #264: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #265: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #266: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #267: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #268: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #269: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw
cert.sh: #270: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #271: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #272: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #273: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #274: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #275: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #276: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #277: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #278: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #279: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #280: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #281: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #282: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #283: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #284: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #285: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #286: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #287: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #288: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #289: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:15:58 2017
            Not After : Wed Aug 02 15:15:58 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:35:e0:80:56:98:39:1b:4c:c8:94:de:89:e1:be:75:
                    4b:02:86:a0:bb:5d:11:fa:c8:39:ea:91:84:78:f3:1c:
                    06:71:59:8b:76:28:f4:48:70:f5:0f:87:fc:43:15:72:
                    85:f6:56:08:a7:12:c4:ea:26:2c:85:81:31:a7:41:66:
                    bf:58:9a:dc:e4:b3:4b:98:26:b0:c9:a0:18:d1:ce:24:
                    30:99:52:62:fd:d5:f3:ac:09:02:76:fc:cd:1a:89:92:
                    57:f6:50:a8:a4:fa:c7:c6:d5:ed:f1:d0:8d:94:70:76:
                    d4:66:e6:87:16:7a:bb:e4:09:03:5e:1c:80:35:36:60:
                    f2:59:5f:ca:a8:51:c9:36:10:27:79:01:ba:1f:0b:16:
                    40:f3:36:88:d9:b0:8b:67:79:31:ce:e7:d2:4e:19:1a:
                    07:ad:51:fb:c2:e3:02:b4:af:ab:52:62:5f:ff:bb:76:
                    31:ae:4b:67:78:3c:9b:b5:e7:49:c0:5d:27:3a:7b:90:
                    a8:18:e1:fa:bc:5d:93:bc:03:4a:3e:8b:9b:a0:d1:85:
                    ef:e1:71:96:9b:ce:b2:49:5b:96:01:74:b7:ae:b1:90:
                    15:e7:18:82:6a:42:27:f2:f4:d9:9d:71:d1:a2:57:8c:
                    f1:8b:f8:6d:2d:88:13:7a:a0:e0:d9:8f:d0:fb:7b:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:fe:3e:b5:e4:0f:d0:05:83:5a:33:64:67:76:4f:39:
        56:a6:32:cf:05:7a:5d:60:85:5c:c4:bb:e6:d2:f5:91:
        9b:fa:fe:a6:6c:f9:54:48:93:a6:38:95:af:1e:0a:db:
        fe:ad:c9:88:1f:25:85:59:2b:60:bf:20:f1:77:68:7f:
        ef:72:ee:e0:1a:d5:2d:a1:ef:c2:24:66:92:fd:54:54:
        fa:6c:4c:73:d3:90:73:3f:1b:bb:2f:af:ca:c8:5c:48:
        56:30:98:b2:dd:a8:8c:7b:7f:ad:49:68:c1:f0:5a:f8:
        1b:35:1c:75:e1:12:70:f8:07:3c:2c:6d:a5:a3:b2:da:
        f0:0a:5c:24:55:c1:c3:62:5b:7b:24:31:8a:39:b0:3d:
        60:a7:c0:f7:53:5f:f1:2e:8b:ee:00:c1:1e:82:d8:92:
        41:74:39:de:f5:12:b4:61:48:0b:66:6a:51:95:91:59:
        f8:ca:30:01:76:85:33:b7:3a:77:69:33:1e:5a:37:8e:
        e2:59:42:a9:64:af:15:4e:15:34:0d:4f:b3:a0:32:cb:
        a4:60:bf:2d:3a:4a:26:7f:17:2d:c5:91:a2:e0:84:78:
        b3:bc:6d:b7:57:3a:32:61:8e:80:b2:6e:92:d5:67:cb:
        22:38:41:50:c7:7e:7f:e4:0b:e6:d8:b9:e8:fd:4c:df
    Fingerprint (SHA-256):
        30:51:E3:CF:4B:38:A6:4A:ED:95:69:38:98:58:F3:C9:83:F6:C8:F8:F8:2D:0E:03:CE:70:F0:79:82:2A:6B:2F
    Fingerprint (SHA1):
        DA:E6:B9:E1:43:38:1C:1C:64:04:2B:F5:77:02:34:C7:79:B1:CD:C1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #290: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:15:58 2017
            Not After : Wed Aug 02 15:15:58 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:2d:15:c1:36:db:5a:e1:db:08:a3:06:f6:5b:7e:8b:
                    f0:44:39:ca:ca:5a:63:5b:58:ef:8c:d7:3a:bb:23:8d:
                    41:76:eb:a4:0a:2e:5e:de:e6:11:3b:2e:aa:4c:f5:5e:
                    70:3f:9e:5f:f6:98:6f:15:34:f6:d8:82:c3:c6:cc:ae:
                    ab:83:e3:3c:c6:92:c2:24:83:cf:20:3c:a2:1e:c8:d1:
                    47:0d:ff:50:cb:1b:8d:98:4c:38:3f:ee:f3:2a:7e:2c:
                    da:94:ae:e7:4d:f8:8c:05:b4:71:56:48:36:c9:ab:9c:
                    36:0e:97:74:03:f2:ee:e3:31:b0:ed:a6:8d:5b:85:2f:
                    97:d7:59:70:35:88:d4:53:e9:7f:3e:9a:66:14:14:49:
                    9c:20:d9:b2:bb:03:19:61:a7:3c:84:17:ae:a8:6c:b8:
                    cb:48:5c:19:00:42:1f:cc:01:21:29:74:f8:18:79:83:
                    a4:d3:ec:df:0f:9a:d4:fe:ef:95:7c:61:bc:5e:9b:ec:
                    a4:60:90:3d:62:45:4f:0b:10:0d:30:85:a1:6e:d1:87:
                    3a:ac:14:6e:f1:cf:d4:b6:65:5e:62:2d:61:0d:ba:e4:
                    e9:82:ce:b5:6e:92:7a:02:99:43:50:50:23:83:5c:54:
                    88:24:98:f1:c5:7f:01:db:b5:74:76:08:ce:a5:36:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:c3:41:e1:7f:64:2e:f4:fa:cc:5a:6a:8a:18:81:bb:
        58:11:8c:21:95:96:84:8a:2c:15:a9:9b:bd:e6:02:ef:
        22:4e:34:0a:a9:03:93:3e:fd:2c:c7:21:f1:48:ee:16:
        bb:b5:d0:31:3c:8e:2e:9e:0d:11:91:9b:7f:83:05:50:
        47:53:8f:fc:be:53:6c:fa:59:92:d6:43:c7:ff:e3:8a:
        ef:fa:e2:34:02:6b:79:d4:b4:23:28:8d:3e:35:6d:3a:
        c2:3c:d4:40:b6:20:6a:9a:ca:e0:a6:d2:a7:8f:cc:00:
        31:4d:92:6f:1f:4c:8e:8e:5a:be:f1:fe:47:6b:13:63:
        46:91:97:92:18:a6:05:b8:44:2c:bf:3c:5b:81:d8:f4:
        2a:ea:5e:bc:9d:9d:c0:4a:81:d4:16:41:44:31:04:ca:
        fb:a9:78:54:ac:c4:08:9f:e6:52:ba:e8:9d:04:82:b3:
        f2:26:eb:a3:00:8b:08:87:0a:64:89:93:c5:ad:5e:46:
        65:72:ab:66:73:51:d9:b3:13:b1:1b:8f:30:06:53:b3:
        a4:b9:bd:65:f5:67:83:e4:2d:5d:cd:6d:8c:05:06:61:
        f1:d3:71:e4:54:73:ce:5c:dc:ab:4a:a2:f3:e0:f7:0e:
        c0:88:40:f8:1d:61:af:f6:f3:ba:13:36:cd:4b:ab:4b
    Fingerprint (SHA-256):
        7E:96:70:EC:2D:6F:FF:C8:DD:74:6B:DF:60:66:25:2B:0B:AE:C3:94:51:9F:ED:84:5E:8B:FE:00:F6:C2:BF:56
    Fingerprint (SHA1):
        2C:74:99:DB:33:B9:CC:8D:C9:B6:5E:2E:B9:FD:55:3D:F6:C0:27:42
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #291: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Wed Aug 02 15:15:59 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:a5:8b:75:35:ef:22:70:cd:29:97:ca:d7:2a:05:74:
                    77:f6:81:ce:b2:c9:8b:07:10:28:15:92:63:f6:e7:fc:
                    f6:46:58:24:57:55:32:0e:49:e7:0f:e7:43:ec:b1:3d:
                    6b:51:df:b8:b1:26:6e:d3:5a:4c:8a:b7:3d:10:9f:74:
                    74:dc:9f:7b:5e:e7:b3:b2:40:7f:be:bc:36:4b:44:e8:
                    19:ed:fb:92:70:49:bd:19:b0:45:9f:7d:56:a1:c6:43:
                    a3:e8:26:8e:f4:f7:d8:c8:bb:4d:24:a4:db:13:1c:b7:
                    40:0f:f3:59:16:76:5d:fd:60:b7:8f:70:d0:6d:f0:65:
                    75:e9:6f:f8:c3:71:7b:85:e6:f6:af:8b:66:fe:33:26:
                    bb:05:78:63:8c:b9:33:f2:29:fc:86:3f:93:a1:72:0e:
                    63:7b:fd:f9:12:f2:ed:cb:81:dd:37:a1:59:1d:29:e8:
                    b6:26:9f:fe:ba:80:ee:18:4a:95:ac:9d:eb:27:67:c2:
                    ab:06:62:c4:b4:97:08:62:51:03:86:61:92:e1:3d:cc:
                    5d:30:33:69:93:63:4b:40:6f:a7:12:f4:bf:a8:98:f9:
                    6f:1a:63:34:fc:31:9b:4b:44:1a:ce:10:a6:29:d0:23:
                    af:69:1f:e9:82:1e:b1:3f:26:f3:30:06:15:20:bf:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:9f:9d:01:26:77:7c:0d:b6:86:88:66:b2:bd:f6:75:
        d4:fc:e2:23:de:0f:78:c6:70:86:60:bd:f4:84:cb:60:
        a9:7f:b5:ed:e2:50:d8:3e:aa:1e:bf:33:e0:8e:86:c8:
        1c:2c:72:ec:77:5b:27:98:71:ba:81:86:99:68:70:61:
        03:98:8b:6e:44:e6:f8:8f:c6:ad:8d:4e:db:9e:1f:b0:
        55:e6:06:6e:84:fd:89:b3:fd:11:cf:a3:e4:de:f2:6c:
        0b:c9:6d:cc:4f:c3:0d:e8:f2:06:49:68:4e:be:c2:1a:
        e2:f3:3e:87:21:84:9f:e0:1f:54:6a:b7:a0:5e:5a:47:
        3b:03:01:a7:cf:b7:79:a1:c6:62:0e:9f:ad:1e:70:41:
        69:a9:05:2d:b7:92:48:07:da:7a:7c:b8:92:4a:1b:9f:
        b2:a3:38:06:96:10:56:2a:f6:4c:28:f9:85:cb:38:3c:
        5e:34:d8:2e:d1:45:f3:2c:04:59:26:9c:25:b0:6a:fc:
        2b:10:f7:97:35:a1:78:ff:7c:5f:1f:19:08:8a:70:75:
        96:3b:e3:bd:b8:28:44:ab:90:20:d2:ec:5e:ee:a6:b7:
        26:2d:de:e4:11:e4:43:69:86:ab:33:d1:8f:63:99:7d:
        5c:a3:18:82:28:46:4f:0a:5d:0f:c2:c8:7f:57:e5:08
    Fingerprint (SHA-256):
        9D:7A:5C:CC:E3:18:4A:60:E9:45:84:62:DA:A9:81:F8:CB:7F:B1:D4:F1:68:62:96:B4:7F:27:02:F6:47:DD:E2
    Fingerprint (SHA1):
        D6:2E:38:16:8A:E7:3D:AD:22:80:B8:21:EF:2F:1C:D9:96:0E:50:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #292: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Wed Aug 02 15:15:59 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:93:0a:51:70:da:4d:9e:fb:57:d2:20:21:f4:0f:10:
                    98:b6:c0:71:b5:d3:42:ac:35:e6:ff:fc:eb:fb:22:28:
                    b8:b3:ca:de:54:af:57:a1:01:08:cd:87:ce:42:d4:b5:
                    45:9e:ee:d7:14:8d:50:6c:44:68:41:ee:d2:79:08:c5:
                    c7:6c:70:1b:45:1f:5e:ab:df:1e:ba:e9:0e:8a:d7:46:
                    8e:36:3a:45:89:4c:ab:7b:15:f5:eb:57:4b:a6:b0:b5:
                    9f:6a:d6:3e:a3:34:a8:14:c6:83:07:b3:a0:15:77:e1:
                    e7:85:68:e6:c8:a1:44:43:fe:31:c0:40:0c:e4:24:3f:
                    8d:89:4d:67:4e:1a:27:10:f6:74:bf:71:0e:15:5a:47:
                    37:a7:d2:ea:4f:c3:79:26:b7:33:ea:3e:06:c4:a5:76:
                    d0:60:c2:dd:5a:78:72:a5:9a:45:60:06:af:3c:19:57:
                    2f:be:8b:47:82:cb:88:b9:97:1e:98:5d:ac:43:54:9a:
                    88:08:6a:34:99:9d:93:81:b8:0f:81:98:ff:bd:cc:db:
                    bb:92:e7:cf:74:55:c3:34:8e:c2:31:da:e6:4a:d1:62:
                    bd:b9:6f:12:7f:64:20:eb:3b:54:12:02:9d:26:ca:70:
                    89:01:94:ae:51:b0:a7:80:33:60:27:a7:55:3a:22:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:b8:15:a8:1c:bb:ac:63:77:a1:bc:31:4a:2e:bb:49:
        6b:64:d3:62:33:9a:cc:d7:58:1a:57:71:c4:07:47:26:
        ea:92:8c:e1:69:6e:b8:a5:3d:7d:b9:cb:28:ae:8b:fa:
        85:d4:cb:c6:a7:94:16:a3:75:97:1c:6b:65:74:42:2b:
        30:f0:1f:73:28:09:a5:d5:f7:2f:50:f4:2e:d7:de:43:
        33:de:9e:0d:db:8d:cd:b1:aa:93:92:58:89:9e:c8:fb:
        a5:d8:bf:48:be:5a:d2:0c:a5:ff:f1:d1:ec:a1:d0:2e:
        97:0c:e3:bd:d5:e7:9a:a6:13:d8:20:fd:16:ad:65:35:
        0a:1e:e9:22:2f:81:cf:88:df:e9:72:c2:f2:93:2a:e5:
        31:17:e7:75:f7:9b:d0:e2:89:02:b8:1d:c4:5a:87:49:
        67:75:5d:d4:56:38:a0:14:f9:db:b5:a2:f9:f3:cc:f4:
        05:1d:1c:fe:cf:00:1d:cf:ba:ee:d4:3e:7c:a1:ba:ef:
        13:26:23:25:93:10:92:54:a3:c2:72:02:7c:85:5a:0d:
        8e:92:0f:24:f4:ef:4f:55:eb:76:2e:d7:d7:31:6c:03:
        ae:96:25:be:36:cb:04:c4:0a:44:a3:11:f8:f6:8f:10:
        e2:d3:27:2d:d1:16:82:61:a1:ed:a7:c3:a0:1b:30:08
    Fingerprint (SHA-256):
        21:CC:47:60:4B:8A:B3:E0:ED:10:D4:E3:22:6E:83:2B:95:45:38:B5:73:6E:EA:0D:51:C5:3D:91:3E:20:70:8C
    Fingerprint (SHA1):
        1D:5C:C4:D2:D2:66:64:9A:98:58:8F:35:76:6E:DE:15:63:2E:EE:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #293: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Wed Aug 02 15:15:59 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:5a:ff:7a:3e:41:73:53:91:95:b6:d7:74:c3:ba:4f:
                    dd:01:11:2c:64:94:b1:14:89:80:73:06:7d:ec:9a:d2:
                    d6:29:28:cd:65:16:a1:c1:8a:65:7f:f9:d7:b6:86:bd:
                    8c:43:5f:1e:9c:81:f6:ae:0f:cf:3a:74:fb:3c:a9:1f:
                    bb:c9:2d:ab:44:9f:5a:ca:06:83:3f:77:ec:23:05:d9:
                    e2:53:c7:cd:f4:1b:68:d5:96:fc:68:1c:0d:de:b7:c3:
                    d7:e5:f3:06:27:5d:2c:b3:4d:d2:3a:1f:f4:d3:12:cb:
                    0b:17:ce:f2:b2:2c:ff:2b:46:07:6d:cb:46:5c:ec:be:
                    9d:3f:81:85:9d:ea:4c:10:35:64:0b:c1:50:3f:71:58:
                    81:c6:58:e1:69:6f:5d:a6:b9:42:0e:f9:f0:bc:ef:28:
                    a2:cf:c3:17:e1:79:01:1b:80:f2:5e:a3:1e:4d:66:03:
                    88:74:17:70:75:27:eb:c1:db:cb:5c:33:4b:12:84:e4:
                    94:89:94:bd:54:bb:0f:dc:de:3f:9b:8a:3d:51:9b:9f:
                    b1:e7:e7:69:3b:7e:5d:cd:82:d8:34:03:2f:1f:d5:5b:
                    39:42:fd:39:36:70:7c:39:fd:d6:f4:32:e3:c8:57:89:
                    be:58:e0:ce:e2:5d:1c:bb:c4:cd:fd:b6:73:fb:c8:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:51:f0:20:f4:a1:c5:ba:24:28:c0:31:c3:9c:e4:8b:
        d8:09:1e:df:3e:4d:90:70:47:57:13:05:a7:47:b7:44:
        24:9d:b9:67:43:e7:6b:1c:f3:0a:f3:17:92:fc:c6:3d:
        6e:71:38:52:e9:dd:ad:60:f9:b7:c3:ea:ca:6f:19:d9:
        3c:a5:09:bc:0e:dd:c9:f8:8f:40:ca:33:6c:ef:b9:c6:
        3b:3f:8d:3d:66:1d:95:86:8d:ab:9a:fe:9f:d7:ae:95:
        23:53:ea:9f:98:45:16:95:26:87:9a:ac:58:c1:62:d1:
        10:84:76:1a:e5:30:55:91:1b:c0:50:46:76:6d:6c:4e:
        19:20:66:00:aa:a5:61:cc:b7:3b:78:cc:85:5c:fe:6b:
        c4:f5:39:a6:28:d1:c6:ce:2c:cc:29:93:cb:ab:fa:cf:
        98:8d:f4:da:b3:50:7a:4e:f8:f3:a7:a0:93:bf:23:bf:
        cc:fa:15:bc:0f:18:1e:9d:1b:a0:64:b7:34:4e:16:c2:
        e7:2f:49:32:34:06:84:2b:78:b5:04:63:00:fc:4d:7c:
        e9:4e:34:b4:e2:68:f5:58:73:f1:ec:ab:c7:bd:bc:c8:
        88:cd:43:5a:42:1a:97:92:13:42:d6:4d:3c:06:e4:5e:
        bb:fe:c4:90:18:21:c4:8b:41:4c:56:cd:3e:5b:ee:7f
    Fingerprint (SHA-256):
        56:67:4D:77:76:F6:75:8A:5A:76:9B:B9:82:63:95:90:E4:D5:2B:47:7B:32:49:75:3A:F3:71:F5:5F:A7:6A:3F
    Fingerprint (SHA1):
        CF:47:0C:D3:64:F9:E7:6C:25:7B:22:1B:D1:94:7C:76:D7:1A:3A:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #294: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Wed Aug 02 15:15:59 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:03:ff:0d:3c:a1:23:3d:9c:19:c3:4e:08:0b:c7:7e:
                    f7:82:94:b3:ba:b4:e6:a0:0f:dd:ed:1d:00:c2:e3:46:
                    c3:e5:45:a0:a9:96:e7:b4:06:9c:33:53:af:56:ef:73:
                    5c:cf:e0:bc:49:de:cc:16:da:07:96:73:6e:e2:49:c5:
                    f1:e0:59:d2:ba:f0:e1:8d:04:2c:46:29:cb:5b:26:5d:
                    9a:de:f6:29:86:ec:d9:e3:17:33:06:6e:35:3a:51:d5:
                    53:51:7b:dd:17:46:02:e8:d7:a2:17:f6:5e:70:8c:3a:
                    a1:83:8a:87:96:7b:c6:aa:f3:90:bc:c8:ae:79:cd:ec:
                    9e:00:28:22:8e:33:f3:f1:16:93:86:ab:ce:9f:d1:dc:
                    60:6c:05:ed:cf:56:25:7a:45:40:4a:f6:17:61:b2:f1:
                    0d:28:2e:d0:5a:4f:95:ef:aa:91:a6:c4:ce:4c:61:11:
                    af:9f:92:ce:74:24:3e:57:c8:6a:37:73:54:19:ef:8d:
                    92:ef:5f:22:9e:31:93:dc:a3:b5:c2:d1:cd:b6:10:bc:
                    8b:ac:33:e6:56:f0:99:79:59:fa:df:c4:de:99:c8:ff:
                    06:40:62:63:cf:1b:66:a4:c6:69:81:68:c9:9d:4f:4f:
                    54:cd:45:ad:17:82:9e:58:bd:54:d3:74:9a:6b:16:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:fe:ee:e7:36:36:dc:f8:9d:1c:c7:08:c4:53:52:1c:
        89:29:84:8b:6f:48:78:9e:fd:b9:bb:85:68:ff:40:8f:
        f4:fd:e9:62:05:c0:a7:eb:7e:ab:38:62:eb:4e:08:fa:
        5a:23:74:57:fa:6c:e3:08:28:03:ae:1e:55:e8:cd:80:
        2e:ce:71:1b:00:4d:2f:d5:96:35:1e:4b:b9:d7:88:f2:
        65:45:55:3b:50:bd:20:92:92:f2:eb:2c:2d:4b:fe:50:
        b0:6a:88:a0:d4:59:4c:3b:4e:8e:fc:09:21:af:66:c6:
        81:e7:41:19:76:9c:98:b5:5b:59:b0:3e:eb:b2:6c:50:
        58:67:f0:af:ee:49:80:2d:46:0f:bc:8d:9d:03:22:b1:
        56:b3:ef:9c:5e:7f:b8:36:e0:07:28:05:2d:e3:ff:60:
        e5:83:f3:ba:02:73:0b:99:bf:1c:fd:3c:be:cc:12:3d:
        b1:64:7c:ce:9c:02:c0:72:f1:16:c7:69:c3:85:21:f8:
        d4:53:ae:e4:fd:fe:32:57:12:f8:19:24:4c:93:e3:03:
        4d:32:04:07:e8:85:3d:af:5d:3d:6d:24:22:c9:43:0f:
        1f:21:bf:e7:8f:64:c7:cc:b1:03:07:b5:4f:43:c9:0b:
        50:8f:35:fa:83:53:6d:02:a5:fa:9a:52:4c:e2:f5:e6
    Fingerprint (SHA-256):
        22:20:2D:5C:C7:4E:97:2C:0E:22:E4:8D:4A:CB:8E:CF:4C:75:6C:FE:E9:36:BC:9D:FD:E9:8C:30:BE:CF:BE:59
    Fingerprint (SHA1):
        C1:A3:2F:97:9D:99:41:D5:94:84:C3:D7:ED:A1:89:5D:08:C3:77:49
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #295: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:00 2017
            Not After : Wed Aug 02 15:16:00 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:a2:c2:1b:b7:f0:65:67:df:15:01:a4:54:af:c4:cb:
                    ee:26:07:ff:1c:e7:f2:2b:0b:e8:76:b5:70:91:4d:b2:
                    9f:1b:32:bc:a3:55:63:28:d6:95:39:1a:ab:84:c7:be:
                    44:74:41:e9:d2:60:1e:4d:5b:2e:5b:55:e9:ec:3b:77:
                    95:91:b4:73:40:dc:b0:28:d0:dd:c1:1f:ca:c4:78:19:
                    30:c1:d5:ad:88:a1:6e:a9:f5:e2:63:a4:2c:c6:de:e0:
                    2e:8f:f8:1b:6b:32:af:cd:8e:73:5d:a4:17:7f:e0:38:
                    95:fd:cc:24:5d:47:84:9f:b4:32:2e:7c:7d:6a:59:0c:
                    b3:3a:60:a2:d2:cf:01:45:bf:86:7f:5a:43:04:70:f8:
                    17:5f:d2:c0:6d:f5:e7:de:6f:af:a7:25:24:4e:0a:b9:
                    e8:84:b8:55:5e:5a:9a:80:13:fb:ef:6b:9e:c4:0c:dd:
                    ae:c9:78:fb:04:69:d5:b9:b5:ce:da:d1:ab:2a:a0:04:
                    9d:0e:84:f1:48:b4:ed:51:53:f4:5d:a1:94:61:7b:52:
                    3b:77:96:22:5b:b4:53:e7:44:13:ba:00:62:26:bc:07:
                    b8:de:41:84:a7:c2:f4:bb:93:85:54:6b:81:a6:43:91:
                    e7:b2:19:18:97:d0:07:18:3f:46:7f:2f:1a:6b:fd:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:74:ba:15:5b:9e:c4:01:80:c7:41:fc:fe:44:67:7a:
        9e:7e:51:fd:48:8a:fc:4b:b5:56:ba:51:2b:b9:9f:a1:
        47:13:c9:d5:06:7f:04:6d:b9:02:f3:d6:3b:89:ae:6e:
        35:60:15:0d:e8:43:1c:a0:a1:ab:69:dd:1a:a4:7c:5b:
        12:96:ab:fa:a0:86:11:7c:5b:ec:d7:c0:24:17:0a:d4:
        c8:d6:1a:46:8e:9b:c5:30:1b:22:9d:ac:62:c3:ff:61:
        1a:f6:88:ec:77:7d:3e:89:98:ff:28:79:89:e8:b9:27:
        77:d8:4b:f3:6a:0a:ec:19:5d:65:75:33:e7:a9:67:fd:
        7a:ca:c0:fd:8a:6e:77:90:87:f1:0f:b0:4f:c2:d1:28:
        cc:da:2b:a8:05:be:26:52:d1:ed:e0:64:57:07:8b:10:
        35:8a:82:2b:73:9f:bc:61:d7:e2:04:c6:88:15:02:e5:
        06:06:db:f6:17:69:36:9a:43:2a:92:42:8c:77:b7:b3:
        61:5e:4c:49:e8:12:c4:04:d1:89:73:be:34:90:91:7f:
        81:42:4b:b2:e7:5e:53:79:88:09:fb:d2:2a:72:11:87:
        6e:64:41:cb:c0:9b:5f:1c:7f:2d:a5:a3:20:9a:69:96:
        62:2c:0e:96:89:87:24:aa:fa:fa:87:f4:b2:0c:12:8c
    Fingerprint (SHA-256):
        A1:37:8C:DB:86:71:9F:62:5C:FD:2E:74:0B:6A:8E:7F:AB:10:53:F1:00:15:C2:55:4E:42:00:C5:A2:43:22:EC
    Fingerprint (SHA1):
        71:5D:3E:78:BD:C8:09:42:40:5B:6C:BC:BD:5F:06:23:D9:CA:7D:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #296: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:00 2017
            Not After : Wed Aug 02 15:16:00 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:83:49:40:b5:b5:99:6a:68:aa:c9:a1:b9:f9:19:08:
                    f1:72:66:9a:b9:28:7a:0d:7e:34:b8:1a:5e:54:ad:69:
                    ae:71:e0:ee:98:69:02:9f:7f:4e:95:cf:11:fc:cc:7e:
                    d5:49:fe:25:97:68:e5:e1:3b:c1:a7:ba:78:48:11:75:
                    70:01:68:b2:76:11:d9:e3:52:8e:b0:d6:f1:89:dc:cb:
                    35:06:25:ca:c2:d0:84:5a:c2:fa:3c:f7:f5:b2:e4:52:
                    87:35:e7:f7:45:89:3c:1e:2d:6f:0d:ba:0f:ea:c5:61:
                    34:b9:54:ad:7e:cd:06:15:85:bc:2a:f9:69:ae:31:3b:
                    56:0c:9b:78:97:55:bd:55:54:58:74:a5:b2:71:a4:10:
                    d5:2a:e4:4f:c8:f5:38:19:bd:4f:fd:40:3f:ec:52:ca:
                    8f:aa:a9:03:62:78:d1:e5:7e:56:1e:d7:6a:ae:1e:45:
                    14:40:ea:dc:99:f1:56:67:76:7e:bb:62:7c:27:c3:2b:
                    dd:da:2e:46:b7:cf:75:af:8a:4e:44:a5:90:6b:c5:41:
                    d3:a6:ab:a8:a4:29:d0:54:13:05:12:9b:ec:47:70:16:
                    81:65:41:6a:1e:b9:8f:e3:f4:da:96:08:13:84:8a:a6:
                    83:04:1c:75:ee:f8:42:1f:06:2a:02:c5:76:03:db:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:18:16:31:e7:48:fc:2f:42:44:5c:f2:fd:7e:2f:84:
        81:6b:3e:26:61:ad:4f:8d:e5:47:64:70:61:08:81:51:
        8c:ab:4a:e0:a8:72:ae:f2:a5:b0:8f:06:64:b9:af:3e:
        7f:89:3f:73:56:14:0b:60:cb:94:71:df:76:49:9d:c4:
        a2:e9:af:86:ec:03:aa:71:50:0e:9c:80:7e:1f:5c:7a:
        14:88:77:9e:83:3d:23:a8:cb:0c:68:6a:f1:1b:5a:9e:
        7b:c1:34:6e:ac:c6:32:34:c5:6e:ad:7e:82:bc:78:26:
        d6:af:a3:8d:89:75:5a:48:9e:9f:35:fa:91:35:64:e7:
        3b:5f:34:89:29:18:65:94:a0:53:19:ed:9d:08:f2:09:
        11:db:c7:6c:56:c8:4b:a3:46:d6:6c:a6:67:27:aa:58:
        aa:4d:75:1f:96:c6:4e:a6:86:43:cf:69:77:cb:b8:5d:
        73:81:1f:99:fa:d6:e3:5e:8f:e0:2d:c0:08:87:4a:57:
        20:0c:ad:da:8a:9f:77:5a:28:38:22:4b:c3:bd:e6:01:
        a4:45:2c:3a:19:57:d4:77:ff:59:43:99:e6:ed:b8:c8:
        a5:bd:48:b9:fd:a6:4a:03:2b:ff:dd:c4:5f:e9:2d:a6:
        a8:9a:40:b9:cb:a0:ca:9f:e5:43:25:f9:33:71:de:65
    Fingerprint (SHA-256):
        2F:7C:D6:A4:26:85:48:CE:79:A8:E7:93:A0:D1:52:56:0A:C4:A9:0A:E2:04:F7:1B:0D:9E:1D:DD:B1:C2:82:3F
    Fingerprint (SHA1):
        56:B1:84:94:2C:BE:DF:F2:B3:95:2F:0B:F7:65:53:6A:CA:A8:53:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #297: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:00 2017
            Not After : Wed Aug 02 15:16:00 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:87:de:45:b0:26:16:c5:ec:a6:65:b1:83:11:34:28:
                    36:49:72:17:7d:29:7d:7c:2e:62:b6:43:4c:a3:03:bc:
                    e1:90:72:90:13:a7:c1:7f:41:40:2a:d0:ac:fa:42:db:
                    c2:09:29:6b:c0:33:f5:52:42:44:8f:47:3d:56:3b:75:
                    21:d5:59:bf:ba:bb:66:68:65:61:20:f4:ef:df:d6:cf:
                    1d:5e:89:bf:59:b2:78:b0:20:76:bf:81:66:78:b8:14:
                    fd:37:41:09:e8:20:48:27:cd:bf:ea:1f:37:52:84:bc:
                    ad:2c:d7:60:fe:b2:36:7f:01:28:fe:56:db:0b:8e:71:
                    c0:05:51:5d:cd:f1:52:48:56:c6:05:ea:38:fa:cb:67:
                    1e:ab:bb:0a:f8:67:98:e2:76:36:5c:87:94:ec:08:ed:
                    02:bc:6e:39:12:ec:c8:e0:c8:c4:89:64:96:de:37:1a:
                    ea:a4:a5:c4:96:ee:a9:36:77:eb:2f:0c:c0:9a:e9:c3:
                    04:97:39:48:30:88:08:92:2f:19:a7:f1:80:60:f0:cf:
                    2c:bf:6b:e0:7c:fe:37:9e:d8:eb:85:a4:1c:25:b8:bb:
                    60:70:80:7a:fd:5b:40:01:17:c2:f9:a9:21:12:53:12:
                    c7:56:97:29:d5:52:3d:69:fd:70:0a:db:b9:a9:79:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:05:de:db:45:e9:ea:87:c1:e3:6c:7e:75:ff:5a:b9:
        92:39:61:f1:82:54:2c:af:70:7f:6d:36:f2:0e:81:83:
        ec:ac:0c:31:7b:fd:a9:03:6d:21:88:4c:a7:ea:a5:38:
        59:72:14:eb:ac:26:8e:e1:80:6a:bf:0d:66:45:4e:18:
        fd:76:86:fa:e5:a5:e3:3e:f7:4d:40:23:2c:a9:c5:a8:
        d1:9e:a6:d9:90:c6:01:fd:e6:b8:ae:1c:f3:9f:67:5e:
        6b:19:f5:a0:88:e9:4f:ff:22:56:c1:6c:a8:25:cb:0f:
        5a:15:4b:af:07:e2:13:07:d5:52:2b:ff:81:25:75:97:
        78:27:d1:29:cb:d5:28:9f:c6:0b:d7:21:e9:9f:ef:5c:
        a9:be:c6:e5:37:51:20:ac:6e:32:cd:76:13:18:70:94:
        be:d8:f4:e1:33:19:39:e5:54:9a:3c:e1:19:b7:a3:cc:
        87:b7:09:72:99:1f:42:81:e1:f2:fe:41:84:b4:54:14:
        38:94:83:0b:f3:5b:e4:8d:74:a8:15:74:48:86:27:1a:
        57:8f:48:9e:27:30:f9:f3:91:47:4f:c9:7c:87:2c:ab:
        0a:4c:f2:de:02:3d:4f:bd:cf:76:82:bc:76:b1:59:d6:
        58:b1:a9:5c:3c:74:5f:31:9a:31:4a:3d:62:d2:1a:0c
    Fingerprint (SHA-256):
        55:21:6C:4F:51:8B:E3:48:D5:73:09:F8:54:D1:D1:77:27:0E:94:AC:EC:B6:89:25:19:AB:B0:21:2B:C6:95:F3
    Fingerprint (SHA1):
        69:65:3F:2B:87:2F:D7:F5:79:7B:23:AF:16:7D:53:75:D7:07:DD:50
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #298: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:01 2017
            Not After : Wed Aug 02 15:16:01 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:f3:cf:d7:5a:6e:03:c8:63:bc:18:04:2f:82:38:36:
                    60:e0:a9:48:4e:3b:ec:61:a1:8a:79:88:03:5e:c8:01:
                    69:61:54:ab:10:b7:e7:c4:6c:83:22:d5:de:c9:b4:56:
                    0d:53:49:94:22:c6:8f:89:a1:7c:4c:30:c9:04:69:79:
                    4d:ee:29:23:48:2a:c8:b3:ed:e1:0e:df:18:0f:da:94:
                    69:30:9f:b6:22:2d:a4:06:a9:09:41:68:64:c9:b1:73:
                    a9:fd:f6:17:2e:08:f3:01:ee:4b:b1:c1:01:11:11:6c:
                    08:66:c2:76:3b:d3:0c:fe:21:a9:12:87:51:52:7f:10:
                    2b:b5:97:3c:40:96:fb:1e:c9:8b:8b:31:1a:8c:f8:70:
                    bf:ad:9c:1e:62:25:93:be:2b:93:f5:5c:b5:2a:c6:d0:
                    35:90:fe:bf:6c:b7:91:cf:85:55:02:da:2c:15:b2:3f:
                    60:f9:98:bf:e4:82:97:1e:62:94:8a:a5:e9:ce:3b:a0:
                    82:45:41:02:1b:16:3f:fe:c9:b3:a6:5a:26:96:d4:76:
                    47:89:7a:f1:60:1c:2b:59:83:9d:e4:38:04:61:e0:3e:
                    31:3f:df:81:b5:c9:ac:c6:82:e7:dd:c4:6c:c1:35:e7:
                    3d:aa:a9:8f:ce:aa:fd:11:0f:8d:d0:97:0f:84:b3:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:04:c7:3f:c0:c5:4e:44:15:ac:fd:92:a5:19:2e:19:
        25:02:c6:89:29:e4:5f:a0:f8:de:92:00:de:53:19:a5:
        31:05:58:60:69:c2:64:8f:e4:6a:08:0c:f0:ad:b0:d6:
        3e:f3:f3:83:83:e5:aa:b2:03:d6:b1:30:91:37:e2:9c:
        a1:ce:7f:71:0d:0c:aa:49:b4:ee:99:ba:f6:11:89:30:
        69:e0:39:9a:05:3e:be:e0:d7:dc:2b:b0:6b:e8:46:45:
        23:68:91:4a:00:d0:b1:5a:84:b7:3d:90:11:52:6c:78:
        66:c9:75:2e:fc:f6:0b:57:f5:52:32:f1:b5:05:cb:53:
        7e:dd:39:b3:5e:57:93:e1:fa:a5:b0:6e:41:27:ac:6a:
        62:9e:f5:89:6d:b8:dd:c3:ff:46:1a:68:d0:a0:40:a3:
        f3:d2:39:2b:81:b0:54:f7:b8:82:b9:99:51:69:92:cf:
        d5:7a:2d:8e:ac:3e:27:83:78:97:a7:a1:9e:5f:7d:d8:
        fd:ed:d5:08:b9:d5:01:3f:cd:db:50:e5:74:fe:e5:7e:
        cb:14:bf:9f:a4:fc:48:26:2e:93:9c:ef:06:55:83:4e:
        50:2e:58:2e:62:c1:f1:54:2b:09:55:51:8f:76:a1:cd:
        ef:ed:79:be:79:6a:84:18:b2:a8:85:17:b4:8c:91:05
    Fingerprint (SHA-256):
        7C:95:08:87:04:D3:C4:46:6E:F0:28:B3:69:D6:01:BE:2B:79:CC:EB:90:FB:41:7C:EB:E7:24:FA:08:22:D3:4F
    Fingerprint (SHA1):
        29:74:BC:26:97:ED:0A:A1:10:8B:10:3B:93:D8:8E:2D:CA:B3:B0:8F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #299: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:8f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:01 2017
            Not After : Wed Aug 02 15:16:01 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:c1:60:8d:79:d2:6f:0a:3a:9d:53:36:57:9e:8d:3d:
                    37:25:ed:b4:9f:5d:24:6b:8a:b6:dc:df:f9:a7:52:80:
                    ee:f3:4b:f6:da:e6:fd:39:5b:40:c5:e1:2a:bc:c6:f4:
                    80:6e:95:9e:cd:fb:8d:b4:14:58:1d:d6:a3:f9:52:30:
                    be:d4:6f:48:4a:0d:42:8b:9d:fc:2c:57:d2:9d:ad:ac:
                    3d:92:48:1d:9f:65:0a:2e:1c:2f:4a:0b:5d:12:9a:71:
                    9a:07:6d:d3:d3:22:1d:e6:c8:00:78:40:90:74:26:f6:
                    23:8c:ef:40:15:ab:a8:1a:55:8a:25:81:14:d0:fe:51:
                    e4:90:d8:74:d2:5b:f8:e8:e6:65:34:fa:0c:9a:fb:97:
                    78:4c:13:3d:22:3a:ed:39:6a:fb:6f:d2:43:c7:35:31:
                    06:f1:34:36:a5:87:6c:53:8b:0b:3d:7a:4d:98:db:5b:
                    68:d1:5c:d8:d7:b3:bb:c1:d3:0d:34:99:82:7b:18:09:
                    09:da:65:e4:94:60:7b:43:77:8e:fe:6a:5b:08:9d:a6:
                    73:e6:82:54:37:49:fe:70:c5:84:f4:a7:5f:77:8c:ae:
                    83:38:8f:94:7c:8c:c1:b6:1f:6c:f2:c6:6e:bd:bc:d4:
                    44:d9:fb:02:76:41:f7:b8:89:b0:6d:ca:5a:8e:6b:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:44:9f:d6:c0:e8:f2:84:d9:a5:a2:4a:95:e0:3e:b4:
        ba:23:e5:5e:ad:e0:14:c7:a5:36:22:dc:be:8e:a2:be:
        aa:02:f3:ee:07:81:b1:8e:7f:48:23:a8:98:ce:29:df:
        0a:eb:b1:c3:7c:e1:b1:b6:e4:ed:de:f7:d4:ce:93:27:
        b0:80:82:a2:64:cc:a0:e6:75:2a:4d:ea:7a:4b:28:aa:
        3e:14:36:f1:7b:12:56:d4:2c:a6:1f:af:73:17:4f:bb:
        66:76:3a:ff:c6:a9:36:60:c7:ed:5a:16:82:75:f5:a8:
        1a:c6:3b:6c:a2:f4:9c:ed:69:d3:d7:96:b4:d8:01:78:
        44:df:c1:ad:17:3d:80:58:62:00:dc:1c:97:34:8c:73:
        e1:f6:28:1e:59:b3:ba:68:f2:50:f4:18:f3:61:f1:d0:
        b9:8f:87:a8:fc:3c:19:28:bf:36:b9:af:81:4c:29:5a:
        e5:7e:8b:3a:45:5f:cb:52:b0:00:09:a4:70:b9:77:2f:
        2f:d3:00:ea:bc:b4:0e:4c:2b:ee:7a:19:be:3b:08:e8:
        2c:bb:6b:a7:df:a7:13:17:96:ed:f5:b1:4c:a4:3d:97:
        38:ec:fa:a0:34:b3:18:d3:5a:23:85:74:01:4a:27:a9:
        c7:1c:f6:62:04:19:fb:01:fc:8b:13:f6:d6:78:cc:16
    Fingerprint (SHA-256):
        AF:00:D7:E4:4F:69:6F:52:A8:58:04:90:10:36:B7:C6:85:E6:9E:77:C9:88:81:08:C3:B0:B1:05:96:D2:5D:6F
    Fingerprint (SHA1):
        0E:52:8D:8B:1F:91:70:3A:F0:2B:58:B3:08:49:2B:1B:7E:E0:A3:BC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #300: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #301: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #302: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #303: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:91
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:16:02 2017
            Not After : Wed Aug 02 15:16:02 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:a5:74:35:ca:c3:65:c7:aa:bd:1a:0e:d1:18:56:66:
                    40:04:cc:5b:1e:1e:60:b4:c1:af:7c:4a:73:14:70:f4:
                    b4:17:5a:12:23:52:a0:d9:bf:ed:a5:ce:53:cc:9d:f8:
                    fa:f0:0d:1a:fe:f3:31:22:de:e1:7f:cc:1b:8e:2a:9f:
                    b1:aa:c7:98:7c:e6:17:f3:d5:a6:a4:32:9f:d7:87:6a:
                    6d:2b:7f:05:9f:b7:85:33:21:ee:d9:c8:af:61:8c:c9:
                    67:8b:fe:c1:bd:94:36:52:4e:91:4d:dc:69:8d:ce:c0:
                    2b:0f:16:52:64:0a:a9:de:ef:8c:02:7e:e4:87:63:8e:
                    4c:24:1c:64:12:53:5a:de:01:87:31:b0:b6:a9:01:a4:
                    71:10:23:09:fa:62:5c:da:42:44:01:86:d0:db:e8:64:
                    2d:89:b3:4f:64:88:01:e2:29:5b:91:2a:7f:86:a9:25:
                    52:48:3a:38:5e:df:f2:2f:e9:4a:3b:39:3c:a6:5a:02:
                    ac:b1:5f:96:f8:a4:9c:74:32:52:d0:15:a7:b6:ab:b0:
                    69:8c:40:02:f2:08:34:42:cc:fe:7a:fa:cf:35:34:d1:
                    1b:b4:f8:83:1d:4d:f2:3c:bf:06:fc:c2:c3:73:f2:a2:
                    ea:5f:c8:9b:6f:bc:38:b4:2d:7e:29:3c:7b:50:88:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:da:9a:e8:b7:c6:a3:2c:28:d8:88:e1:61:9d:01:f1:
        8f:34:3e:e0:fd:cb:fb:51:83:c6:ce:ea:7e:85:18:57:
        8b:a3:fe:cb:9d:9b:18:98:84:dc:fe:df:dc:83:9e:40:
        51:27:43:e3:29:21:af:1d:9a:4b:af:2b:6a:d3:88:ff:
        0a:b8:68:d6:07:67:25:41:70:c5:1c:c3:54:23:92:43:
        05:ea:30:6a:06:a6:06:4a:2d:b7:b4:6b:4a:24:3d:4f:
        21:94:8d:7d:da:03:2c:79:d8:84:01:2b:6d:21:b5:04:
        2b:7a:a2:19:01:07:ef:ba:60:e1:29:af:6b:02:68:8b:
        6d:6f:af:ba:f3:5c:96:57:1a:65:5b:e7:da:d9:f7:cc:
        76:c6:8e:71:a0:b5:26:0d:f7:a0:6c:1e:fb:40:95:38:
        bb:1b:4f:c8:ea:1b:64:76:ce:0d:35:ec:59:be:b9:ff:
        89:82:c7:01:a7:e5:ff:c4:c9:19:d5:8d:9d:cf:ad:29:
        39:b9:57:19:b3:63:a3:4e:6e:fb:5e:9c:f3:b9:a2:35:
        e3:65:20:d7:e2:74:e0:fa:f8:45:36:77:46:e4:02:7d:
        9e:c5:00:ee:2b:9e:25:df:f7:2e:f6:a6:91:11:48:dc:
        3a:54:3a:90:a9:f9:77:cb:a1:96:79:ed:21:fe:a7:bc
    Fingerprint (SHA-256):
        DF:71:8E:4F:09:7A:9E:B0:6B:12:57:2E:8F:20:5A:24:96:56:00:C6:4D:38:67:26:DC:BA:40:BA:30:EF:35:02
    Fingerprint (SHA1):
        AD:23:05:19:E4:E6:8A:E9:C1:B4:92:D0:8F:ED:48:47:C7:DE:EF:E7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #304: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
cert.sh: #305: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #306: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #307: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #308: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #309: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #310: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #311: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:92
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:16:02 2017
            Not After : Wed Aug 02 15:16:02 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:93:15:56:0d:d8:8b:65:18:c5:91:78:ca:f5:1a:ed:
                    20:ca:ae:ae:73:5c:77:e3:33:09:35:18:8b:8a:1d:81:
                    db:b3:3c:25:fb:0f:a6:b5:c1:91:7e:05:d5:ec:a5:43:
                    ea:21:7d:a5:56:86:29:b5:30:41:08:8f:14:26:95:d3:
                    dd:b1:65:b1:56:65:a1:70:e2:95:00:37:93:d5:7e:60:
                    c3:47:52:11:6d:07:e4:51:cf:33:cc:26:40:7e:aa:84:
                    c5:94:d0:e8:99:87:58:bb:04:62:ad:22:2d:ef:15:6f:
                    92:bc:f1:16:a5:e6:cb:07:08:32:35:1e:5f:e5:b4:67:
                    85:1e:98:d6:ac:92:8c:27:3e:06:b9:d9:11:49:a4:77:
                    7b:92:4b:dc:05:0f:56:56:43:90:c4:2f:57:14:59:34:
                    67:4e:e5:91:22:65:53:a0:37:f2:d1:b0:36:1f:af:79:
                    d2:4b:fc:a9:ea:c4:8f:ba:6c:25:a9:14:7e:fb:3b:2b:
                    6f:85:ca:1a:9d:c4:02:a4:bc:83:3e:07:cc:4c:91:d8:
                    13:44:f0:90:f8:1a:9e:94:43:de:c6:11:bb:2d:5b:d7:
                    c9:64:90:64:c4:53:20:69:e1:a5:8d:85:8b:7a:a1:5f:
                    f5:f5:4a:b9:4a:91:31:c0:5a:c5:47:53:b7:8b:63:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:ef:17:36:48:27:3b:d0:e4:f3:13:89:07:19:ec:40:
        11:09:30:59:36:b4:3d:d9:85:04:85:16:2b:84:c9:e4:
        af:33:5b:46:1f:2f:c8:0a:57:69:fe:32:f1:2d:c2:e7:
        d2:e6:81:b6:67:e7:05:f7:06:f5:02:97:ca:f0:07:43:
        71:98:b4:86:e8:c0:22:50:23:b5:5d:dc:f4:02:8e:d3:
        fa:80:a3:48:f0:c5:c5:87:ba:8e:2f:61:38:f0:7a:57:
        59:1c:34:d8:a0:4a:c7:76:5b:e0:be:36:fc:53:d9:c4:
        cd:b8:43:32:03:7b:97:51:7e:1c:af:d2:7e:32:ce:ec:
        1a:e7:d7:b3:55:cb:86:96:f4:77:ec:eb:e5:2d:b6:10:
        c2:34:db:b7:e1:9b:57:d0:41:b8:ad:90:0a:39:e6:e6:
        13:4d:23:3d:62:ed:b5:1d:76:6a:60:58:fd:ec:40:01:
        dd:e7:ed:08:92:e8:e5:9e:d5:87:b1:39:88:0d:1e:4a:
        0a:29:b8:e6:4e:c5:36:06:f7:66:ac:ff:55:3b:4f:04:
        0e:ba:32:da:42:59:c2:ed:51:ee:a6:92:3c:a8:90:a2:
        6a:a0:98:46:a2:25:1a:89:5b:f9:37:de:e7:98:4c:fb:
        df:c3:5e:ca:79:e8:40:49:b4:73:2a:09:11:b3:65:81
    Fingerprint (SHA-256):
        CB:90:2B:BB:96:66:6A:09:8D:F6:28:A8:98:A0:1E:E6:7B:4D:75:FE:C1:0E:F7:3B:3C:5E:B5:5B:B6:40:E5:7C
    Fingerprint (SHA1):
        F9:F7:7F:99:27:05:A9:24:74:C0:E0:4B:EC:6B:83:82:3D:87:57:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #312: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #313: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #314: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.pw
cert.sh: #315: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #316: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #317: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -o root.cert
cert.sh: #318: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #319: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #320: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #321: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #322: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #323: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA.ca.cert
cert.sh: #324: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #325: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #326: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #327: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #328: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #329: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #330: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #331: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #332: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #333: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #334: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #335: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #336: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #337: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #338: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #339: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #340: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #341: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #342: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #343: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #344: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #345: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #346: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #347: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #348: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #349: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #350: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #351: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #352: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #353: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #354: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #355: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #356: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #357: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #358: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #359: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #360: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #361: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #362: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #363: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #364: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #365: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #366: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #367: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #368: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #369: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #370: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #371: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #372: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #373: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #374: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #375: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #376: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #377: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #378: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #379: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #380: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #381: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #382: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #383: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #384: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #385: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #386: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #387: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #388: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #389: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #390: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #391: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #392: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #393: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #394: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #395: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #396: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #397: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #398: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #399: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #400: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #401: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #402: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #403: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #404: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #405: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #406: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #407: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #408: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #409: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #410: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #411: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #412: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #413: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #414: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #415: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #416: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #417: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #418: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #419: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #420: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #421: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #422: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #423: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #424: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #425: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #426: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #427: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #428: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #429: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #430: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #431: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #432: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #433: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #434: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #435: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #436: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #437: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #438: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #439: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #440: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #441: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #442: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #443: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #444: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #445: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #446: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #447: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #448: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #449: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #450: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #451: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #452: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #453: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #454: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #455: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #456: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #457: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #458: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #459: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #460: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #461: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #462: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #463: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #464: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #465: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #466: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #467: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #468: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #469: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #470: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #471: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #472: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #473: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #474: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #475: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #476: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #477: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #478: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #479: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #480: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #481: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #482: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #483: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #484: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #485: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #486: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #487: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #488: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #489: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #490: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #491: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #492: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #493: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #494: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #495: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #496: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #497: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #498: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #499: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #500: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #501: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #502: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #503: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #504: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #505: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #506: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #507: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #508: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #509: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #510: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #511: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #512: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #513: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #514: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #515: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #516: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #517: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #518: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #519: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #520: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #521: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #522: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #523: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #524: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #525: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #526: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #527: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #528: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #529: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #530: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #531: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #532: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #533: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #534: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #535: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #536: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #537: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #538: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #539: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #540: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #541: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #542: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #543: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #544: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #545: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #546: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #547: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #548: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #549: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #550: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #551: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #552: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #553: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #554: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #555: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #556: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #557: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #558: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #559: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #560: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #561: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #562: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #563: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #564: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #565: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #566: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #567: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #568: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #569: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #570: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #571: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #572: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #573: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 15:16:22 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Tue May  2 15:16:22 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #574: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #575: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #576: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #577: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #578: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
dbtests.sh: #579: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
dbtests.sh: #580: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #581: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtests.sh: #582: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #583: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #584: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
dbtests.sh: #585: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtests.sh: #586: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
-r--r-----. 1 mockbuild mockbuild   1221 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1424 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    579 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 229376 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
-r--------. 1 mockbuild mockbuild 184320 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
-r--r-----. 1 mockbuild mockbuild    393 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/req
-r--------. 1 mockbuild mockbuild  16384 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #587: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:55 2017
            Not After : Mon May 02 15:15:55 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:21:58:95:18:aa:0c:82:bf:82:0b:52:89:b3:0a:ef:
                    f7:28:0c:f0:f1:08:52:9c:5a:33:8b:aa:71:fd:61:d3:
                    4a:6f:35:a5:4b:3e:31:61:b3:f4:58:10:c8:fd:da:fc:
                    c4:f2:2f:c2:b7:a7:0c:7b:b0:fe:db:4f:9e:98:9a:56:
                    83:f6:96:b3:7b:15:99:46:ec:7d:68:b0:4d:2f:47:3c:
                    7f:e2:5c:65:04:7c:c5:cb:88:b4:89:eb:ea:f8:fd:a6:
                    7d:20:ba:49:31:79:3e:d4:0a:4a:76:88:23:a0:bf:2d:
                    e1:b3:ec:df:7a:88:bb:37:8f:52:97:28:63:5f:8f:6e:
                    2a:7c:62:46:ef:1f:2f:97:6e:b0:9d:7e:6d:86:4d:d6:
                    65:2b:eb:58:e6:b3:b8:f2:cf:1d:07:97:a0:dd:d4:22:
                    5f:b1:df:0d:4a:c4:10:24:6d:dc:cf:c4:e3:a3:51:25:
                    53:23:e7:82:8c:d7:49:fa:95:4a:a6:1d:bf:19:07:8c:
                    e6:87:2f:83:c6:71:20:f8:6b:10:d9:92:05:56:76:fb:
                    0e:4c:13:c7:4d:c5:ed:84:9b:4a:d0:e6:fb:14:13:8f:
                    38:35:61:8d:ab:95:5d:04:c7:ea:82:2f:7f:03:43:20:
                    ab:59:80:5a:bf:19:8e:f7:85:59:d5:6c:3e:a7:b7:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:25:ed:70:33:75:2c:52:40:cc:26:a7:32:1c:2b:61:
        77:44:62:1f:4f:9c:3d:fd:1d:9c:74:65:a0:f4:52:2c:
        a2:e1:6f:aa:f3:76:45:1b:a4:b4:4e:ca:54:d0:8c:6a:
        f8:cf:62:f1:84:3b:3f:43:5f:c1:8a:76:e2:7c:2e:75:
        36:f1:40:44:66:ab:21:01:c3:6c:0c:c5:08:7a:1d:17:
        be:fd:99:92:60:3f:48:42:61:37:71:aa:3c:e7:3f:dd:
        59:d6:98:89:bb:bf:97:4b:95:78:d2:90:5a:e4:e8:81:
        55:51:2f:92:4f:55:e1:cc:47:f4:d1:a6:65:44:57:47:
        16:4e:6c:fe:84:f5:c7:41:12:60:2f:23:db:a2:6b:3d:
        fd:6b:fc:c1:30:c7:0f:ec:3d:62:6d:61:86:b1:41:0a:
        e7:06:1a:a0:81:ad:b2:5a:aa:53:f8:56:7f:55:7e:df:
        fd:9c:b5:8d:d8:38:8e:46:30:4c:0f:52:23:62:a7:5c:
        a3:20:3f:0a:c7:87:8b:f8:3f:46:a9:d1:75:c2:da:16:
        5e:b9:36:db:30:74:22:36:b3:7d:f3:b4:03:dc:b8:fa:
        b7:e5:58:09:db:14:41:2e:e7:d6:52:8c:e4:cf:b2:6d:
        33:c1:36:ed:b7:98:f9:36:db:35:f5:07:be:6b:c1:24
    Fingerprint (SHA-256):
        41:0A:46:F6:3E:31:6A:E3:1A:30:8F:F9:F9:B2:C8:C9:DA:81:DA:AE:18:8F:CC:CF:C9:A4:D0:67:7D:F1:08:B8
    Fingerprint (SHA1):
        9D:56:97:F6:44:19:3A:ED:B4:8A:34:C6:A1:21:88:AC:6E:44:F4:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #588: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Tue May  2 15:16:23 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:16:23 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #589: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f7:72:6f:7a:eb:0a:04:c1:b2:be:14:ba:ab:ef:8a:48
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #592: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #593: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4a:b8:a7:f8:b2:f0:77:bb:23:d4:55:52:29:3e:05:f5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:15:50 2017
            Not After : Mon May 02 15:15:50 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:5a:5e:f2:1d:17:83:1f:68:03:b5:69:ee:7d:f5:
                    97:f3:9a:e4:9b:66:a3:7b:ca:bf:6a:ff:95:3f:2c:9b:
                    f4:d9:ad:41:45:ab:31:44:14:1e:2b:49:ae:dc:31:93:
                    00:70:b9:0c:7f:b8:f8:f6:cc:9e:f4:d8:b1:4b:6f:25:
                    e6:97:19:01:71:a9:27:87:23:84:6e:b8:a9:0b:02:d5:
                    b3:48:3e:5c:b9:0c:27:c5:46:a4:1d:9b:c7:d5:7d:a6:
                    2f:d6:4e:df:86:90:17:72:e5:f0:eb:b0:e0:19:9b:82:
                    ac:d8:37:00:ae:5d:b3:e8:05:57:d3:59:ce:6e:5c:e1:
                    71:c9:59:43:82
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:01:4f:ff:ec:55:82:26:98:b1:9e:fd:
        fb:76:fc:68:40:2c:b5:b1:8a:b0:31:3f:bc:9c:57:f5:
        f7:f9:50:a8:e4:c3:ec:51:b6:ee:ee:3e:cd:50:a8:fd:
        28:19:78:40:ca:39:82:6e:80:65:e4:07:c0:fb:76:b5:
        3e:58:05:59:70:f4:7b:02:42:00:fd:56:c6:68:f4:d9:
        12:f8:d1:e0:27:e0:0d:6b:47:ee:6e:21:71:67:b8:06:
        44:ee:d1:64:d1:00:6b:d3:dc:19:48:01:c3:4f:ce:64:
        3d:2e:9e:d2:21:fd:3e:f4:fe:54:a3:1f:87:b9:57:12:
        63:78:8f:34:b1:b4:7e:16:d9:0a:14
    Fingerprint (SHA-256):
        BE:D6:D4:BD:67:3F:C8:53:ED:1F:57:AD:23:2E:2D:B2:0A:D6:91:E0:34:54:75:70:4A:8D:54:3B:4C:85:BE:C0
    Fingerprint (SHA1):
        5E:FB:56:B5:41:EC:56:ED:B7:A6:1D:86:1B:A8:0C:12:B5:C4:5D:EC
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:15:55 2017
            Not After : Mon May 02 15:15:55 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:98:9c:91:b7:ef:6e:23:f6:8d:70:43:57:60:63:8d:
                    17:a8:f4:87:f0:ad:bc:b5:3d:76:eb:b7:5b:da:f0:9e:
                    10:7a:e3:c3:e7:4b:b1:ef:41:01:c0:82:c9:e3:39:e3:
                    aa:5c:2a:62:c2:f2:a9:b2:d4:33:ba:7c:e5:8b:4a:7d:
                    3c:fc:a4:1a:3f:e0:11:6c:6c:d5:9e:76:82:f2:73:64:
                    56:3d:c0:5b:1d:86:f8:91:71:46:78:b7:2e:32:e4:94:
                    b1
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:ee:ed:e4:44:36:3e:73:b0:06:7a:
        ab:09:0e:5e:5a:2f:e0:a4:87:24:4a:f3:d1:d3:7c:3b:
        28:b7:44:0b:7a:08:2e:cd:e8:e8:8a:1b:1d:94:c2:79:
        1c:8c:52:7d:f4:21:65:84:e6:0b:97:bc:36:db:ed:23:
        7e:f2:fb:13:3f:e0:2b:02:42:01:59:73:52:df:bf:a6:
        0d:23:c8:64:ac:fa:4c:6b:e9:a9:71:39:30:a9:c7:84:
        f7:85:22:d1:5d:87:5a:a2:cd:fc:25:af:38:4e:65:02:
        c3:df:51:57:0e:a8:c3:55:25:1f:10:1b:94:13:13:d4:
        03:5c:71:80:fb:1c:46:7a:28:5e:13
    Fingerprint (SHA-256):
        A6:2F:14:D7:9F:1E:7E:AD:90:1A:16:0C:CA:43:27:7D:E5:A1:33:E7:DF:66:7E:4D:58:0C:66:39:04:2F:A8:F4
    Fingerprint (SHA1):
        04:80:E7:DC:99:26:4C:A2:2D:7B:70:46:09:9C:DA:B9:A4:D9:64:21
    Friendly Name: Alice-ec
tools.sh: #594: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #595: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                8b:a3:cb:59:e8:81:f9:f3:e8:3c:b5:53:50:a3:90:01
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #598: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                f7:a5:2c:fb:0a:63:b8:fa:73:26:38:aa:de:84:eb:2b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #601: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0c:e8:79:43:ed:fc:da:58:e0:5a:57:5c:21:ab:fa:81
            Iteration Count: 2000 (0x7d0)
tools.sh: #602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #604: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                80:fb:83:73:25:c1:1f:71:e2:e1:1b:8b:37:5f:79:22
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #606: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #607: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                16:97:0a:71:95:f1:fd:32:9b:5a:f7:26:96:ee:5a:b9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #610: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6a:46:e9:1e:e0:b0:10:82:ec:16:39:e3:50:3b:3c:ef
            Iteration Count: 2000 (0x7d0)
tools.sh: #611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #613: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        53:41:31:31:7d:3b:0b:e2:cf:69:f9:49:3b:7a:03:1f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:20:b2:0c:31:9e:34:c7:1e:c1:47:de:4a:4d:d7:
                    9c:fb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #616: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        65:f8:a3:98:2d:0e:82:3e:28:e1:42:b4:cb:ac:75:bd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:1b:cb:e6:a9:2c:f5:7e:2d:cb:0e:6d:a3:a8:2e:
                    4b:4d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #619: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        80:fe:fa:a1:69:f2:67:28:ef:18:2c:c7:0e:ec:31:5f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:84:0b:e6:f1:00:d6:45:bd:6a:61:79:eb:2b:9a:
                    fa:b8
tools.sh: #620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #621: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #622: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        45:f9:83:27:7c:fb:4a:61:09:93:e5:d2:06:20:2c:57
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:cd:b4:36:0f:6f:ad:cf:28:7e:d9:45:c7:7e:bb:
                    c7:83
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #625: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        72:ec:6a:92:7b:a6:3d:dc:2c:5a:d5:d8:51:2e:9b:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:ff:38:b2:5a:98:9d:21:1a:29:c6:18:39:2b:c8:
                    cf:f8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #627: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #628: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:93:23:e1:91:99:78:dd:06:c0:41:e3:77:b8:97:7f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:a6:2f:9d:38:67:58:68:8d:08:d6:e1:32:c0:b5:
                    5b:9c
tools.sh: #629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #630: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #631: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5d:32:05:b5:44:3e:e6:15:12:e0:e5:27:2b:32:16:dc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:8a:5d:10:b8:58:cc:c1:00:9f:d2:cb:33:a2:d1:
                    ef:f0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #633: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #634: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9b:1f:30:05:ea:20:e9:3d:a5:85:b3:b9:26:e1:fa:c6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:ff:2f:1f:ed:7f:02:d9:b4:34:86:00:e4:b0:6b:
                    79:86
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #636: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #637: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ff:d0:0c:e0:0e:00:7b:9b:9b:ba:87:b4:0b:fa:77:0f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b9:b7:1e:24:6a:6e:90:f5:35:03:1b:51:18:74:
                    75:7a
tools.sh: #638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #639: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #640: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1c:c6:d7:02:28:ce:69:29:79:8f:18:56:80:4f:23:2f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:9e:05:83:20:fa:e5:38:cf:88:80:a2:d6:ef:d3:
                    c9:00
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #642: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #643: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a2:06:43:d5:3e:8b:0a:fd:90:15:22:aa:05:e5:d0:88
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:8a:14:6e:10:c8:24:67:30:91:88:d7:df:a6:7b:
                    d7:58
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #645: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #646: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ce:ec:ca:0f:80:47:ad:71:24:d6:c4:eb:46:ce:4f:db
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:30:9d:f6:4e:39:74:76:49:cf:81:e1:0d:e8:34:
                    20:2f
tools.sh: #647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #648: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #649: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        64:4f:e9:41:65:e8:1c:fb:ef:b0:f3:d0:61:8a:22:dc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:86:a9:e7:ab:47:b7:98:1d:f3:0a:27:a4:13:ad:
                    d9:18
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #651: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #652: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        63:49:e0:e2:ed:36:f7:91:f9:36:09:77:e0:01:b6:92
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:80:41:89:ae:86:f0:e7:32:a3:65:cc:ba:13:02:
                    09:7e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #654: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #655: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:70:f8:3b:43:3b:ca:9f:c1:5f:04:db:a7:37:61:e9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:76:99:98:94:96:73:6c:72:43:bd:d4:79:15:b3:
                    a3:e3
tools.sh: #656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #657: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #658: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        52:8c:69:cc:40:0e:c3:c4:bd:90:11:08:ad:12:72:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:19:42:59:62:b1:cd:40:9e:b9:d6:95:66:f6:38:
                    b8:5b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #660: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #661: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        77:86:6c:7d:1a:ed:43:5d:80:dd:2f:51:fd:6a:4b:cd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:19:ce:2b:b7:2c:18:68:07:0c:a2:f1:b7:b7:9a:
                    22:df
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #663: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #664: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2d:59:98:ce:e3:72:62:bd:a3:41:aa:f0:ae:36:5d:e8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ab:29:6f:8e:c3:e6:3d:ed:d9:cb:07:5e:f9:fa:
                    d6:8b
tools.sh: #665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #666: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #667: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                5e:ab:f7:5e:dd:e5:4d:b0:f7:d2:d6:41:84:ba:f4:2e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #669: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #670: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                eb:32:88:5a:4b:1a:f7:85:32:50:1f:94:b7:ba:43:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #673: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                62:e0:9e:6c:1f:09:b8:f3:af:8d:b5:f8:68:72:fd:7e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #674: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #675: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #676: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                59:75:1c:3d:66:db:35:9e:20:0d:91:dc:56:d5:68:0a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #677: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #678: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #679: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                d5:eb:9b:9e:c0:b5:3e:c0:c4:ee:52:7a:d6:ff:0a:5f
            Iteration Count: 2000 (0x7d0)
tools.sh: #680: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #681: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #682: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                db:f6:d0:8a:3f:e7:2f:fd:98:ea:4f:2a:b3:1c:aa:1b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #683: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #684: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #685: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                a1:10:04:52:e5:b6:49:e8:1e:55:96:5e:51:5b:55:87
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #686: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #687: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #688: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                5e:3e:0a:01:a8:d3:03:86:17:ac:05:53:58:d0:88:79
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #689: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #690: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #691: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                8c:29:b8:62:5f:b7:04:14:92:79:bd:39:81:7d:19:b8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #692: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #693: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #694: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                a9:37:1c:66:14:fd:e4:bc:9c:f4:05:59:46:a7:aa:04
            Iteration Count: 2000 (0x7d0)
tools.sh: #695: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #696: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #697: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                f4:d3:bf:6a:b3:93:b4:be:02:6c:f8:9b:2c:21:bc:40
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #698: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #699: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #700: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ac:0b:0e:fc:2f:b7:cb:af:8c:47:42:45:c8:8e:f6:ca
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #701: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #702: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #703: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                6b:f1:ad:66:f8:16:38:53:cb:ef:d9:39:78:5c:f7:8f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #704: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #705: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #706: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ce:62:07:8d:2e:d9:4c:2f:38:8b:83:dc:b6:28:f2:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #707: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #708: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #709: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                88:b8:bd:9a:f7:b6:21:fb:65:81:41:54:ab:fd:3b:38
            Iteration Count: 2000 (0x7d0)
tools.sh: #710: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #711: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #712: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                51:84:c5:61:a7:0a:fa:da:f1:91:0f:44:5c:73:0e:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #713: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #714: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #715: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8c:0c:88:b4:0d:3a:76:36:a5:b7:64:05:07:e6:25:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #716: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #717: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #718: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1d:96:9f:00:82:71:85:31:0f:d1:a3:04:d2:0c:dc:73
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #719: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #720: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #721: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                75:5d:24:d1:ae:e4:48:1a:bd:8a:cc:cf:22:6f:20:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #722: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #723: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #724: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                87:dc:57:98:5d:6e:a3:0c:50:cb:12:f5:1c:31:4a:05
            Iteration Count: 2000 (0x7d0)
tools.sh: #725: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #726: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #727: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                33:3a:a6:e9:0b:43:82:9e:10:9d:25:3d:a3:20:c8:a8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #728: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #729: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #730: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3c:56:97:f8:b1:a8:05:04:e7:2d:eb:6f:f1:a3:a5:a9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #731: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #732: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #733: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                86:d7:40:80:3f:12:a4:dd:ec:16:e8:b7:b3:79:e4:85
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #735: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #736: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bc:ab:4e:ef:a0:d9:32:50:53:9e:ec:b3:ca:67:12:41
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #737: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #738: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #739: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4e:36:5e:92:eb:f7:c5:06:d0:fa:70:6c:f3:d7:e7:c7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #741: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #742: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                af:de:0d:1e:d4:7b:f4:d6:aa:4e:f4:f9:af:50:22:c0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #744: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #745: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                21:9a:de:ff:14:70:26:e0:68:24:f9:cb:c0:91:f0:08
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #747: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #748: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                58:22:59:a2:65:5f:b6:b5:4a:ec:86:b0:18:fe:c6:2b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #750: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #751: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d3:73:c0:45:d5:5f:ea:71:ca:df:be:50:7a:9a:0a:4c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #753: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #754: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9b:8a:e1:5c:69:ae:4b:a3:21:f9:b7:35:6b:6a:0b:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #757: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #758: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #759: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #760: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #761: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #762: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #763: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #764: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #765: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:16:28 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:16:28 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #766: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #767: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      46e75498b248640390368d6354ede6389f8e7958   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #768: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #769: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #770: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #771: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #772: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #773: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #774: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #775: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #776: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #777: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #778: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      46e75498b248640390368d6354ede6389f8e7958   FIPS_PUB_140_Test_Certificate
fips.sh: #779: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #780: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #781: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #782: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #783: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      46e75498b248640390368d6354ede6389f8e7958   FIPS_PUB_140_Test_Certificate
fips.sh: #784: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #785: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #786: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
Changing byte 0x0003fd48 (261448): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle dbtest -r -d ../fips
fips.sh: #787: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:16:36 UTC 2017
Running tests for sdr
TIMESTAMP sdr BEGIN: Tue May  2 15:16:36 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.7616 -t "Test1"
sdr.sh: #788: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v2.7616 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #789: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.7616 -t "1234567"
sdr.sh: #790: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.7616 -t "Test1"
sdr.sh: #791: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v2.7616 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #792: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.7616 -t "1234567"
sdr.sh: #793: Decrypt - Value 3  - PASSED
TIMESTAMP sdr END: Tue May  2 15:16:36 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 15:16:36 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #794: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #795: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 15:16:36 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 15:16:36 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #796: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #797: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #798: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #799: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #800: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #801: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #802: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #803: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #804: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #805: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #806: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #807: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #808: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #809: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #810: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #811: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #812: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #813: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #814: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #815: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #816: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #817: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #818: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #819: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #820: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #821: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #822: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #823: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #824: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #825: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #826: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #827: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #828: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #829: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #830: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #831: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #832: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #833: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #834: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #835: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #836: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #837: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #838: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #839: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #840: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #841: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #842: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #843: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #844: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #845: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #846: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #847: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #848: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #849: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #850: Decode Encrypted-Data . - PASSED
smime.sh: #851: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #852: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #853: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #854: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #855: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #856: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 15:16:38 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:16:38 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17321 >/dev/null 2>/dev/null
selfserv_9247 with PID 17321 found at Tue May  2 15:16:38 UTC 2017
selfserv_9247 with PID 17321 started at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #857: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 17321 at Tue May  2 15:16:38 UTC 2017
kill -USR1 17321
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17321 killed at Tue May  2 15:16:38 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17377 >/dev/null 2>/dev/null
selfserv_9247 with PID 17377 found at Tue May  2 15:16:38 UTC 2017
selfserv_9247 with PID 17377 started at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #858: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 17377 at Tue May  2 15:16:38 UTC 2017
kill -USR1 17377
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17377 killed at Tue May  2 15:16:38 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17433 >/dev/null 2>/dev/null
selfserv_9247 with PID 17433 found at Tue May  2 15:16:38 UTC 2017
selfserv_9247 with PID 17433 started at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #859: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 17433 at Tue May  2 15:16:38 UTC 2017
kill -USR1 17433
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17433 killed at Tue May  2 15:16:38 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17501 >/dev/null 2>/dev/null
selfserv_9247 with PID 17501 found at Tue May  2 15:16:38 UTC 2017
selfserv_9247 with PID 17501 started at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #860: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 17501 at Tue May  2 15:16:38 UTC 2017
kill -USR1 17501
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17501 killed at Tue May  2 15:16:38 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17557 >/dev/null 2>/dev/null
selfserv_9247 with PID 17557 found at Tue May  2 15:16:38 UTC 2017
selfserv_9247 with PID 17557 started at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #861: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 17557 at Tue May  2 15:16:38 UTC 2017
kill -USR1 17557
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17557 killed at Tue May  2 15:16:38 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17613 >/dev/null 2>/dev/null
selfserv_9247 with PID 17613 found at Tue May  2 15:16:38 UTC 2017
selfserv_9247 with PID 17613 started at Tue May  2 15:16:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #862: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 17613 at Tue May  2 15:16:39 UTC 2017
kill -USR1 17613
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17613 killed at Tue May  2 15:16:39 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17681 >/dev/null 2>/dev/null
selfserv_9247 with PID 17681 found at Tue May  2 15:16:39 UTC 2017
selfserv_9247 with PID 17681 started at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #863: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 17681 at Tue May  2 15:16:39 UTC 2017
kill -USR1 17681
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17681 killed at Tue May  2 15:16:39 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17737 >/dev/null 2>/dev/null
selfserv_9247 with PID 17737 found at Tue May  2 15:16:39 UTC 2017
selfserv_9247 with PID 17737 started at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #864: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 17737 at Tue May  2 15:16:39 UTC 2017
kill -USR1 17737
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17737 killed at Tue May  2 15:16:39 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17793 >/dev/null 2>/dev/null
selfserv_9247 with PID 17793 found at Tue May  2 15:16:39 UTC 2017
selfserv_9247 with PID 17793 started at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #865: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 17793 at Tue May  2 15:16:39 UTC 2017
kill -USR1 17793
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17793 killed at Tue May  2 15:16:39 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17861 >/dev/null 2>/dev/null
selfserv_9247 with PID 17861 found at Tue May  2 15:16:39 UTC 2017
selfserv_9247 with PID 17861 started at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #866: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 17861 at Tue May  2 15:16:39 UTC 2017
kill -USR1 17861
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17861 killed at Tue May  2 15:16:39 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17919 >/dev/null 2>/dev/null
selfserv_9247 with PID 17919 found at Tue May  2 15:16:39 UTC 2017
selfserv_9247 with PID 17919 started at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #867: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 17919 at Tue May  2 15:16:39 UTC 2017
kill -USR1 17919
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17919 killed at Tue May  2 15:16:39 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17975 >/dev/null 2>/dev/null
selfserv_9247 with PID 17975 found at Tue May  2 15:16:39 UTC 2017
selfserv_9247 with PID 17975 started at Tue May  2 15:16:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #868: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 17975 at Tue May  2 15:16:40 UTC 2017
kill -USR1 17975
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17975 killed at Tue May  2 15:16:40 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18043 >/dev/null 2>/dev/null
selfserv_9247 with PID 18043 found at Tue May  2 15:16:40 UTC 2017
selfserv_9247 with PID 18043 started at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #869: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 18043 at Tue May  2 15:16:40 UTC 2017
kill -USR1 18043
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18043 killed at Tue May  2 15:16:40 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18099 >/dev/null 2>/dev/null
selfserv_9247 with PID 18099 found at Tue May  2 15:16:40 UTC 2017
selfserv_9247 with PID 18099 started at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #870: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 18099 at Tue May  2 15:16:40 UTC 2017
kill -USR1 18099
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18099 killed at Tue May  2 15:16:40 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18156 >/dev/null 2>/dev/null
selfserv_9247 with PID 18156 found at Tue May  2 15:16:40 UTC 2017
selfserv_9247 with PID 18156 started at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #871: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 18156 at Tue May  2 15:16:40 UTC 2017
kill -USR1 18156
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18156 killed at Tue May  2 15:16:40 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18225 >/dev/null 2>/dev/null
selfserv_9247 with PID 18225 found at Tue May  2 15:16:40 UTC 2017
selfserv_9247 with PID 18225 started at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #872: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 18225 at Tue May  2 15:16:40 UTC 2017
kill -USR1 18225
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18225 killed at Tue May  2 15:16:40 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18281 >/dev/null 2>/dev/null
selfserv_9247 with PID 18281 found at Tue May  2 15:16:40 UTC 2017
selfserv_9247 with PID 18281 started at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #873: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 18281 at Tue May  2 15:16:40 UTC 2017
kill -USR1 18281
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18281 killed at Tue May  2 15:16:40 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18337 >/dev/null 2>/dev/null
selfserv_9247 with PID 18337 found at Tue May  2 15:16:40 UTC 2017
selfserv_9247 with PID 18337 started at Tue May  2 15:16:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #874: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 18337 at Tue May  2 15:16:41 UTC 2017
kill -USR1 18337
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18337 killed at Tue May  2 15:16:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18406 >/dev/null 2>/dev/null
selfserv_9247 with PID 18406 found at Tue May  2 15:16:41 UTC 2017
selfserv_9247 with PID 18406 started at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #875: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 18406 at Tue May  2 15:16:41 UTC 2017
kill -USR1 18406
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18406 killed at Tue May  2 15:16:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18462 >/dev/null 2>/dev/null
selfserv_9247 with PID 18462 found at Tue May  2 15:16:41 UTC 2017
selfserv_9247 with PID 18462 started at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #876: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 18462 at Tue May  2 15:16:41 UTC 2017
kill -USR1 18462
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18462 killed at Tue May  2 15:16:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18518 >/dev/null 2>/dev/null
selfserv_9247 with PID 18518 found at Tue May  2 15:16:41 UTC 2017
selfserv_9247 with PID 18518 started at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #877: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 18518 at Tue May  2 15:16:41 UTC 2017
kill -USR1 18518
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18518 killed at Tue May  2 15:16:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18586 >/dev/null 2>/dev/null
selfserv_9247 with PID 18586 found at Tue May  2 15:16:41 UTC 2017
selfserv_9247 with PID 18586 started at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #878: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 18586 at Tue May  2 15:16:41 UTC 2017
kill -USR1 18586
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18586 killed at Tue May  2 15:16:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18642 >/dev/null 2>/dev/null
selfserv_9247 with PID 18642 found at Tue May  2 15:16:41 UTC 2017
selfserv_9247 with PID 18642 started at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #879: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 18642 at Tue May  2 15:16:41 UTC 2017
kill -USR1 18642
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18642 killed at Tue May  2 15:16:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18698 >/dev/null 2>/dev/null
selfserv_9247 with PID 18698 found at Tue May  2 15:16:41 UTC 2017
selfserv_9247 with PID 18698 started at Tue May  2 15:16:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #880: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 18698 at Tue May  2 15:16:41 UTC 2017
kill -USR1 18698
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18698 killed at Tue May  2 15:16:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18766 >/dev/null 2>/dev/null
selfserv_9247 with PID 18766 found at Tue May  2 15:16:42 UTC 2017
selfserv_9247 with PID 18766 started at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #881: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 18766 at Tue May  2 15:16:42 UTC 2017
kill -USR1 18766
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18766 killed at Tue May  2 15:16:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18822 >/dev/null 2>/dev/null
selfserv_9247 with PID 18822 found at Tue May  2 15:16:42 UTC 2017
selfserv_9247 with PID 18822 started at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #882: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 18822 at Tue May  2 15:16:42 UTC 2017
kill -USR1 18822
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18822 killed at Tue May  2 15:16:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18878 >/dev/null 2>/dev/null
selfserv_9247 with PID 18878 found at Tue May  2 15:16:42 UTC 2017
selfserv_9247 with PID 18878 started at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #883: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 18878 at Tue May  2 15:16:42 UTC 2017
kill -USR1 18878
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18878 killed at Tue May  2 15:16:42 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18946 >/dev/null 2>/dev/null
selfserv_9247 with PID 18946 found at Tue May  2 15:16:42 UTC 2017
selfserv_9247 with PID 18946 started at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #884: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 18946 at Tue May  2 15:16:42 UTC 2017
kill -USR1 18946
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18946 killed at Tue May  2 15:16:42 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19002 >/dev/null 2>/dev/null
selfserv_9247 with PID 19002 found at Tue May  2 15:16:42 UTC 2017
selfserv_9247 with PID 19002 started at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #885: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 19002 at Tue May  2 15:16:42 UTC 2017
kill -USR1 19002
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19002 killed at Tue May  2 15:16:42 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19058 >/dev/null 2>/dev/null
selfserv_9247 with PID 19058 found at Tue May  2 15:16:42 UTC 2017
selfserv_9247 with PID 19058 started at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #886: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 19058 at Tue May  2 15:16:42 UTC 2017
kill -USR1 19058
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19058 killed at Tue May  2 15:16:42 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19126 >/dev/null 2>/dev/null
selfserv_9247 with PID 19126 found at Tue May  2 15:16:42 UTC 2017
selfserv_9247 with PID 19126 started at Tue May  2 15:16:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #887: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 19126 at Tue May  2 15:16:43 UTC 2017
kill -USR1 19126
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19126 killed at Tue May  2 15:16:43 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19182 >/dev/null 2>/dev/null
selfserv_9247 with PID 19182 found at Tue May  2 15:16:43 UTC 2017
selfserv_9247 with PID 19182 started at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #888: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 19182 at Tue May  2 15:16:43 UTC 2017
kill -USR1 19182
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19182 killed at Tue May  2 15:16:43 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19238 >/dev/null 2>/dev/null
selfserv_9247 with PID 19238 found at Tue May  2 15:16:43 UTC 2017
selfserv_9247 with PID 19238 started at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #889: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 19238 at Tue May  2 15:16:43 UTC 2017
kill -USR1 19238
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19238 killed at Tue May  2 15:16:43 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19306 >/dev/null 2>/dev/null
selfserv_9247 with PID 19306 found at Tue May  2 15:16:43 UTC 2017
selfserv_9247 with PID 19306 started at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #890: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 19306 at Tue May  2 15:16:43 UTC 2017
kill -USR1 19306
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19306 killed at Tue May  2 15:16:43 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19362 >/dev/null 2>/dev/null
selfserv_9247 with PID 19362 found at Tue May  2 15:16:43 UTC 2017
selfserv_9247 with PID 19362 started at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #891: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19362 at Tue May  2 15:16:43 UTC 2017
kill -USR1 19362
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19362 killed at Tue May  2 15:16:43 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19418 >/dev/null 2>/dev/null
selfserv_9247 with PID 19418 found at Tue May  2 15:16:43 UTC 2017
selfserv_9247 with PID 19418 started at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #892: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 19418 at Tue May  2 15:16:43 UTC 2017
kill -USR1 19418
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19418 killed at Tue May  2 15:16:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9247 with PID 19486 found at Tue May  2 15:16:43 UTC 2017
selfserv_9247 with PID 19486 started at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #893: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19486 at Tue May  2 15:16:43 UTC 2017
kill -USR1 19486
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19486 killed at Tue May  2 15:16:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19542 >/dev/null 2>/dev/null
selfserv_9247 with PID 19542 found at Tue May  2 15:16:43 UTC 2017
selfserv_9247 with PID 19542 started at Tue May  2 15:16:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #894: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19542 at Tue May  2 15:16:44 UTC 2017
kill -USR1 19542
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19542 killed at Tue May  2 15:16:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19598 >/dev/null 2>/dev/null
selfserv_9247 with PID 19598 found at Tue May  2 15:16:44 UTC 2017
selfserv_9247 with PID 19598 started at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #895: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19598 at Tue May  2 15:16:44 UTC 2017
kill -USR1 19598
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19598 killed at Tue May  2 15:16:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19666 >/dev/null 2>/dev/null
selfserv_9247 with PID 19666 found at Tue May  2 15:16:44 UTC 2017
selfserv_9247 with PID 19666 started at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #896: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19666 at Tue May  2 15:16:44 UTC 2017
kill -USR1 19666
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19666 killed at Tue May  2 15:16:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19722 >/dev/null 2>/dev/null
selfserv_9247 with PID 19722 found at Tue May  2 15:16:44 UTC 2017
selfserv_9247 with PID 19722 started at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #897: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19722 at Tue May  2 15:16:44 UTC 2017
kill -USR1 19722
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19722 killed at Tue May  2 15:16:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19778 >/dev/null 2>/dev/null
selfserv_9247 with PID 19778 found at Tue May  2 15:16:44 UTC 2017
selfserv_9247 with PID 19778 started at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #898: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19778 at Tue May  2 15:16:44 UTC 2017
kill -USR1 19778
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19778 killed at Tue May  2 15:16:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19846 >/dev/null 2>/dev/null
selfserv_9247 with PID 19846 found at Tue May  2 15:16:44 UTC 2017
selfserv_9247 with PID 19846 started at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #899: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 19846 at Tue May  2 15:16:44 UTC 2017
kill -USR1 19846
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19846 killed at Tue May  2 15:16:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19902 >/dev/null 2>/dev/null
selfserv_9247 with PID 19902 found at Tue May  2 15:16:44 UTC 2017
selfserv_9247 with PID 19902 started at Tue May  2 15:16:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #900: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19902 at Tue May  2 15:16:45 UTC 2017
kill -USR1 19902
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19902 killed at Tue May  2 15:16:45 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19958 >/dev/null 2>/dev/null
selfserv_9247 with PID 19958 found at Tue May  2 15:16:45 UTC 2017
selfserv_9247 with PID 19958 started at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #901: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 19958 at Tue May  2 15:16:45 UTC 2017
kill -USR1 19958
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19958 killed at Tue May  2 15:16:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20026 >/dev/null 2>/dev/null
selfserv_9247 with PID 20026 found at Tue May  2 15:16:45 UTC 2017
selfserv_9247 with PID 20026 started at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #902: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20026 at Tue May  2 15:16:45 UTC 2017
kill -USR1 20026
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20026 killed at Tue May  2 15:16:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20082 >/dev/null 2>/dev/null
selfserv_9247 with PID 20082 found at Tue May  2 15:16:45 UTC 2017
selfserv_9247 with PID 20082 started at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #903: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20082 at Tue May  2 15:16:45 UTC 2017
kill -USR1 20082
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20082 killed at Tue May  2 15:16:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20138 >/dev/null 2>/dev/null
selfserv_9247 with PID 20138 found at Tue May  2 15:16:45 UTC 2017
selfserv_9247 with PID 20138 started at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #904: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20138 at Tue May  2 15:16:45 UTC 2017
kill -USR1 20138
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20138 killed at Tue May  2 15:16:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20206 >/dev/null 2>/dev/null
selfserv_9247 with PID 20206 found at Tue May  2 15:16:45 UTC 2017
selfserv_9247 with PID 20206 started at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #905: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20206 at Tue May  2 15:16:45 UTC 2017
kill -USR1 20206
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20206 killed at Tue May  2 15:16:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20262 >/dev/null 2>/dev/null
selfserv_9247 with PID 20262 found at Tue May  2 15:16:45 UTC 2017
selfserv_9247 with PID 20262 started at Tue May  2 15:16:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #906: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20262 at Tue May  2 15:16:46 UTC 2017
kill -USR1 20262
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20262 killed at Tue May  2 15:16:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20318 >/dev/null 2>/dev/null
selfserv_9247 with PID 20318 found at Tue May  2 15:16:46 UTC 2017
selfserv_9247 with PID 20318 started at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #907: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20318 at Tue May  2 15:16:46 UTC 2017
kill -USR1 20318
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20318 killed at Tue May  2 15:16:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20386 >/dev/null 2>/dev/null
selfserv_9247 with PID 20386 found at Tue May  2 15:16:46 UTC 2017
selfserv_9247 with PID 20386 started at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #908: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20386 at Tue May  2 15:16:46 UTC 2017
kill -USR1 20386
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20386 killed at Tue May  2 15:16:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20442 >/dev/null 2>/dev/null
selfserv_9247 with PID 20442 found at Tue May  2 15:16:46 UTC 2017
selfserv_9247 with PID 20442 started at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #909: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20442 at Tue May  2 15:16:46 UTC 2017
kill -USR1 20442
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20442 killed at Tue May  2 15:16:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20498 >/dev/null 2>/dev/null
selfserv_9247 with PID 20498 found at Tue May  2 15:16:46 UTC 2017
selfserv_9247 with PID 20498 started at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #910: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20498 at Tue May  2 15:16:46 UTC 2017
kill -USR1 20498
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20498 killed at Tue May  2 15:16:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20566 >/dev/null 2>/dev/null
selfserv_9247 with PID 20566 found at Tue May  2 15:16:46 UTC 2017
selfserv_9247 with PID 20566 started at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #911: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20566 at Tue May  2 15:16:46 UTC 2017
kill -USR1 20566
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20566 killed at Tue May  2 15:16:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20622 >/dev/null 2>/dev/null
selfserv_9247 with PID 20622 found at Tue May  2 15:16:46 UTC 2017
selfserv_9247 with PID 20622 started at Tue May  2 15:16:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #912: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20622 at Tue May  2 15:16:47 UTC 2017
kill -USR1 20622
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20622 killed at Tue May  2 15:16:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20678 >/dev/null 2>/dev/null
selfserv_9247 with PID 20678 found at Tue May  2 15:16:47 UTC 2017
selfserv_9247 with PID 20678 started at Tue May  2 15:16:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #913: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20678 at Tue May  2 15:16:47 UTC 2017
kill -USR1 20678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20678 killed at Tue May  2 15:16:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20746 >/dev/null 2>/dev/null
selfserv_9247 with PID 20746 found at Tue May  2 15:16:47 UTC 2017
selfserv_9247 with PID 20746 started at Tue May  2 15:16:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #914: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20746 at Tue May  2 15:16:47 UTC 2017
kill -USR1 20746
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20746 killed at Tue May  2 15:16:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20802 >/dev/null 2>/dev/null
selfserv_9247 with PID 20802 found at Tue May  2 15:16:47 UTC 2017
selfserv_9247 with PID 20802 started at Tue May  2 15:16:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #915: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20802 at Tue May  2 15:16:47 UTC 2017
kill -USR1 20802
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20802 killed at Tue May  2 15:16:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20858 >/dev/null 2>/dev/null
selfserv_9247 with PID 20858 found at Tue May  2 15:16:47 UTC 2017
selfserv_9247 with PID 20858 started at Tue May  2 15:16:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #916: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20858 at Tue May  2 15:16:47 UTC 2017
kill -USR1 20858
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20858 killed at Tue May  2 15:16:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20926 >/dev/null 2>/dev/null
selfserv_9247 with PID 20926 found at Tue May  2 15:16:48 UTC 2017
selfserv_9247 with PID 20926 started at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #917: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20926 at Tue May  2 15:16:48 UTC 2017
kill -USR1 20926
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20926 killed at Tue May  2 15:16:48 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20982 >/dev/null 2>/dev/null
selfserv_9247 with PID 20982 found at Tue May  2 15:16:48 UTC 2017
selfserv_9247 with PID 20982 started at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #918: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20982 at Tue May  2 15:16:48 UTC 2017
kill -USR1 20982
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20982 killed at Tue May  2 15:16:48 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21038 >/dev/null 2>/dev/null
selfserv_9247 with PID 21038 found at Tue May  2 15:16:48 UTC 2017
selfserv_9247 with PID 21038 started at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #919: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21038 at Tue May  2 15:16:48 UTC 2017
kill -USR1 21038
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21038 killed at Tue May  2 15:16:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21106 >/dev/null 2>/dev/null
selfserv_9247 with PID 21106 found at Tue May  2 15:16:48 UTC 2017
selfserv_9247 with PID 21106 started at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #920: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21106 at Tue May  2 15:16:48 UTC 2017
kill -USR1 21106
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21106 killed at Tue May  2 15:16:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21162 >/dev/null 2>/dev/null
selfserv_9247 with PID 21162 found at Tue May  2 15:16:48 UTC 2017
selfserv_9247 with PID 21162 started at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #921: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21162 at Tue May  2 15:16:48 UTC 2017
kill -USR1 21162
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21162 killed at Tue May  2 15:16:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21218 >/dev/null 2>/dev/null
selfserv_9247 with PID 21218 found at Tue May  2 15:16:49 UTC 2017
selfserv_9247 with PID 21218 started at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #922: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21218 at Tue May  2 15:16:49 UTC 2017
kill -USR1 21218
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21218 killed at Tue May  2 15:16:49 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21286 >/dev/null 2>/dev/null
selfserv_9247 with PID 21286 found at Tue May  2 15:16:49 UTC 2017
selfserv_9247 with PID 21286 started at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #923: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21286 at Tue May  2 15:16:49 UTC 2017
kill -USR1 21286
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21286 killed at Tue May  2 15:16:49 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21342 >/dev/null 2>/dev/null
selfserv_9247 with PID 21342 found at Tue May  2 15:16:49 UTC 2017
selfserv_9247 with PID 21342 started at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #924: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21342 at Tue May  2 15:16:49 UTC 2017
kill -USR1 21342
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21342 killed at Tue May  2 15:16:49 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21398 >/dev/null 2>/dev/null
selfserv_9247 with PID 21398 found at Tue May  2 15:16:49 UTC 2017
selfserv_9247 with PID 21398 started at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #925: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21398 at Tue May  2 15:16:49 UTC 2017
kill -USR1 21398
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21398 killed at Tue May  2 15:16:49 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21466 >/dev/null 2>/dev/null
selfserv_9247 with PID 21466 found at Tue May  2 15:16:49 UTC 2017
selfserv_9247 with PID 21466 started at Tue May  2 15:16:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #926: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21466 at Tue May  2 15:16:50 UTC 2017
kill -USR1 21466
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21466 killed at Tue May  2 15:16:50 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21522 >/dev/null 2>/dev/null
selfserv_9247 with PID 21522 found at Tue May  2 15:16:50 UTC 2017
selfserv_9247 with PID 21522 started at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #927: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21522 at Tue May  2 15:16:50 UTC 2017
kill -USR1 21522
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21522 killed at Tue May  2 15:16:50 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21579 >/dev/null 2>/dev/null
selfserv_9247 with PID 21579 found at Tue May  2 15:16:50 UTC 2017
selfserv_9247 with PID 21579 started at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #928: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21579 at Tue May  2 15:16:50 UTC 2017
kill -USR1 21579
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21579 killed at Tue May  2 15:16:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21647 >/dev/null 2>/dev/null
selfserv_9247 with PID 21647 found at Tue May  2 15:16:50 UTC 2017
selfserv_9247 with PID 21647 started at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #929: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21647 at Tue May  2 15:16:50 UTC 2017
kill -USR1 21647
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21647 killed at Tue May  2 15:16:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21703 >/dev/null 2>/dev/null
selfserv_9247 with PID 21703 found at Tue May  2 15:16:50 UTC 2017
selfserv_9247 with PID 21703 started at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #930: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21703 at Tue May  2 15:16:50 UTC 2017
kill -USR1 21703
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21703 killed at Tue May  2 15:16:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21760 >/dev/null 2>/dev/null
selfserv_9247 with PID 21760 found at Tue May  2 15:16:50 UTC 2017
selfserv_9247 with PID 21760 started at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #931: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21760 at Tue May  2 15:16:50 UTC 2017
kill -USR1 21760
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21760 killed at Tue May  2 15:16:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21828 >/dev/null 2>/dev/null
selfserv_9247 with PID 21828 found at Tue May  2 15:16:50 UTC 2017
selfserv_9247 with PID 21828 started at Tue May  2 15:16:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #932: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21828 at Tue May  2 15:16:51 UTC 2017
kill -USR1 21828
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21828 killed at Tue May  2 15:16:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21884 >/dev/null 2>/dev/null
selfserv_9247 with PID 21884 found at Tue May  2 15:16:51 UTC 2017
selfserv_9247 with PID 21884 started at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #933: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21884 at Tue May  2 15:16:51 UTC 2017
kill -USR1 21884
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21884 killed at Tue May  2 15:16:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21940 >/dev/null 2>/dev/null
selfserv_9247 with PID 21940 found at Tue May  2 15:16:51 UTC 2017
selfserv_9247 with PID 21940 started at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #934: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21940 at Tue May  2 15:16:51 UTC 2017
kill -USR1 21940
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21940 killed at Tue May  2 15:16:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22008 >/dev/null 2>/dev/null
selfserv_9247 with PID 22008 found at Tue May  2 15:16:51 UTC 2017
selfserv_9247 with PID 22008 started at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #935: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22008 at Tue May  2 15:16:51 UTC 2017
kill -USR1 22008
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22008 killed at Tue May  2 15:16:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22064 >/dev/null 2>/dev/null
selfserv_9247 with PID 22064 found at Tue May  2 15:16:51 UTC 2017
selfserv_9247 with PID 22064 started at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #936: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22064 at Tue May  2 15:16:51 UTC 2017
kill -USR1 22064
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22064 killed at Tue May  2 15:16:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22120 >/dev/null 2>/dev/null
selfserv_9247 with PID 22120 found at Tue May  2 15:16:51 UTC 2017
selfserv_9247 with PID 22120 started at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #937: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22120 at Tue May  2 15:16:51 UTC 2017
kill -USR1 22120
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22120 killed at Tue May  2 15:16:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22188 >/dev/null 2>/dev/null
selfserv_9247 with PID 22188 found at Tue May  2 15:16:51 UTC 2017
selfserv_9247 with PID 22188 started at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #938: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22188 at Tue May  2 15:16:51 UTC 2017
kill -USR1 22188
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22188 killed at Tue May  2 15:16:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22244 >/dev/null 2>/dev/null
selfserv_9247 with PID 22244 found at Tue May  2 15:16:51 UTC 2017
selfserv_9247 with PID 22244 started at Tue May  2 15:16:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #939: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22244 at Tue May  2 15:16:52 UTC 2017
kill -USR1 22244
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22244 killed at Tue May  2 15:16:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:16:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22300 >/dev/null 2>/dev/null
selfserv_9247 with PID 22300 found at Tue May  2 15:16:52 UTC 2017
selfserv_9247 with PID 22300 started at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #940: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22300 at Tue May  2 15:16:52 UTC 2017
kill -USR1 22300
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22300 killed at Tue May  2 15:16:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22368 >/dev/null 2>/dev/null
selfserv_9247 with PID 22368 found at Tue May  2 15:16:52 UTC 2017
selfserv_9247 with PID 22368 started at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #941: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22368 at Tue May  2 15:16:52 UTC 2017
kill -USR1 22368
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22368 killed at Tue May  2 15:16:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22424 >/dev/null 2>/dev/null
selfserv_9247 with PID 22424 found at Tue May  2 15:16:52 UTC 2017
selfserv_9247 with PID 22424 started at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #942: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22424 at Tue May  2 15:16:52 UTC 2017
kill -USR1 22424
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22424 killed at Tue May  2 15:16:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22480 >/dev/null 2>/dev/null
selfserv_9247 with PID 22480 found at Tue May  2 15:16:52 UTC 2017
selfserv_9247 with PID 22480 started at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #943: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22480 at Tue May  2 15:16:52 UTC 2017
kill -USR1 22480
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22480 killed at Tue May  2 15:16:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22548 >/dev/null 2>/dev/null
selfserv_9247 with PID 22548 found at Tue May  2 15:16:52 UTC 2017
selfserv_9247 with PID 22548 started at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #944: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22548 at Tue May  2 15:16:52 UTC 2017
kill -USR1 22548
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22548 killed at Tue May  2 15:16:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22604 >/dev/null 2>/dev/null
selfserv_9247 with PID 22604 found at Tue May  2 15:16:52 UTC 2017
selfserv_9247 with PID 22604 started at Tue May  2 15:16:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #945: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22604 at Tue May  2 15:16:53 UTC 2017
kill -USR1 22604
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22604 killed at Tue May  2 15:16:53 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22660 >/dev/null 2>/dev/null
selfserv_9247 with PID 22660 found at Tue May  2 15:16:53 UTC 2017
selfserv_9247 with PID 22660 started at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #946: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22660 at Tue May  2 15:16:53 UTC 2017
kill -USR1 22660
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22660 killed at Tue May  2 15:16:53 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22737 >/dev/null 2>/dev/null
selfserv_9247 with PID 22737 found at Tue May  2 15:16:53 UTC 2017
selfserv_9247 with PID 22737 started at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #947: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22737 at Tue May  2 15:16:53 UTC 2017
kill -USR1 22737
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22737 killed at Tue May  2 15:16:53 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22793 >/dev/null 2>/dev/null
selfserv_9247 with PID 22793 found at Tue May  2 15:16:53 UTC 2017
selfserv_9247 with PID 22793 started at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #948: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22793 at Tue May  2 15:16:53 UTC 2017
kill -USR1 22793
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22793 killed at Tue May  2 15:16:53 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22849 >/dev/null 2>/dev/null
selfserv_9247 with PID 22849 found at Tue May  2 15:16:53 UTC 2017
selfserv_9247 with PID 22849 started at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #949: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22849 at Tue May  2 15:16:53 UTC 2017
kill -USR1 22849
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22849 killed at Tue May  2 15:16:53 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22917 >/dev/null 2>/dev/null
selfserv_9247 with PID 22917 found at Tue May  2 15:16:53 UTC 2017
selfserv_9247 with PID 22917 started at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #950: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 22917 at Tue May  2 15:16:53 UTC 2017
kill -USR1 22917
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22917 killed at Tue May  2 15:16:53 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22973 >/dev/null 2>/dev/null
selfserv_9247 with PID 22973 found at Tue May  2 15:16:53 UTC 2017
selfserv_9247 with PID 22973 started at Tue May  2 15:16:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #951: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22973 at Tue May  2 15:16:54 UTC 2017
kill -USR1 22973
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22973 killed at Tue May  2 15:16:54 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23029 >/dev/null 2>/dev/null
selfserv_9247 with PID 23029 found at Tue May  2 15:16:54 UTC 2017
selfserv_9247 with PID 23029 started at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #952: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23029 at Tue May  2 15:16:54 UTC 2017
kill -USR1 23029
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23029 killed at Tue May  2 15:16:54 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23097 >/dev/null 2>/dev/null
selfserv_9247 with PID 23097 found at Tue May  2 15:16:54 UTC 2017
selfserv_9247 with PID 23097 started at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #953: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23097 at Tue May  2 15:16:54 UTC 2017
kill -USR1 23097
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23097 killed at Tue May  2 15:16:54 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23153 >/dev/null 2>/dev/null
selfserv_9247 with PID 23153 found at Tue May  2 15:16:54 UTC 2017
selfserv_9247 with PID 23153 started at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #954: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23153 at Tue May  2 15:16:54 UTC 2017
kill -USR1 23153
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23153 killed at Tue May  2 15:16:54 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23209 >/dev/null 2>/dev/null
selfserv_9247 with PID 23209 found at Tue May  2 15:16:54 UTC 2017
selfserv_9247 with PID 23209 started at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #955: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23209 at Tue May  2 15:16:54 UTC 2017
kill -USR1 23209
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23209 killed at Tue May  2 15:16:54 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23277 >/dev/null 2>/dev/null
selfserv_9247 with PID 23277 found at Tue May  2 15:16:54 UTC 2017
selfserv_9247 with PID 23277 started at Tue May  2 15:16:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #956: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23277 at Tue May  2 15:16:55 UTC 2017
kill -USR1 23277
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23277 killed at Tue May  2 15:16:55 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23333 >/dev/null 2>/dev/null
selfserv_9247 with PID 23333 found at Tue May  2 15:16:55 UTC 2017
selfserv_9247 with PID 23333 started at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #957: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23333 at Tue May  2 15:16:55 UTC 2017
kill -USR1 23333
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23333 killed at Tue May  2 15:16:55 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23389 >/dev/null 2>/dev/null
selfserv_9247 with PID 23389 found at Tue May  2 15:16:55 UTC 2017
selfserv_9247 with PID 23389 started at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #958: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23389 at Tue May  2 15:16:55 UTC 2017
kill -USR1 23389
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23389 killed at Tue May  2 15:16:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23457 >/dev/null 2>/dev/null
selfserv_9247 with PID 23457 found at Tue May  2 15:16:55 UTC 2017
selfserv_9247 with PID 23457 started at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #959: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23457 at Tue May  2 15:16:55 UTC 2017
kill -USR1 23457
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23457 killed at Tue May  2 15:16:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23513 >/dev/null 2>/dev/null
selfserv_9247 with PID 23513 found at Tue May  2 15:16:55 UTC 2017
selfserv_9247 with PID 23513 started at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #960: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23513 at Tue May  2 15:16:55 UTC 2017
kill -USR1 23513
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23513 killed at Tue May  2 15:16:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23569 >/dev/null 2>/dev/null
selfserv_9247 with PID 23569 found at Tue May  2 15:16:55 UTC 2017
selfserv_9247 with PID 23569 started at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #961: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23569 at Tue May  2 15:16:55 UTC 2017
kill -USR1 23569
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23569 killed at Tue May  2 15:16:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23637 >/dev/null 2>/dev/null
selfserv_9247 with PID 23637 found at Tue May  2 15:16:56 UTC 2017
selfserv_9247 with PID 23637 started at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #962: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23637 at Tue May  2 15:16:56 UTC 2017
kill -USR1 23637
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23637 killed at Tue May  2 15:16:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23693 >/dev/null 2>/dev/null
selfserv_9247 with PID 23693 found at Tue May  2 15:16:56 UTC 2017
selfserv_9247 with PID 23693 started at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #963: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23693 at Tue May  2 15:16:56 UTC 2017
kill -USR1 23693
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23693 killed at Tue May  2 15:16:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23749 >/dev/null 2>/dev/null
selfserv_9247 with PID 23749 found at Tue May  2 15:16:56 UTC 2017
selfserv_9247 with PID 23749 started at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #964: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23749 at Tue May  2 15:16:56 UTC 2017
kill -USR1 23749
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23749 killed at Tue May  2 15:16:56 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23817 >/dev/null 2>/dev/null
selfserv_9247 with PID 23817 found at Tue May  2 15:16:56 UTC 2017
selfserv_9247 with PID 23817 started at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #965: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23817 at Tue May  2 15:16:56 UTC 2017
kill -USR1 23817
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23817 killed at Tue May  2 15:16:56 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23873 >/dev/null 2>/dev/null
selfserv_9247 with PID 23873 found at Tue May  2 15:16:56 UTC 2017
selfserv_9247 with PID 23873 started at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #966: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23873 at Tue May  2 15:16:56 UTC 2017
kill -USR1 23873
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23873 killed at Tue May  2 15:16:56 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23929 >/dev/null 2>/dev/null
selfserv_9247 with PID 23929 found at Tue May  2 15:16:56 UTC 2017
selfserv_9247 with PID 23929 started at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #967: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23929 at Tue May  2 15:16:56 UTC 2017
kill -USR1 23929
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23929 killed at Tue May  2 15:16:56 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23997 >/dev/null 2>/dev/null
selfserv_9247 with PID 23997 found at Tue May  2 15:16:56 UTC 2017
selfserv_9247 with PID 23997 started at Tue May  2 15:16:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #968: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23997 at Tue May  2 15:16:57 UTC 2017
kill -USR1 23997
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23997 killed at Tue May  2 15:16:57 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24053 >/dev/null 2>/dev/null
selfserv_9247 with PID 24053 found at Tue May  2 15:16:57 UTC 2017
selfserv_9247 with PID 24053 started at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #969: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24053 at Tue May  2 15:16:57 UTC 2017
kill -USR1 24053
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24053 killed at Tue May  2 15:16:57 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24109 >/dev/null 2>/dev/null
selfserv_9247 with PID 24109 found at Tue May  2 15:16:57 UTC 2017
selfserv_9247 with PID 24109 started at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #970: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24109 at Tue May  2 15:16:57 UTC 2017
kill -USR1 24109
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24109 killed at Tue May  2 15:16:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24177 >/dev/null 2>/dev/null
selfserv_9247 with PID 24177 found at Tue May  2 15:16:57 UTC 2017
selfserv_9247 with PID 24177 started at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #971: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24177 at Tue May  2 15:16:57 UTC 2017
kill -USR1 24177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24177 killed at Tue May  2 15:16:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24233 >/dev/null 2>/dev/null
selfserv_9247 with PID 24233 found at Tue May  2 15:16:57 UTC 2017
selfserv_9247 with PID 24233 started at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #972: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24233 at Tue May  2 15:16:57 UTC 2017
kill -USR1 24233
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24233 killed at Tue May  2 15:16:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24289 >/dev/null 2>/dev/null
selfserv_9247 with PID 24289 found at Tue May  2 15:16:57 UTC 2017
selfserv_9247 with PID 24289 started at Tue May  2 15:16:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #973: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24289 at Tue May  2 15:16:58 UTC 2017
kill -USR1 24289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24289 killed at Tue May  2 15:16:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24357 >/dev/null 2>/dev/null
selfserv_9247 with PID 24357 found at Tue May  2 15:16:58 UTC 2017
selfserv_9247 with PID 24357 started at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #974: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 24357 at Tue May  2 15:16:58 UTC 2017
kill -USR1 24357
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24357 killed at Tue May  2 15:16:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24413 >/dev/null 2>/dev/null
selfserv_9247 with PID 24413 found at Tue May  2 15:16:58 UTC 2017
selfserv_9247 with PID 24413 started at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #975: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24413 at Tue May  2 15:16:58 UTC 2017
kill -USR1 24413
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24413 killed at Tue May  2 15:16:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24469 >/dev/null 2>/dev/null
selfserv_9247 with PID 24469 found at Tue May  2 15:16:58 UTC 2017
selfserv_9247 with PID 24469 started at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #976: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 24469 at Tue May  2 15:16:58 UTC 2017
kill -USR1 24469
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24469 killed at Tue May  2 15:16:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24537 >/dev/null 2>/dev/null
selfserv_9247 with PID 24537 found at Tue May  2 15:16:58 UTC 2017
selfserv_9247 with PID 24537 started at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #977: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 24537 at Tue May  2 15:16:58 UTC 2017
kill -USR1 24537
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24537 killed at Tue May  2 15:16:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24593 >/dev/null 2>/dev/null
selfserv_9247 with PID 24593 found at Tue May  2 15:16:58 UTC 2017
selfserv_9247 with PID 24593 started at Tue May  2 15:16:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #978: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 24593 at Tue May  2 15:16:59 UTC 2017
kill -USR1 24593
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24593 killed at Tue May  2 15:16:59 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:16:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24649 >/dev/null 2>/dev/null
selfserv_9247 with PID 24649 found at Tue May  2 15:16:59 UTC 2017
selfserv_9247 with PID 24649 started at Tue May  2 15:16:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #979: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 24649 at Tue May  2 15:16:59 UTC 2017
kill -USR1 24649
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24649 killed at Tue May  2 15:16:59 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24717 >/dev/null 2>/dev/null
selfserv_9247 with PID 24717 found at Tue May  2 15:16:59 UTC 2017
selfserv_9247 with PID 24717 started at Tue May  2 15:16:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #980: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 24717 at Tue May  2 15:16:59 UTC 2017
kill -USR1 24717
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24717 killed at Tue May  2 15:16:59 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24773 >/dev/null 2>/dev/null
selfserv_9247 with PID 24773 found at Tue May  2 15:16:59 UTC 2017
selfserv_9247 with PID 24773 started at Tue May  2 15:16:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #981: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24773 at Tue May  2 15:16:59 UTC 2017
kill -USR1 24773
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24773 killed at Tue May  2 15:16:59 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:16:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:16:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24829 >/dev/null 2>/dev/null
selfserv_9247 with PID 24829 found at Tue May  2 15:16:59 UTC 2017
selfserv_9247 with PID 24829 started at Tue May  2 15:16:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #982: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 24829 at Tue May  2 15:17:00 UTC 2017
kill -USR1 24829
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24829 killed at Tue May  2 15:17:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24897 >/dev/null 2>/dev/null
selfserv_9247 with PID 24897 found at Tue May  2 15:17:00 UTC 2017
selfserv_9247 with PID 24897 started at Tue May  2 15:17:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #983: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24897 at Tue May  2 15:17:00 UTC 2017
kill -USR1 24897
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24897 killed at Tue May  2 15:17:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24953 >/dev/null 2>/dev/null
selfserv_9247 with PID 24953 found at Tue May  2 15:17:00 UTC 2017
selfserv_9247 with PID 24953 started at Tue May  2 15:17:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #984: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24953 at Tue May  2 15:17:00 UTC 2017
kill -USR1 24953
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24953 killed at Tue May  2 15:17:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25009 >/dev/null 2>/dev/null
selfserv_9247 with PID 25009 found at Tue May  2 15:17:00 UTC 2017
selfserv_9247 with PID 25009 started at Tue May  2 15:17:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #985: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25009 at Tue May  2 15:17:00 UTC 2017
kill -USR1 25009
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25009 killed at Tue May  2 15:17:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25077 >/dev/null 2>/dev/null
selfserv_9247 with PID 25077 found at Tue May  2 15:17:00 UTC 2017
selfserv_9247 with PID 25077 started at Tue May  2 15:17:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #986: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25077 at Tue May  2 15:17:00 UTC 2017
kill -USR1 25077
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25077 killed at Tue May  2 15:17:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25133 >/dev/null 2>/dev/null
selfserv_9247 with PID 25133 found at Tue May  2 15:17:01 UTC 2017
selfserv_9247 with PID 25133 started at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #987: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25133 at Tue May  2 15:17:01 UTC 2017
kill -USR1 25133
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25133 killed at Tue May  2 15:17:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25189 >/dev/null 2>/dev/null
selfserv_9247 with PID 25189 found at Tue May  2 15:17:01 UTC 2017
selfserv_9247 with PID 25189 started at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #988: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25189 at Tue May  2 15:17:01 UTC 2017
kill -USR1 25189
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25189 killed at Tue May  2 15:17:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25257 >/dev/null 2>/dev/null
selfserv_9247 with PID 25257 found at Tue May  2 15:17:01 UTC 2017
selfserv_9247 with PID 25257 started at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #989: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25257 at Tue May  2 15:17:01 UTC 2017
kill -USR1 25257
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25257 killed at Tue May  2 15:17:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25313 >/dev/null 2>/dev/null
selfserv_9247 with PID 25313 found at Tue May  2 15:17:01 UTC 2017
selfserv_9247 with PID 25313 started at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #990: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25313 at Tue May  2 15:17:01 UTC 2017
kill -USR1 25313
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25313 killed at Tue May  2 15:17:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25369 >/dev/null 2>/dev/null
selfserv_9247 with PID 25369 found at Tue May  2 15:17:01 UTC 2017
selfserv_9247 with PID 25369 started at Tue May  2 15:17:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #991: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25369 at Tue May  2 15:17:02 UTC 2017
kill -USR1 25369
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25369 killed at Tue May  2 15:17:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25437 >/dev/null 2>/dev/null
selfserv_9247 with PID 25437 found at Tue May  2 15:17:02 UTC 2017
selfserv_9247 with PID 25437 started at Tue May  2 15:17:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #992: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25437 at Tue May  2 15:17:02 UTC 2017
kill -USR1 25437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25437 killed at Tue May  2 15:17:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25493 >/dev/null 2>/dev/null
selfserv_9247 with PID 25493 found at Tue May  2 15:17:02 UTC 2017
selfserv_9247 with PID 25493 started at Tue May  2 15:17:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #993: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25493 at Tue May  2 15:17:02 UTC 2017
kill -USR1 25493
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25493 killed at Tue May  2 15:17:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25549 >/dev/null 2>/dev/null
selfserv_9247 with PID 25549 found at Tue May  2 15:17:02 UTC 2017
selfserv_9247 with PID 25549 started at Tue May  2 15:17:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #994: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25549 at Tue May  2 15:17:02 UTC 2017
kill -USR1 25549
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25549 killed at Tue May  2 15:17:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25617 >/dev/null 2>/dev/null
selfserv_9247 with PID 25617 found at Tue May  2 15:17:02 UTC 2017
selfserv_9247 with PID 25617 started at Tue May  2 15:17:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #995: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25617 at Tue May  2 15:17:02 UTC 2017
kill -USR1 25617
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25617 killed at Tue May  2 15:17:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25673 >/dev/null 2>/dev/null
selfserv_9247 with PID 25673 found at Tue May  2 15:17:03 UTC 2017
selfserv_9247 with PID 25673 started at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #996: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25673 at Tue May  2 15:17:03 UTC 2017
kill -USR1 25673
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25673 killed at Tue May  2 15:17:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25729 >/dev/null 2>/dev/null
selfserv_9247 with PID 25729 found at Tue May  2 15:17:03 UTC 2017
selfserv_9247 with PID 25729 started at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #997: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25729 at Tue May  2 15:17:03 UTC 2017
kill -USR1 25729
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25729 killed at Tue May  2 15:17:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25797 >/dev/null 2>/dev/null
selfserv_9247 with PID 25797 found at Tue May  2 15:17:03 UTC 2017
selfserv_9247 with PID 25797 started at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #998: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25797 at Tue May  2 15:17:03 UTC 2017
kill -USR1 25797
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25797 killed at Tue May  2 15:17:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25853 >/dev/null 2>/dev/null
selfserv_9247 with PID 25853 found at Tue May  2 15:17:03 UTC 2017
selfserv_9247 with PID 25853 started at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #999: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25853 at Tue May  2 15:17:03 UTC 2017
kill -USR1 25853
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25853 killed at Tue May  2 15:17:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25909 >/dev/null 2>/dev/null
selfserv_9247 with PID 25909 found at Tue May  2 15:17:03 UTC 2017
selfserv_9247 with PID 25909 started at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1000: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25909 at Tue May  2 15:17:03 UTC 2017
kill -USR1 25909
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25909 killed at Tue May  2 15:17:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25977 >/dev/null 2>/dev/null
selfserv_9247 with PID 25977 found at Tue May  2 15:17:03 UTC 2017
selfserv_9247 with PID 25977 started at Tue May  2 15:17:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1001: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25977 at Tue May  2 15:17:03 UTC 2017
kill -USR1 25977
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25977 killed at Tue May  2 15:17:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26033 >/dev/null 2>/dev/null
selfserv_9247 with PID 26033 found at Tue May  2 15:17:04 UTC 2017
selfserv_9247 with PID 26033 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1002: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26033 at Tue May  2 15:17:04 UTC 2017
kill -USR1 26033
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26033 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26089 >/dev/null 2>/dev/null
selfserv_9247 with PID 26089 found at Tue May  2 15:17:04 UTC 2017
selfserv_9247 with PID 26089 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1003: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26089 at Tue May  2 15:17:04 UTC 2017
kill -USR1 26089
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26089 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26157 >/dev/null 2>/dev/null
selfserv_9247 with PID 26157 found at Tue May  2 15:17:04 UTC 2017
selfserv_9247 with PID 26157 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1004: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26157 at Tue May  2 15:17:04 UTC 2017
kill -USR1 26157
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26157 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26213 >/dev/null 2>/dev/null
selfserv_9247 with PID 26213 found at Tue May  2 15:17:04 UTC 2017
selfserv_9247 with PID 26213 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1005: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26213 at Tue May  2 15:17:04 UTC 2017
kill -USR1 26213
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26213 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26269 >/dev/null 2>/dev/null
selfserv_9247 with PID 26269 found at Tue May  2 15:17:04 UTC 2017
selfserv_9247 with PID 26269 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1006: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26269 at Tue May  2 15:17:04 UTC 2017
kill -USR1 26269
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26269 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/authin.tl.tmp
0
selfserv_9247 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:04 UTC 2017
selfserv_9247 with PID 26332 started at Tue May  2 15:17:04 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1007: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1008: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1009: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1010: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1011: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1012: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1013: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1014: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1015: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1016: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:05 UTC 2017
ssl.sh: #1017: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1018: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1019: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1020: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1021: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1022: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1023: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1024: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1025: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1026: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1027: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:06 UTC 2017
ssl.sh: #1028: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1029: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1030: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1031: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1032: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1033: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1034: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1035: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1036: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1037: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1038: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:07 UTC 2017
ssl.sh: #1039: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1040: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1041: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1042: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1043: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1044: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1045: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1046: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26332 >/dev/null 2>/dev/null
selfserv_9247 with PID 26332 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1047: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 26332 at Tue May  2 15:17:08 UTC 2017
kill -USR1 26332
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26332 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:08 UTC 2017
selfserv_9247 with PID 27754 started at Tue May  2 15:17:08 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:08 UTC 2017
ssl.sh: #1048: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1049: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1050: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1051: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1052: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1053: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1054: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1055: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1056: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1057: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1058: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1059: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:09 UTC 2017
ssl.sh: #1060: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1061: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1062: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1063: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1064: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1065: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1066: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1067: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1068: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1069: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1070: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1071: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:10 UTC 2017
ssl.sh: #1072: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1073: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1074: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1075: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1076: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1077: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1078: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1079: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1080: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1081: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1082: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1083: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1084: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:11 UTC 2017
ssl.sh: #1085: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1086: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1087: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27754 >/dev/null 2>/dev/null
selfserv_9247 with PID 27754 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1088: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27754 at Tue May  2 15:17:12 UTC 2017
kill -USR1 27754
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27754 killed at Tue May  2 15:17:12 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:12 UTC 2017
selfserv_9247 with PID 29176 started at Tue May  2 15:17:12 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1089: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1090: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1091: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1092: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1093: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:12 UTC 2017
ssl.sh: #1094: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
ssl.sh: #1095: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
ssl.sh: #1096: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
ssl.sh: #1097: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
ssl.sh: #1098: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
ssl.sh: #1099: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
ssl.sh: #1100: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
ssl.sh: #1101: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1102: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:13 UTC 2017
ssl.sh: #1103: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1104: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1105: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1106: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1107: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1108: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1109: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1110: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1111: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:14 UTC 2017
ssl.sh: #1112: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1113: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1114: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1115: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1116: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1117: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1118: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1119: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1120: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1121: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:15 UTC 2017
ssl.sh: #1122: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1123: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1124: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1125: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1126: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1127: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1128: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29176 >/dev/null 2>/dev/null
selfserv_9247 with PID 29176 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1129: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29176 at Tue May  2 15:17:16 UTC 2017
kill -USR1 29176
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29176 killed at Tue May  2 15:17:16 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:16 UTC 2017
selfserv_9247 with PID 30598 started at Tue May  2 15:17:16 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1130: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1131: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1132: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:16 UTC 2017
ssl.sh: #1133: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1134: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1135: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1136: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1137: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1138: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1139: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1140: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1141: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1142: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1143: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:17 UTC 2017
ssl.sh: #1144: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1145: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1146: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1147: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1148: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1149: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1150: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1151: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1152: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1153: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1154: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1155: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:18 UTC 2017
ssl.sh: #1156: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1157: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1158: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1159: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1160: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1161: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1162: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1163: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1164: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1165: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1166: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:19 UTC 2017
ssl.sh: #1167: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:20 UTC 2017
ssl.sh: #1168: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:20 UTC 2017
ssl.sh: #1169: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30598 >/dev/null 2>/dev/null
selfserv_9247 with PID 30598 found at Tue May  2 15:17:20 UTC 2017
ssl.sh: #1170: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 30598 at Tue May  2 15:17:20 UTC 2017
kill -USR1 30598
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30598 killed at Tue May  2 15:17:20 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32021 >/dev/null 2>/dev/null
selfserv_9247 with PID 32021 found at Tue May  2 15:17:20 UTC 2017
selfserv_9247 with PID 32021 started at Tue May  2 15:17:20 UTC 2017
trying to kill selfserv_9247 with PID 32021 at Tue May  2 15:17:20 UTC 2017
kill -USR1 32021
./ssl.sh: line 183: 32021 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32021 killed at Tue May  2 15:17:20 UTC 2017
selfserv_9247 starting at Tue May  2 15:17:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:20 UTC 2017
selfserv_9247 with PID 32063 started at Tue May  2 15:17:20 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:20 UTC 2017
ssl.sh: #1171: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:20 UTC 2017
ssl.sh: #1172: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:20 UTC 2017
ssl.sh: #1173: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:20 UTC 2017
ssl.sh: #1174: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:20 UTC 2017
ssl.sh: #1175: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
ssl.sh: #1176: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
ssl.sh: #1177: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
ssl.sh: #1178: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
ssl.sh: #1179: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
ssl.sh: #1180: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
ssl.sh: #1181: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
ssl.sh: #1182: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
ssl.sh: #1183: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1184: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1185: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1186: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1187: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1188: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1189: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1190: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1191: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1192: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1193: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:22 UTC 2017
ssl.sh: #1194: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
ssl.sh: #1195: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
ssl.sh: #1196: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
ssl.sh: #1197: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1198: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
ssl.sh: #1199: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
ssl.sh: #1200: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
ssl.sh: #1201: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
ssl.sh: #1202: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:23 UTC 2017
ssl.sh: #1203: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1204: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1205: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1206: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1207: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1208: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1209: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1210: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9247 with PID 32063 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1211: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 32063 at Tue May  2 15:17:24 UTC 2017
kill -USR1 32063
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32063 killed at Tue May  2 15:17:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:24 UTC 2017
selfserv_9247 with PID 1109 started at Tue May  2 15:17:24 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:24 UTC 2017
ssl.sh: #1212: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1213: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1214: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1215: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1216: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1217: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1218: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1219: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1220: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:25 UTC 2017
ssl.sh: #1221: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
ssl.sh: #1222: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
ssl.sh: #1223: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
ssl.sh: #1224: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1225: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
ssl.sh: #1226: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
ssl.sh: #1227: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
ssl.sh: #1228: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
ssl.sh: #1229: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:26 UTC 2017
ssl.sh: #1230: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
ssl.sh: #1231: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
ssl.sh: #1232: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
ssl.sh: #1233: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
ssl.sh: #1234: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
ssl.sh: #1235: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
ssl.sh: #1236: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
ssl.sh: #1237: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
ssl.sh: #1238: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1239: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:28 UTC 2017
ssl.sh: #1240: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:28 UTC 2017
ssl.sh: #1241: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:28 UTC 2017
ssl.sh: #1242: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:28 UTC 2017
ssl.sh: #1243: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:28 UTC 2017
ssl.sh: #1244: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:28 UTC 2017
ssl.sh: #1245: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:28 UTC 2017
ssl.sh: #1246: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:28 UTC 2017
ssl.sh: #1247: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:29 UTC 2017
ssl.sh: #1248: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:29 UTC 2017
ssl.sh: #1249: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:29 UTC 2017
ssl.sh: #1250: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:29 UTC 2017
ssl.sh: #1251: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1109 >/dev/null 2>/dev/null
selfserv_9247 with PID 1109 found at Tue May  2 15:17:29 UTC 2017
ssl.sh: #1252: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1109 at Tue May  2 15:17:29 UTC 2017
kill -USR1 1109
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1109 killed at Tue May  2 15:17:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:29 UTC 2017
selfserv_9247 with PID 2532 started at Tue May  2 15:17:29 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:29 UTC 2017
ssl.sh: #1253: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:29 UTC 2017
ssl.sh: #1254: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:29 UTC 2017
ssl.sh: #1255: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1256: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1257: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1258: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1259: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1260: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1261: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1262: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1263: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1264: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1265: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1266: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1267: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1268: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1269: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1270: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1271: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1272: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1273: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1274: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1275: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1276: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1277: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1278: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1279: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1280: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1281: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1282: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1283: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1284: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1285: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1286: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1287: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1288: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1289: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1290: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1291: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1292: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2532 >/dev/null 2>/dev/null
selfserv_9247 with PID 2532 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1293: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2532 at Tue May  2 15:17:33 UTC 2017
kill -USR1 2532
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2532 killed at Tue May  2 15:17:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:33 UTC 2017
selfserv_9247 with PID 3958 started at Tue May  2 15:17:33 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1294: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1295: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1296: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1297: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1298: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1299: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1300: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1301: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1302: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1303: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1304: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1305: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1306: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1307: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1308: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1309: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1310: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1311: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1312: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1313: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1314: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1315: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1316: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1317: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1318: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1319: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1320: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1321: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1322: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1323: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1324: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1325: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1326: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1327: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1328: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1329: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1330: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1331: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1332: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1333: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3958 >/dev/null 2>/dev/null
selfserv_9247 with PID 3958 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1334: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 3958 at Tue May  2 15:17:38 UTC 2017
kill -USR1 3958
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3958 killed at Tue May  2 15:17:38 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:38 UTC 2017
selfserv_9247 with PID 5380 started at Tue May  2 15:17:38 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1335: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1336: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1337: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1338: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1339: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1340: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1341: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1342: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1343: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1344: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1345: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1346: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1347: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1348: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1349: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1350: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1351: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1352: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1353: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1354: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1355: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1356: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1357: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1358: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1359: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1360: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1361: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1362: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1363: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1364: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1365: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1366: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1367: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1368: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1369: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1370: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1371: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1372: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1373: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1374: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5380 >/dev/null 2>/dev/null
selfserv_9247 with PID 5380 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1375: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5380 at Tue May  2 15:17:44 UTC 2017
kill -USR1 5380
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5380 killed at Tue May  2 15:17:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
selfserv_9247 with PID 6802 started at Tue May  2 15:17:44 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1376: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1377: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1378: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1379: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1380: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1381: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1382: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1383: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1384: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1385: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1386: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1387: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1388: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1389: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1390: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1391: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1392: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1393: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1394: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1395: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1396: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1397: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1398: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1399: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1400: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1401: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1402: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1403: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1404: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1405: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1406: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1407: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1408: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1409: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1410: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1411: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1412: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1413: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1414: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1415: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6802 >/dev/null 2>/dev/null
selfserv_9247 with PID 6802 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1416: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6802 at Tue May  2 15:17:48 UTC 2017
kill -USR1 6802
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6802 killed at Tue May  2 15:17:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8228 >/dev/null 2>/dev/null
selfserv_9247 with PID 8228 found at Tue May  2 15:17:48 UTC 2017
selfserv_9247 with PID 8228 started at Tue May  2 15:17:48 UTC 2017
trying to kill selfserv_9247 with PID 8228 at Tue May  2 15:17:48 UTC 2017
kill -USR1 8228
./ssl.sh: line 183:  8228 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8228 killed at Tue May  2 15:17:48 UTC 2017
selfserv_9247 starting at Tue May  2 15:17:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:48 UTC 2017
selfserv_9247 with PID 8270 started at Tue May  2 15:17:48 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1417: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1418: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1419: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1420: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1421: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1422: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1423: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1424: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1425: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1426: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1427: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1428: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1429: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1430: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1431: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1432: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1433: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1434: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1435: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1436: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1437: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1438: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1439: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1440: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1441: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1442: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1443: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1444: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1445: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1446: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1447: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1448: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1449: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1450: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1451: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1452: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1453: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1454: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1455: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1456: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8270 >/dev/null 2>/dev/null
selfserv_9247 with PID 8270 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1457: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8270 at Tue May  2 15:17:52 UTC 2017
kill -USR1 8270
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8270 killed at Tue May  2 15:17:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:52 UTC 2017
selfserv_9247 with PID 9700 started at Tue May  2 15:17:52 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1458: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1459: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1460: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1461: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1462: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1463: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1464: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1465: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1466: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1467: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1468: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1469: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1470: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1471: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1472: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1473: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1474: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1475: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1476: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1477: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1478: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1479: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1480: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1481: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1482: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1483: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1484: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1485: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1486: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1487: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1488: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1489: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1490: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1491: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1492: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1493: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1494: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1495: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1496: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1497: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9700 >/dev/null 2>/dev/null
selfserv_9247 with PID 9700 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1498: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 9700 at Tue May  2 15:17:57 UTC 2017
kill -USR1 9700
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9700 killed at Tue May  2 15:17:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:17:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:17:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:57 UTC 2017
selfserv_9247 with PID 11127 started at Tue May  2 15:17:57 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1499: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1500: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1501: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1502: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1503: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1504: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1505: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1506: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1507: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1508: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1509: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1510: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1511: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1512: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1513: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1514: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1515: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1516: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1517: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1518: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1519: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1520: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1521: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1522: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1523: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1524: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1525: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1526: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1527: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1528: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1529: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1530: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1531: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1532: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1533: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1534: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1535: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1536: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1537: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1538: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1539: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11127 at Tue May  2 15:18:01 UTC 2017
kill -USR1 11127
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11127 killed at Tue May  2 15:18:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:01 UTC 2017
selfserv_9247 with PID 12549 started at Tue May  2 15:18:01 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1540: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1541: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1542: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1543: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1544: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1545: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1546: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1547: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1548: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1549: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1550: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1551: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1552: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1553: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1554: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1555: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1556: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1557: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1558: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1559: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1560: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1561: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1562: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1563: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1564: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1565: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1566: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1567: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1568: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1569: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1570: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1571: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1572: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1573: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1574: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1575: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1576: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1577: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1578: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1579: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9247 with PID 12549 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1580: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12549 at Tue May  2 15:18:06 UTC 2017
kill -USR1 12549
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12549 killed at Tue May  2 15:18:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:06 UTC 2017
selfserv_9247 with PID 13982 started at Tue May  2 15:18:06 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1581: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1582: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1583: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1584: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1585: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1586: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1587: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1588: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1589: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1590: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1591: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1592: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1593: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1594: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1595: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1596: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1597: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1598: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1599: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1600: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1601: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1602: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1603: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1604: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1605: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1606: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1607: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1608: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1609: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1610: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1611: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1612: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1613: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1614: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1615: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1616: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1617: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1618: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1619: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1620: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9247 with PID 13982 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1621: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 13982 at Tue May  2 15:18:11 UTC 2017
kill -USR1 13982
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 13982 killed at Tue May  2 15:18:11 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:11 UTC 2017
selfserv_9247 with PID 15563 started at Tue May  2 15:18:11 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1622: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1623: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1624: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1625: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1626: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1627: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1628: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1629: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1630: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1631: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1632: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1633: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1634: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1635: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1636: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1637: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1638: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1639: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1640: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1641: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1642: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1643: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1644: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1645: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1646: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1647: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1648: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1649: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1650: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1651: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1652: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1653: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1654: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1655: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1656: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1657: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1658: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1659: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1660: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1661: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15563 >/dev/null 2>/dev/null
selfserv_9247 with PID 15563 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1662: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 15563 at Tue May  2 15:18:16 UTC 2017
kill -USR1 15563
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 15563 killed at Tue May  2 15:18:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16990 >/dev/null 2>/dev/null
selfserv_9247 with PID 16990 found at Tue May  2 15:18:16 UTC 2017
selfserv_9247 with PID 16990 started at Tue May  2 15:18:16 UTC 2017
trying to kill selfserv_9247 with PID 16990 at Tue May  2 15:18:16 UTC 2017
kill -USR1 16990
./ssl.sh: line 183: 16990 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 16990 killed at Tue May  2 15:18:16 UTC 2017
ssl.sh: SSL - FIPS mode on for server ===============================
ssl.sh: Turning FIPS on for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -fips true -force
FIPS mode enabled.
ssl.sh: #1663:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -list
ssl.sh: #1664:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1665:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -fips true -force
FIPS mode enabled.
ssl.sh: #1666:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -list
ssl.sh: #1667:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1668:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server fips/client normal  - with ECC ===============================
selfserv_9247 starting at Tue May  2 15:18:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17100 >/dev/null 2>/dev/null
selfserv_9247 with PID 17100 found at Tue May  2 15:18:16 UTC 2017
selfserv_9247 with PID 17100 started at Tue May  2 15:18:16 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1669: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1670: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1671: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1672: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1673: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1674: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1675: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1676: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1677: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1678: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1679: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1680: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1681: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1682: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1683: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1684: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1685: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1686: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1687: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1688: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1689: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1690: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1691: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1692: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1693: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1694: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1695: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1696: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1697: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1698: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1699: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1700: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1701: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1702: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1703: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1704: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1705: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1706: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1707: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1708: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1709: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1710: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1711: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1712: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1713: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1714: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1715: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1716: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1717: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1718: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1719: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1720: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1721: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1722: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1723: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1724: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1725: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1726: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1727: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1728: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1729: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1730: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1731: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1732: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1733: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1734: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1735: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1736: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1737: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1738: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1739: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1740: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1741: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1742: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1743: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1744: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1745: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1746: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1747: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1748: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1749: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1750: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1751: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1752: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1753: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1754: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1755: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1756: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1757: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1758: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1759: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1760: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1761: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1762: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1763: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1764: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1765: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1766: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1767: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1768: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1769: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1770: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1771: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1772: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1773: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1774: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1775: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1776: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1777: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1778: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1779: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1780: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1781: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1782: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1783: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1784: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1785: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1786: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1787: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1788: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1789: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 17100 at Tue May  2 15:18:22 UTC 2017
kill -USR1 17100
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17100 killed at Tue May  2 15:18:22 UTC 2017
ssl.sh: SSL Client Authentication  - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19368 >/dev/null 2>/dev/null
selfserv_9247 with PID 19368 found at Tue May  2 15:18:22 UTC 2017
selfserv_9247 with PID 19368 started at Tue May  2 15:18:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1790: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19368 at Tue May  2 15:18:22 UTC 2017
kill -USR1 19368
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19368 killed at Tue May  2 15:18:22 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19425 >/dev/null 2>/dev/null
selfserv_9247 with PID 19425 found at Tue May  2 15:18:22 UTC 2017
selfserv_9247 with PID 19425 started at Tue May  2 15:18:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1791: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19425 at Tue May  2 15:18:22 UTC 2017
kill -USR1 19425
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19425 killed at Tue May  2 15:18:22 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19482 >/dev/null 2>/dev/null
selfserv_9247 with PID 19482 found at Tue May  2 15:18:22 UTC 2017
selfserv_9247 with PID 19482 started at Tue May  2 15:18:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1792: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19482 at Tue May  2 15:18:22 UTC 2017
kill -USR1 19482
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19482 killed at Tue May  2 15:18:22 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19539 >/dev/null 2>/dev/null
selfserv_9247 with PID 19539 found at Tue May  2 15:18:22 UTC 2017
selfserv_9247 with PID 19539 started at Tue May  2 15:18:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1793: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 19539 at Tue May  2 15:18:23 UTC 2017
kill -USR1 19539
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19539 killed at Tue May  2 15:18:23 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19596 >/dev/null 2>/dev/null
selfserv_9247 with PID 19596 found at Tue May  2 15:18:23 UTC 2017
selfserv_9247 with PID 19596 started at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1794: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 19596 at Tue May  2 15:18:23 UTC 2017
kill -USR1 19596
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19596 killed at Tue May  2 15:18:23 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19653 >/dev/null 2>/dev/null
selfserv_9247 with PID 19653 found at Tue May  2 15:18:23 UTC 2017
selfserv_9247 with PID 19653 started at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1795: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19653 at Tue May  2 15:18:23 UTC 2017
kill -USR1 19653
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19653 killed at Tue May  2 15:18:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19710 >/dev/null 2>/dev/null
selfserv_9247 with PID 19710 found at Tue May  2 15:18:23 UTC 2017
selfserv_9247 with PID 19710 started at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1796: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19710 at Tue May  2 15:18:23 UTC 2017
kill -USR1 19710
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19710 killed at Tue May  2 15:18:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19767 >/dev/null 2>/dev/null
selfserv_9247 with PID 19767 found at Tue May  2 15:18:23 UTC 2017
selfserv_9247 with PID 19767 started at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1797: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19767 at Tue May  2 15:18:23 UTC 2017
kill -USR1 19767
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19767 killed at Tue May  2 15:18:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19824 >/dev/null 2>/dev/null
selfserv_9247 with PID 19824 found at Tue May  2 15:18:23 UTC 2017
selfserv_9247 with PID 19824 started at Tue May  2 15:18:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1798: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19824 at Tue May  2 15:18:24 UTC 2017
kill -USR1 19824
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19824 killed at Tue May  2 15:18:24 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19881 >/dev/null 2>/dev/null
selfserv_9247 with PID 19881 found at Tue May  2 15:18:24 UTC 2017
selfserv_9247 with PID 19881 started at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1799: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 19881 at Tue May  2 15:18:24 UTC 2017
kill -USR1 19881
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19881 killed at Tue May  2 15:18:24 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19938 >/dev/null 2>/dev/null
selfserv_9247 with PID 19938 found at Tue May  2 15:18:24 UTC 2017
selfserv_9247 with PID 19938 started at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1800: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 19938 at Tue May  2 15:18:24 UTC 2017
kill -USR1 19938
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19938 killed at Tue May  2 15:18:24 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19995 >/dev/null 2>/dev/null
selfserv_9247 with PID 19995 found at Tue May  2 15:18:24 UTC 2017
selfserv_9247 with PID 19995 started at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1801: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 19995 at Tue May  2 15:18:24 UTC 2017
kill -USR1 19995
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19995 killed at Tue May  2 15:18:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20052 >/dev/null 2>/dev/null
selfserv_9247 with PID 20052 found at Tue May  2 15:18:24 UTC 2017
selfserv_9247 with PID 20052 started at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1802: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20052 at Tue May  2 15:18:24 UTC 2017
kill -USR1 20052
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20052 killed at Tue May  2 15:18:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20109 >/dev/null 2>/dev/null
selfserv_9247 with PID 20109 found at Tue May  2 15:18:24 UTC 2017
selfserv_9247 with PID 20109 started at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1803: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20109 at Tue May  2 15:18:24 UTC 2017
kill -USR1 20109
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20109 killed at Tue May  2 15:18:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20166 >/dev/null 2>/dev/null
selfserv_9247 with PID 20166 found at Tue May  2 15:18:24 UTC 2017
selfserv_9247 with PID 20166 started at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1804: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20166 at Tue May  2 15:18:25 UTC 2017
kill -USR1 20166
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20166 killed at Tue May  2 15:18:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20223 >/dev/null 2>/dev/null
selfserv_9247 with PID 20223 found at Tue May  2 15:18:25 UTC 2017
selfserv_9247 with PID 20223 started at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1805: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20223 at Tue May  2 15:18:25 UTC 2017
kill -USR1 20223
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20223 killed at Tue May  2 15:18:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20280 >/dev/null 2>/dev/null
selfserv_9247 with PID 20280 found at Tue May  2 15:18:25 UTC 2017
selfserv_9247 with PID 20280 started at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1806: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20280 at Tue May  2 15:18:25 UTC 2017
kill -USR1 20280
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20280 killed at Tue May  2 15:18:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20337 >/dev/null 2>/dev/null
selfserv_9247 with PID 20337 found at Tue May  2 15:18:25 UTC 2017
selfserv_9247 with PID 20337 started at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1807: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20337 at Tue May  2 15:18:25 UTC 2017
kill -USR1 20337
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20337 killed at Tue May  2 15:18:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20394 >/dev/null 2>/dev/null
selfserv_9247 with PID 20394 found at Tue May  2 15:18:25 UTC 2017
selfserv_9247 with PID 20394 started at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1808: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20394 at Tue May  2 15:18:25 UTC 2017
kill -USR1 20394
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20394 killed at Tue May  2 15:18:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20451 >/dev/null 2>/dev/null
selfserv_9247 with PID 20451 found at Tue May  2 15:18:25 UTC 2017
selfserv_9247 with PID 20451 started at Tue May  2 15:18:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1809: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20451 at Tue May  2 15:18:26 UTC 2017
kill -USR1 20451
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20451 killed at Tue May  2 15:18:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20508 >/dev/null 2>/dev/null
selfserv_9247 with PID 20508 found at Tue May  2 15:18:26 UTC 2017
selfserv_9247 with PID 20508 started at Tue May  2 15:18:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1810: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20508 at Tue May  2 15:18:26 UTC 2017
kill -USR1 20508
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20508 killed at Tue May  2 15:18:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20565 >/dev/null 2>/dev/null
selfserv_9247 with PID 20565 found at Tue May  2 15:18:26 UTC 2017
selfserv_9247 with PID 20565 started at Tue May  2 15:18:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1811: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20565 at Tue May  2 15:18:26 UTC 2017
kill -USR1 20565
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20565 killed at Tue May  2 15:18:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20622 >/dev/null 2>/dev/null
selfserv_9247 with PID 20622 found at Tue May  2 15:18:26 UTC 2017
selfserv_9247 with PID 20622 started at Tue May  2 15:18:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1812: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20622 at Tue May  2 15:18:26 UTC 2017
kill -USR1 20622
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20622 killed at Tue May  2 15:18:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20679 >/dev/null 2>/dev/null
selfserv_9247 with PID 20679 found at Tue May  2 15:18:26 UTC 2017
selfserv_9247 with PID 20679 started at Tue May  2 15:18:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1813: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20679 at Tue May  2 15:18:27 UTC 2017
kill -USR1 20679
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20679 killed at Tue May  2 15:18:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20736 >/dev/null 2>/dev/null
selfserv_9247 with PID 20736 found at Tue May  2 15:18:27 UTC 2017
selfserv_9247 with PID 20736 started at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1814: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20736 at Tue May  2 15:18:27 UTC 2017
kill -USR1 20736
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20736 killed at Tue May  2 15:18:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20793 >/dev/null 2>/dev/null
selfserv_9247 with PID 20793 found at Tue May  2 15:18:27 UTC 2017
selfserv_9247 with PID 20793 started at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1815: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20793 at Tue May  2 15:18:27 UTC 2017
kill -USR1 20793
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20793 killed at Tue May  2 15:18:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20850 >/dev/null 2>/dev/null
selfserv_9247 with PID 20850 found at Tue May  2 15:18:27 UTC 2017
selfserv_9247 with PID 20850 started at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1816: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 20850 at Tue May  2 15:18:27 UTC 2017
kill -USR1 20850
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20850 killed at Tue May  2 15:18:27 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:18:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20907 >/dev/null 2>/dev/null
selfserv_9247 with PID 20907 found at Tue May  2 15:18:27 UTC 2017
selfserv_9247 with PID 20907 started at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1817: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20907 at Tue May  2 15:18:27 UTC 2017
kill -USR1 20907
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20907 killed at Tue May  2 15:18:27 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20964 >/dev/null 2>/dev/null
selfserv_9247 with PID 20964 found at Tue May  2 15:18:27 UTC 2017
selfserv_9247 with PID 20964 started at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1818: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20964 at Tue May  2 15:18:27 UTC 2017
kill -USR1 20964
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20964 killed at Tue May  2 15:18:27 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21021 >/dev/null 2>/dev/null
selfserv_9247 with PID 21021 found at Tue May  2 15:18:27 UTC 2017
selfserv_9247 with PID 21021 started at Tue May  2 15:18:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1819: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21021 at Tue May  2 15:18:28 UTC 2017
kill -USR1 21021
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21021 killed at Tue May  2 15:18:28 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21093 >/dev/null 2>/dev/null
selfserv_9247 with PID 21093 found at Tue May  2 15:18:28 UTC 2017
selfserv_9247 with PID 21093 started at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1820: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21093 at Tue May  2 15:18:28 UTC 2017
kill -USR1 21093
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21093 killed at Tue May  2 15:18:28 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21150 >/dev/null 2>/dev/null
selfserv_9247 with PID 21150 found at Tue May  2 15:18:28 UTC 2017
selfserv_9247 with PID 21150 started at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1821: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21150 at Tue May  2 15:18:28 UTC 2017
kill -USR1 21150
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21150 killed at Tue May  2 15:18:28 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9247 with PID 21207 found at Tue May  2 15:18:28 UTC 2017
selfserv_9247 with PID 21207 started at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1822: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21207 at Tue May  2 15:18:28 UTC 2017
kill -USR1 21207
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21207 killed at Tue May  2 15:18:28 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21264 >/dev/null 2>/dev/null
selfserv_9247 with PID 21264 found at Tue May  2 15:18:28 UTC 2017
selfserv_9247 with PID 21264 started at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1823: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21264 at Tue May  2 15:18:28 UTC 2017
kill -USR1 21264
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21264 killed at Tue May  2 15:18:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21321 >/dev/null 2>/dev/null
selfserv_9247 with PID 21321 found at Tue May  2 15:18:29 UTC 2017
selfserv_9247 with PID 21321 started at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1824: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21321 at Tue May  2 15:18:29 UTC 2017
kill -USR1 21321
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21321 killed at Tue May  2 15:18:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21378 >/dev/null 2>/dev/null
selfserv_9247 with PID 21378 found at Tue May  2 15:18:29 UTC 2017
selfserv_9247 with PID 21378 started at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1825: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21378 at Tue May  2 15:18:29 UTC 2017
kill -USR1 21378
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21378 killed at Tue May  2 15:18:29 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21435 >/dev/null 2>/dev/null
selfserv_9247 with PID 21435 found at Tue May  2 15:18:29 UTC 2017
selfserv_9247 with PID 21435 started at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1826: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21435 at Tue May  2 15:18:29 UTC 2017
kill -USR1 21435
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21435 killed at Tue May  2 15:18:29 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21492 >/dev/null 2>/dev/null
selfserv_9247 with PID 21492 found at Tue May  2 15:18:29 UTC 2017
selfserv_9247 with PID 21492 started at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1827: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21492 at Tue May  2 15:18:29 UTC 2017
kill -USR1 21492
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21492 killed at Tue May  2 15:18:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21549 >/dev/null 2>/dev/null
selfserv_9247 with PID 21549 found at Tue May  2 15:18:29 UTC 2017
selfserv_9247 with PID 21549 started at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1828: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21549 at Tue May  2 15:18:29 UTC 2017
kill -USR1 21549
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21549 killed at Tue May  2 15:18:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21607 >/dev/null 2>/dev/null
selfserv_9247 with PID 21607 found at Tue May  2 15:18:29 UTC 2017
selfserv_9247 with PID 21607 started at Tue May  2 15:18:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1829: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21607 at Tue May  2 15:18:30 UTC 2017
kill -USR1 21607
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21607 killed at Tue May  2 15:18:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21664 >/dev/null 2>/dev/null
selfserv_9247 with PID 21664 found at Tue May  2 15:18:30 UTC 2017
selfserv_9247 with PID 21664 started at Tue May  2 15:18:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1830: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21664 at Tue May  2 15:18:30 UTC 2017
kill -USR1 21664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21664 killed at Tue May  2 15:18:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21721 >/dev/null 2>/dev/null
selfserv_9247 with PID 21721 found at Tue May  2 15:18:30 UTC 2017
selfserv_9247 with PID 21721 started at Tue May  2 15:18:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1831: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21721 at Tue May  2 15:18:30 UTC 2017
kill -USR1 21721
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21721 killed at Tue May  2 15:18:30 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9247 with PID 21779 found at Tue May  2 15:18:30 UTC 2017
selfserv_9247 with PID 21779 started at Tue May  2 15:18:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1832: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21779 at Tue May  2 15:18:30 UTC 2017
kill -USR1 21779
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21779 killed at Tue May  2 15:18:30 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21836 >/dev/null 2>/dev/null
selfserv_9247 with PID 21836 found at Tue May  2 15:18:30 UTC 2017
selfserv_9247 with PID 21836 started at Tue May  2 15:18:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1833: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21836 at Tue May  2 15:18:31 UTC 2017
kill -USR1 21836
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21836 killed at Tue May  2 15:18:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21893 >/dev/null 2>/dev/null
selfserv_9247 with PID 21893 found at Tue May  2 15:18:31 UTC 2017
selfserv_9247 with PID 21893 started at Tue May  2 15:18:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1834: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21893 at Tue May  2 15:18:31 UTC 2017
kill -USR1 21893
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21893 killed at Tue May  2 15:18:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21950 >/dev/null 2>/dev/null
selfserv_9247 with PID 21950 found at Tue May  2 15:18:31 UTC 2017
selfserv_9247 with PID 21950 started at Tue May  2 15:18:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1835: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 21950 at Tue May  2 15:18:31 UTC 2017
kill -USR1 21950
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21950 killed at Tue May  2 15:18:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22007 >/dev/null 2>/dev/null
selfserv_9247 with PID 22007 found at Tue May  2 15:18:31 UTC 2017
selfserv_9247 with PID 22007 started at Tue May  2 15:18:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1836: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22007 at Tue May  2 15:18:31 UTC 2017
kill -USR1 22007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22007 killed at Tue May  2 15:18:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22064 >/dev/null 2>/dev/null
selfserv_9247 with PID 22064 found at Tue May  2 15:18:31 UTC 2017
selfserv_9247 with PID 22064 started at Tue May  2 15:18:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1837: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22064 at Tue May  2 15:18:32 UTC 2017
kill -USR1 22064
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22064 killed at Tue May  2 15:18:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:18:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22121 >/dev/null 2>/dev/null
selfserv_9247 with PID 22121 found at Tue May  2 15:18:32 UTC 2017
selfserv_9247 with PID 22121 started at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1838: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22121 at Tue May  2 15:18:32 UTC 2017
kill -USR1 22121
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22121 killed at Tue May  2 15:18:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22178 >/dev/null 2>/dev/null
selfserv_9247 with PID 22178 found at Tue May  2 15:18:32 UTC 2017
selfserv_9247 with PID 22178 started at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1839: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22178 at Tue May  2 15:18:32 UTC 2017
kill -USR1 22178
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22178 killed at Tue May  2 15:18:32 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9247 starting at Tue May  2 15:18:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22256 >/dev/null 2>/dev/null
selfserv_9247 with PID 22256 found at Tue May  2 15:18:32 UTC 2017
selfserv_9247 with PID 22256 started at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1840: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22256 at Tue May  2 15:18:32 UTC 2017
kill -USR1 22256
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22256 killed at Tue May  2 15:18:32 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9247 starting at Tue May  2 15:18:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22319 >/dev/null 2>/dev/null
selfserv_9247 with PID 22319 found at Tue May  2 15:18:32 UTC 2017
selfserv_9247 with PID 22319 started at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1841: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22319 at Tue May  2 15:18:32 UTC 2017
kill -USR1 22319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22319 killed at Tue May  2 15:18:32 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9247 starting at Tue May  2 15:18:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22382 >/dev/null 2>/dev/null
selfserv_9247 with PID 22382 found at Tue May  2 15:18:32 UTC 2017
selfserv_9247 with PID 22382 started at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1842: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22382 at Tue May  2 15:18:32 UTC 2017
kill -USR1 22382
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22382 killed at Tue May  2 15:18:32 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9247 starting at Tue May  2 15:18:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22445 >/dev/null 2>/dev/null
selfserv_9247 with PID 22445 found at Tue May  2 15:18:32 UTC 2017
selfserv_9247 with PID 22445 started at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1843: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22445 at Tue May  2 15:18:32 UTC 2017
kill -USR1 22445
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22445 killed at Tue May  2 15:18:32 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9247 starting at Tue May  2 15:18:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22508 >/dev/null 2>/dev/null
selfserv_9247 with PID 22508 found at Tue May  2 15:18:33 UTC 2017
selfserv_9247 with PID 22508 started at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1844: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22508 at Tue May  2 15:18:33 UTC 2017
kill -USR1 22508
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22508 killed at Tue May  2 15:18:33 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9247 starting at Tue May  2 15:18:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22571 >/dev/null 2>/dev/null
selfserv_9247 with PID 22571 found at Tue May  2 15:18:33 UTC 2017
selfserv_9247 with PID 22571 started at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1845: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22571 at Tue May  2 15:18:33 UTC 2017
kill -USR1 22571
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22571 killed at Tue May  2 15:18:33 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9247 starting at Tue May  2 15:18:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22634 >/dev/null 2>/dev/null
selfserv_9247 with PID 22634 found at Tue May  2 15:18:33 UTC 2017
selfserv_9247 with PID 22634 started at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1846: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 22634 at Tue May  2 15:18:33 UTC 2017
kill -USR1 22634
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22634 killed at Tue May  2 15:18:33 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9247 starting at Tue May  2 15:18:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22697 >/dev/null 2>/dev/null
selfserv_9247 with PID 22697 found at Tue May  2 15:18:33 UTC 2017
selfserv_9247 with PID 22697 started at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1847: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22697 at Tue May  2 15:18:33 UTC 2017
kill -USR1 22697
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22697 killed at Tue May  2 15:18:33 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9247 starting at Tue May  2 15:18:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22760 >/dev/null 2>/dev/null
selfserv_9247 with PID 22760 found at Tue May  2 15:18:33 UTC 2017
selfserv_9247 with PID 22760 started at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1848: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22760 at Tue May  2 15:18:33 UTC 2017
kill -USR1 22760
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22760 killed at Tue May  2 15:18:33 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9247 starting at Tue May  2 15:18:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22823 >/dev/null 2>/dev/null
selfserv_9247 with PID 22823 found at Tue May  2 15:18:33 UTC 2017
selfserv_9247 with PID 22823 started at Tue May  2 15:18:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1849: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22823 at Tue May  2 15:18:34 UTC 2017
kill -USR1 22823
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22823 killed at Tue May  2 15:18:34 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9247 starting at Tue May  2 15:18:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22930 >/dev/null 2>/dev/null
selfserv_9247 with PID 22930 found at Tue May  2 15:18:34 UTC 2017
selfserv_9247 with PID 22930 started at Tue May  2 15:18:34 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1850: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 22930 at Tue May  2 15:18:34 UTC 2017
kill -USR1 22930
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22930 killed at Tue May  2 15:18:34 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9247 starting at Tue May  2 15:18:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23001 >/dev/null 2>/dev/null
selfserv_9247 with PID 23001 found at Tue May  2 15:18:34 UTC 2017
selfserv_9247 with PID 23001 started at Tue May  2 15:18:34 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1851: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23001 at Tue May  2 15:18:34 UTC 2017
kill -USR1 23001
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23001 killed at Tue May  2 15:18:34 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9247 starting at Tue May  2 15:18:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23072 >/dev/null 2>/dev/null
selfserv_9247 with PID 23072 found at Tue May  2 15:18:34 UTC 2017
selfserv_9247 with PID 23072 started at Tue May  2 15:18:34 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1852: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23072 at Tue May  2 15:18:34 UTC 2017
kill -USR1 23072
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23072 killed at Tue May  2 15:18:34 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9247 starting at Tue May  2 15:18:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23143 >/dev/null 2>/dev/null
selfserv_9247 with PID 23143 found at Tue May  2 15:18:34 UTC 2017
selfserv_9247 with PID 23143 started at Tue May  2 15:18:34 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:18:35 UTC 2017
ssl.sh: #1853: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23143 at Tue May  2 15:18:35 UTC 2017
kill -USR1 23143
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23143 killed at Tue May  2 15:18:35 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9247 starting at Tue May  2 15:18:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23214 >/dev/null 2>/dev/null
selfserv_9247 with PID 23214 found at Tue May  2 15:18:35 UTC 2017
selfserv_9247 with PID 23214 started at Tue May  2 15:18:35 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:35 UTC 2017
ssl.sh: #1854: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23214 at Tue May  2 15:18:35 UTC 2017
kill -USR1 23214
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23214 killed at Tue May  2 15:18:35 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9247 starting at Tue May  2 15:18:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23285 >/dev/null 2>/dev/null
selfserv_9247 with PID 23285 found at Tue May  2 15:18:35 UTC 2017
selfserv_9247 with PID 23285 started at Tue May  2 15:18:35 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:18:35 UTC 2017
ssl.sh: #1855: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23285 at Tue May  2 15:18:35 UTC 2017
kill -USR1 23285
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23285 killed at Tue May  2 15:18:35 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9247 starting at Tue May  2 15:18:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23356 >/dev/null 2>/dev/null
selfserv_9247 with PID 23356 found at Tue May  2 15:18:35 UTC 2017
selfserv_9247 with PID 23356 started at Tue May  2 15:18:35 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1856: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23356 at Tue May  2 15:18:36 UTC 2017
kill -USR1 23356
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23356 killed at Tue May  2 15:18:36 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI) ----
selfserv_9247 starting at Tue May  2 15:18:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23433 >/dev/null 2>/dev/null
selfserv_9247 with PID 23433 found at Tue May  2 15:18:36 UTC 2017
selfserv_9247 with PID 23433 started at Tue May  2 15:18:36 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1857: Stress TLS RC4 128 with MD5 (session ticket, SNI) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23433 at Tue May  2 15:18:36 UTC 2017
kill -USR1 23433
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23433 killed at Tue May  2 15:18:36 UTC 2017
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23519 >/dev/null 2>/dev/null
selfserv_9247 with PID 23519 found at Tue May  2 15:18:36 UTC 2017
selfserv_9247 with PID 23519 started at Tue May  2 15:18:36 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1858: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23519 at Tue May  2 15:18:36 UTC 2017
kill -USR1 23519
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23519 killed at Tue May  2 15:18:36 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23589 >/dev/null 2>/dev/null
selfserv_9247 with PID 23589 found at Tue May  2 15:18:36 UTC 2017
selfserv_9247 with PID 23589 started at Tue May  2 15:18:36 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1859: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23589 at Tue May  2 15:18:37 UTC 2017
kill -USR1 23589
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23589 killed at Tue May  2 15:18:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23659 >/dev/null 2>/dev/null
selfserv_9247 with PID 23659 found at Tue May  2 15:18:37 UTC 2017
selfserv_9247 with PID 23659 started at Tue May  2 15:18:37 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1860: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23659 at Tue May  2 15:18:37 UTC 2017
kill -USR1 23659
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23659 killed at Tue May  2 15:18:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23730 >/dev/null 2>/dev/null
selfserv_9247 with PID 23730 found at Tue May  2 15:18:37 UTC 2017
selfserv_9247 with PID 23730 started at Tue May  2 15:18:37 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1861: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23730 at Tue May  2 15:18:37 UTC 2017
kill -USR1 23730
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23730 killed at Tue May  2 15:18:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9247 starting at Tue May  2 15:18:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23801 >/dev/null 2>/dev/null
selfserv_9247 with PID 23801 found at Tue May  2 15:18:37 UTC 2017
selfserv_9247 with PID 23801 started at Tue May  2 15:18:37 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1862: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23801 at Tue May  2 15:18:37 UTC 2017
kill -USR1 23801
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23801 killed at Tue May  2 15:18:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23872 >/dev/null 2>/dev/null
selfserv_9247 with PID 23872 found at Tue May  2 15:18:37 UTC 2017
selfserv_9247 with PID 23872 started at Tue May  2 15:18:37 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1863: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23872 at Tue May  2 15:18:37 UTC 2017
kill -USR1 23872
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23872 killed at Tue May  2 15:18:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9247 starting at Tue May  2 15:18:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23943 >/dev/null 2>/dev/null
selfserv_9247 with PID 23943 found at Tue May  2 15:18:37 UTC 2017
selfserv_9247 with PID 23943 started at Tue May  2 15:18:37 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1864: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 23943 at Tue May  2 15:18:38 UTC 2017
kill -USR1 23943
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23943 killed at Tue May  2 15:18:38 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9247 starting at Tue May  2 15:18:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24020 >/dev/null 2>/dev/null
selfserv_9247 with PID 24020 found at Tue May  2 15:18:38 UTC 2017
selfserv_9247 with PID 24020 started at Tue May  2 15:18:38 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1865: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24020 at Tue May  2 15:18:38 UTC 2017
kill -USR1 24020
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24020 killed at Tue May  2 15:18:38 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9247 starting at Tue May  2 15:18:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24097 >/dev/null 2>/dev/null
selfserv_9247 with PID 24097 found at Tue May  2 15:18:38 UTC 2017
selfserv_9247 with PID 24097 started at Tue May  2 15:18:38 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1866: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24097 at Tue May  2 15:18:38 UTC 2017
kill -USR1 24097
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24097 killed at Tue May  2 15:18:38 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24183 >/dev/null 2>/dev/null
selfserv_9247 with PID 24183 found at Tue May  2 15:18:38 UTC 2017
selfserv_9247 with PID 24183 started at Tue May  2 15:18:38 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1867: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24183 at Tue May  2 15:18:39 UTC 2017
kill -USR1 24183
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24183 killed at Tue May  2 15:18:39 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24253 >/dev/null 2>/dev/null
selfserv_9247 with PID 24253 found at Tue May  2 15:18:39 UTC 2017
selfserv_9247 with PID 24253 started at Tue May  2 15:18:39 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1868: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24253 at Tue May  2 15:18:40 UTC 2017
kill -USR1 24253
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24253 killed at Tue May  2 15:18:40 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24323 >/dev/null 2>/dev/null
selfserv_9247 with PID 24323 found at Tue May  2 15:18:40 UTC 2017
selfserv_9247 with PID 24323 started at Tue May  2 15:18:40 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1869: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24323 at Tue May  2 15:18:41 UTC 2017
kill -USR1 24323
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24323 killed at Tue May  2 15:18:41 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24393 >/dev/null 2>/dev/null
selfserv_9247 with PID 24393 found at Tue May  2 15:18:41 UTC 2017
selfserv_9247 with PID 24393 started at Tue May  2 15:18:41 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1870: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24393 at Tue May  2 15:18:42 UTC 2017
kill -USR1 24393
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24393 killed at Tue May  2 15:18:42 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24463 >/dev/null 2>/dev/null
selfserv_9247 with PID 24463 found at Tue May  2 15:18:42 UTC 2017
selfserv_9247 with PID 24463 started at Tue May  2 15:18:42 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1871: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24463 at Tue May  2 15:18:42 UTC 2017
kill -USR1 24463
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24463 killed at Tue May  2 15:18:42 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9247 starting at Tue May  2 15:18:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24533 >/dev/null 2>/dev/null
selfserv_9247 with PID 24533 found at Tue May  2 15:18:43 UTC 2017
selfserv_9247 with PID 24533 started at Tue May  2 15:18:43 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1872: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24533 at Tue May  2 15:18:43 UTC 2017
kill -USR1 24533
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24533 killed at Tue May  2 15:18:43 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9247 starting at Tue May  2 15:18:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24604 >/dev/null 2>/dev/null
selfserv_9247 with PID 24604 found at Tue May  2 15:18:43 UTC 2017
selfserv_9247 with PID 24604 started at Tue May  2 15:18:43 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1873: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24604 at Tue May  2 15:18:43 UTC 2017
kill -USR1 24604
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24604 killed at Tue May  2 15:18:43 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9247 starting at Tue May  2 15:18:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24675 >/dev/null 2>/dev/null
selfserv_9247 with PID 24675 found at Tue May  2 15:18:43 UTC 2017
selfserv_9247 with PID 24675 started at Tue May  2 15:18:43 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1874: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24675 at Tue May  2 15:18:43 UTC 2017
kill -USR1 24675
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24675 killed at Tue May  2 15:18:43 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9247 starting at Tue May  2 15:18:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9247 with PID 24746 found at Tue May  2 15:18:43 UTC 2017
selfserv_9247 with PID 24746 started at Tue May  2 15:18:43 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:18:44 UTC 2017
ssl.sh: #1875: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24746 at Tue May  2 15:18:44 UTC 2017
kill -USR1 24746
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24746 killed at Tue May  2 15:18:44 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9247 starting at Tue May  2 15:18:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24817 >/dev/null 2>/dev/null
selfserv_9247 with PID 24817 found at Tue May  2 15:18:44 UTC 2017
selfserv_9247 with PID 24817 started at Tue May  2 15:18:44 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:18:44 UTC 2017
ssl.sh: #1876: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24817 at Tue May  2 15:18:44 UTC 2017
kill -USR1 24817
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24817 killed at Tue May  2 15:18:44 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24903 >/dev/null 2>/dev/null
selfserv_9247 with PID 24903 found at Tue May  2 15:18:44 UTC 2017
selfserv_9247 with PID 24903 started at Tue May  2 15:18:44 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:18:44 UTC 2017
ssl.sh: #1877: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24903 at Tue May  2 15:18:44 UTC 2017
kill -USR1 24903
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24903 killed at Tue May  2 15:18:44 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24973 >/dev/null 2>/dev/null
selfserv_9247 with PID 24973 found at Tue May  2 15:18:44 UTC 2017
selfserv_9247 with PID 24973 started at Tue May  2 15:18:44 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:44 UTC 2017
ssl.sh: #1878: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 24973 at Tue May  2 15:18:44 UTC 2017
kill -USR1 24973
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24973 killed at Tue May  2 15:18:44 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25044 >/dev/null 2>/dev/null
selfserv_9247 with PID 25044 found at Tue May  2 15:18:44 UTC 2017
selfserv_9247 with PID 25044 started at Tue May  2 15:18:44 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:18:45 UTC 2017
ssl.sh: #1879: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25044 at Tue May  2 15:18:45 UTC 2017
kill -USR1 25044
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25044 killed at Tue May  2 15:18:45 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25114 >/dev/null 2>/dev/null
selfserv_9247 with PID 25114 found at Tue May  2 15:18:45 UTC 2017
selfserv_9247 with PID 25114 started at Tue May  2 15:18:45 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:18:45 UTC 2017
ssl.sh: #1880: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25114 at Tue May  2 15:18:45 UTC 2017
kill -USR1 25114
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25114 killed at Tue May  2 15:18:45 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9247 starting at Tue May  2 15:18:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25184 >/dev/null 2>/dev/null
selfserv_9247 with PID 25184 found at Tue May  2 15:18:45 UTC 2017
selfserv_9247 with PID 25184 started at Tue May  2 15:18:45 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:45 UTC 2017
ssl.sh: #1881: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25184 at Tue May  2 15:18:45 UTC 2017
kill -USR1 25184
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25184 killed at Tue May  2 15:18:45 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25255 >/dev/null 2>/dev/null
selfserv_9247 with PID 25255 found at Tue May  2 15:18:45 UTC 2017
selfserv_9247 with PID 25255 started at Tue May  2 15:18:45 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:18:45 UTC 2017
ssl.sh: #1882: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25255 at Tue May  2 15:18:45 UTC 2017
kill -USR1 25255
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25255 killed at Tue May  2 15:18:45 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25341 >/dev/null 2>/dev/null
selfserv_9247 with PID 25341 found at Tue May  2 15:18:45 UTC 2017
selfserv_9247 with PID 25341 started at Tue May  2 15:18:45 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:46 UTC 2017
ssl.sh: #1883: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25341 at Tue May  2 15:18:46 UTC 2017
kill -USR1 25341
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25341 killed at Tue May  2 15:18:46 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9247 starting at Tue May  2 15:18:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25411 >/dev/null 2>/dev/null
selfserv_9247 with PID 25411 found at Tue May  2 15:18:46 UTC 2017
selfserv_9247 with PID 25411 started at Tue May  2 15:18:46 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:46 UTC 2017
ssl.sh: #1884: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25411 at Tue May  2 15:18:46 UTC 2017
kill -USR1 25411
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25411 killed at Tue May  2 15:18:46 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25482 >/dev/null 2>/dev/null
selfserv_9247 with PID 25482 found at Tue May  2 15:18:46 UTC 2017
selfserv_9247 with PID 25482 started at Tue May  2 15:18:46 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:46 UTC 2017
ssl.sh: #1885: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25482 at Tue May  2 15:18:47 UTC 2017
kill -USR1 25482
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25482 killed at Tue May  2 15:18:47 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25552 >/dev/null 2>/dev/null
selfserv_9247 with PID 25552 found at Tue May  2 15:18:47 UTC 2017
selfserv_9247 with PID 25552 started at Tue May  2 15:18:47 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:47 UTC 2017
ssl.sh: #1886: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25552 at Tue May  2 15:18:47 UTC 2017
kill -USR1 25552
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25552 killed at Tue May  2 15:18:47 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25632 >/dev/null 2>/dev/null
selfserv_9247 with PID 25632 found at Tue May  2 15:18:47 UTC 2017
selfserv_9247 with PID 25632 started at Tue May  2 15:18:47 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:18:49 UTC 2017
ssl.sh: #1887: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25632 at Tue May  2 15:18:49 UTC 2017
kill -USR1 25632
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25632 killed at Tue May  2 15:18:49 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9247 starting at Tue May  2 15:18:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25720 >/dev/null 2>/dev/null
selfserv_9247 with PID 25720 found at Tue May  2 15:18:50 UTC 2017
selfserv_9247 with PID 25720 started at Tue May  2 15:18:50 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:18:52 UTC 2017
ssl.sh: #1888: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25720 at Tue May  2 15:18:52 UTC 2017
kill -USR1 25720
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25720 killed at Tue May  2 15:18:52 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25790 >/dev/null 2>/dev/null
selfserv_9247 with PID 25790 found at Tue May  2 15:18:52 UTC 2017
selfserv_9247 with PID 25790 started at Tue May  2 15:18:52 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:52 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:52 UTC 2017
ssl.sh: #1889: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25790 at Tue May  2 15:18:52 UTC 2017
kill -USR1 25790
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25790 killed at Tue May  2 15:18:52 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25860 >/dev/null 2>/dev/null
selfserv_9247 with PID 25860 found at Tue May  2 15:18:52 UTC 2017
selfserv_9247 with PID 25860 started at Tue May  2 15:18:52 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:52 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:53 UTC 2017
ssl.sh: #1890: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25860 at Tue May  2 15:18:53 UTC 2017
kill -USR1 25860
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25860 killed at Tue May  2 15:18:53 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:18:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25930 >/dev/null 2>/dev/null
selfserv_9247 with PID 25930 found at Tue May  2 15:18:53 UTC 2017
selfserv_9247 with PID 25930 started at Tue May  2 15:18:53 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:53 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:53 UTC 2017
ssl.sh: #1891: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 25930 at Tue May  2 15:18:53 UTC 2017
kill -USR1 25930
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25930 killed at Tue May  2 15:18:53 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26015 >/dev/null 2>/dev/null
selfserv_9247 with PID 26015 found at Tue May  2 15:18:53 UTC 2017
selfserv_9247 with PID 26015 started at Tue May  2 15:18:53 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:53 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:18:54 UTC 2017
ssl.sh: #1892: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 26015 at Tue May  2 15:18:54 UTC 2017
kill -USR1 26015
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26015 killed at Tue May  2 15:18:54 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9247 starting at Tue May  2 15:18:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26085 >/dev/null 2>/dev/null
selfserv_9247 with PID 26085 found at Tue May  2 15:18:54 UTC 2017
selfserv_9247 with PID 26085 started at Tue May  2 15:18:54 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:54 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:18:54 UTC 2017
ssl.sh: #1893: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 26085 at Tue May  2 15:18:54 UTC 2017
kill -USR1 26085
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26085 killed at Tue May  2 15:18:54 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26171 >/dev/null 2>/dev/null
selfserv_9247 with PID 26171 found at Tue May  2 15:18:54 UTC 2017
selfserv_9247 with PID 26171 started at Tue May  2 15:18:54 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:54 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:18:57 UTC 2017
ssl.sh: #1894: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 26171 at Tue May  2 15:18:57 UTC 2017
kill -USR1 26171
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26171 killed at Tue May  2 15:18:57 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:18:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26241 >/dev/null 2>/dev/null
selfserv_9247 with PID 26241 found at Tue May  2 15:18:57 UTC 2017
selfserv_9247 with PID 26241 started at Tue May  2 15:18:57 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:18:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:19:01 UTC 2017
ssl.sh: #1895: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 26241 at Tue May  2 15:19:01 UTC 2017
kill -USR1 26241
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26241 killed at Tue May  2 15:19:01 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server fips/client normal  - with ECC ===============================
selfserv_9247 starting at Tue May  2 15:19:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26303 >/dev/null 2>/dev/null
selfserv_9247 with PID 26303 found at Tue May  2 15:19:01 UTC 2017
selfserv_9247 with PID 26303 started at Tue May  2 15:19:01 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1896: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1897: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1898: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1899: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1900: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1901: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1902: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1903: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1904: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1905: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1906: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1907: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1908: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1909: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1910: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1911: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1912: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1913: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1914: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1915: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1916: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1917: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1918: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1919: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1920: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1921: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1922: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1923: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1924: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1925: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1926: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1927: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1928: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1929: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1930: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1931: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1932: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1933: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1934: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1935: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1936: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1937: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1938: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1939: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1940: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1941: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1942: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1943: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1944: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1945: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1946: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1947: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1948: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1949: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1950: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1951: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1952: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1953: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1954: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1955: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1956: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1957: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1958: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1959: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1960: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1961: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1962: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1963: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1964: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1965: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1966: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1967: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1968: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1969: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1970: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1971: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1972: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1973: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1974: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1975: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1976: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1977: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1978: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1979: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1980: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1981: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1982: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1983: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1984: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1985: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1986: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1987: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1988: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1989: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1990: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1991: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1992: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1993: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1994: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1995: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1996: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1997: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1998: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1999: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2000: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2001: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2002: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2003: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2004: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2005: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2006: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2007: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2008: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2009: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2010: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2011: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2012: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2013: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2014: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2015: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2016: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26303 at Tue May  2 15:19:07 UTC 2017
kill -USR1 26303
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26303 killed at Tue May  2 15:19:07 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:07 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28565 >/dev/null 2>/dev/null
selfserv_9247 with PID 28565 found at Tue May  2 15:19:08 UTC 2017
selfserv_9247 with PID 28565 started at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2017: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28565 at Tue May  2 15:19:08 UTC 2017
kill -USR1 28565
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28565 killed at Tue May  2 15:19:08 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28622 >/dev/null 2>/dev/null
selfserv_9247 with PID 28622 found at Tue May  2 15:19:08 UTC 2017
selfserv_9247 with PID 28622 started at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2018: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28622 at Tue May  2 15:19:08 UTC 2017
kill -USR1 28622
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28622 killed at Tue May  2 15:19:08 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28679 >/dev/null 2>/dev/null
selfserv_9247 with PID 28679 found at Tue May  2 15:19:08 UTC 2017
selfserv_9247 with PID 28679 started at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2019: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28679 at Tue May  2 15:19:08 UTC 2017
kill -USR1 28679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28679 killed at Tue May  2 15:19:08 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28736 >/dev/null 2>/dev/null
selfserv_9247 with PID 28736 found at Tue May  2 15:19:08 UTC 2017
selfserv_9247 with PID 28736 started at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2020: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28736 at Tue May  2 15:19:08 UTC 2017
kill -USR1 28736
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28736 killed at Tue May  2 15:19:08 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28793 >/dev/null 2>/dev/null
selfserv_9247 with PID 28793 found at Tue May  2 15:19:08 UTC 2017
selfserv_9247 with PID 28793 started at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2021: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28793 at Tue May  2 15:19:09 UTC 2017
kill -USR1 28793
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28793 killed at Tue May  2 15:19:09 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28850 >/dev/null 2>/dev/null
selfserv_9247 with PID 28850 found at Tue May  2 15:19:09 UTC 2017
selfserv_9247 with PID 28850 started at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2022: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28850 at Tue May  2 15:19:09 UTC 2017
kill -USR1 28850
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28850 killed at Tue May  2 15:19:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28907 >/dev/null 2>/dev/null
selfserv_9247 with PID 28907 found at Tue May  2 15:19:09 UTC 2017
selfserv_9247 with PID 28907 started at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2023: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28907 at Tue May  2 15:19:09 UTC 2017
kill -USR1 28907
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28907 killed at Tue May  2 15:19:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28964 >/dev/null 2>/dev/null
selfserv_9247 with PID 28964 found at Tue May  2 15:19:09 UTC 2017
selfserv_9247 with PID 28964 started at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2024: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28964 at Tue May  2 15:19:09 UTC 2017
kill -USR1 28964
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28964 killed at Tue May  2 15:19:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29021 >/dev/null 2>/dev/null
selfserv_9247 with PID 29021 found at Tue May  2 15:19:09 UTC 2017
selfserv_9247 with PID 29021 started at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2025: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29021 at Tue May  2 15:19:09 UTC 2017
kill -USR1 29021
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29021 killed at Tue May  2 15:19:09 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9247 with PID 29078 found at Tue May  2 15:19:09 UTC 2017
selfserv_9247 with PID 29078 started at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2026: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29078 at Tue May  2 15:19:10 UTC 2017
kill -USR1 29078
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29078 killed at Tue May  2 15:19:10 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29135 >/dev/null 2>/dev/null
selfserv_9247 with PID 29135 found at Tue May  2 15:19:10 UTC 2017
selfserv_9247 with PID 29135 started at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2027: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29135 at Tue May  2 15:19:10 UTC 2017
kill -USR1 29135
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29135 killed at Tue May  2 15:19:10 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29192 >/dev/null 2>/dev/null
selfserv_9247 with PID 29192 found at Tue May  2 15:19:10 UTC 2017
selfserv_9247 with PID 29192 started at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2028: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29192 at Tue May  2 15:19:10 UTC 2017
kill -USR1 29192
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29192 killed at Tue May  2 15:19:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29249 >/dev/null 2>/dev/null
selfserv_9247 with PID 29249 found at Tue May  2 15:19:10 UTC 2017
selfserv_9247 with PID 29249 started at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2029: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29249 at Tue May  2 15:19:10 UTC 2017
kill -USR1 29249
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29249 killed at Tue May  2 15:19:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29306 >/dev/null 2>/dev/null
selfserv_9247 with PID 29306 found at Tue May  2 15:19:10 UTC 2017
selfserv_9247 with PID 29306 started at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2030: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29306 at Tue May  2 15:19:10 UTC 2017
kill -USR1 29306
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29306 killed at Tue May  2 15:19:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29363 >/dev/null 2>/dev/null
selfserv_9247 with PID 29363 found at Tue May  2 15:19:10 UTC 2017
selfserv_9247 with PID 29363 started at Tue May  2 15:19:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2031: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29363 at Tue May  2 15:19:11 UTC 2017
kill -USR1 29363
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29363 killed at Tue May  2 15:19:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29420 >/dev/null 2>/dev/null
selfserv_9247 with PID 29420 found at Tue May  2 15:19:11 UTC 2017
selfserv_9247 with PID 29420 started at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2032: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29420 at Tue May  2 15:19:11 UTC 2017
kill -USR1 29420
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29420 killed at Tue May  2 15:19:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29477 >/dev/null 2>/dev/null
selfserv_9247 with PID 29477 found at Tue May  2 15:19:11 UTC 2017
selfserv_9247 with PID 29477 started at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2033: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29477 at Tue May  2 15:19:11 UTC 2017
kill -USR1 29477
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29477 killed at Tue May  2 15:19:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29534 >/dev/null 2>/dev/null
selfserv_9247 with PID 29534 found at Tue May  2 15:19:11 UTC 2017
selfserv_9247 with PID 29534 started at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2034: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29534 at Tue May  2 15:19:11 UTC 2017
kill -USR1 29534
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29534 killed at Tue May  2 15:19:11 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29591 >/dev/null 2>/dev/null
selfserv_9247 with PID 29591 found at Tue May  2 15:19:11 UTC 2017
selfserv_9247 with PID 29591 started at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2035: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29591 at Tue May  2 15:19:11 UTC 2017
kill -USR1 29591
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29591 killed at Tue May  2 15:19:11 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29648 >/dev/null 2>/dev/null
selfserv_9247 with PID 29648 found at Tue May  2 15:19:12 UTC 2017
selfserv_9247 with PID 29648 started at Tue May  2 15:19:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2036: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29648 at Tue May  2 15:19:12 UTC 2017
kill -USR1 29648
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29648 killed at Tue May  2 15:19:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29705 >/dev/null 2>/dev/null
selfserv_9247 with PID 29705 found at Tue May  2 15:19:12 UTC 2017
selfserv_9247 with PID 29705 started at Tue May  2 15:19:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2037: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29705 at Tue May  2 15:19:12 UTC 2017
kill -USR1 29705
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29705 killed at Tue May  2 15:19:12 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29762 >/dev/null 2>/dev/null
selfserv_9247 with PID 29762 found at Tue May  2 15:19:12 UTC 2017
selfserv_9247 with PID 29762 started at Tue May  2 15:19:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2038: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29762 at Tue May  2 15:19:12 UTC 2017
kill -USR1 29762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29762 killed at Tue May  2 15:19:12 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29819 >/dev/null 2>/dev/null
selfserv_9247 with PID 29819 found at Tue May  2 15:19:13 UTC 2017
selfserv_9247 with PID 29819 started at Tue May  2 15:19:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2039: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29819 at Tue May  2 15:19:13 UTC 2017
kill -USR1 29819
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29819 killed at Tue May  2 15:19:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29876 >/dev/null 2>/dev/null
selfserv_9247 with PID 29876 found at Tue May  2 15:19:13 UTC 2017
selfserv_9247 with PID 29876 started at Tue May  2 15:19:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2040: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29876 at Tue May  2 15:19:14 UTC 2017
kill -USR1 29876
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29876 killed at Tue May  2 15:19:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29933 >/dev/null 2>/dev/null
selfserv_9247 with PID 29933 found at Tue May  2 15:19:14 UTC 2017
selfserv_9247 with PID 29933 started at Tue May  2 15:19:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2041: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29933 at Tue May  2 15:19:14 UTC 2017
kill -USR1 29933
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29933 killed at Tue May  2 15:19:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29990 >/dev/null 2>/dev/null
selfserv_9247 with PID 29990 found at Tue May  2 15:19:15 UTC 2017
selfserv_9247 with PID 29990 started at Tue May  2 15:19:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2042: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29990 at Tue May  2 15:19:15 UTC 2017
kill -USR1 29990
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29990 killed at Tue May  2 15:19:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30047 >/dev/null 2>/dev/null
selfserv_9247 with PID 30047 found at Tue May  2 15:19:15 UTC 2017
selfserv_9247 with PID 30047 started at Tue May  2 15:19:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2043: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30047 at Tue May  2 15:19:15 UTC 2017
kill -USR1 30047
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30047 killed at Tue May  2 15:19:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:19:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30104 >/dev/null 2>/dev/null
selfserv_9247 with PID 30104 found at Tue May  2 15:19:16 UTC 2017
selfserv_9247 with PID 30104 started at Tue May  2 15:19:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2044: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30104 at Tue May  2 15:19:16 UTC 2017
kill -USR1 30104
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30104 killed at Tue May  2 15:19:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30161 >/dev/null 2>/dev/null
selfserv_9247 with PID 30161 found at Tue May  2 15:19:16 UTC 2017
selfserv_9247 with PID 30161 started at Tue May  2 15:19:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2045: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30161 at Tue May  2 15:19:16 UTC 2017
kill -USR1 30161
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30161 killed at Tue May  2 15:19:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30218 >/dev/null 2>/dev/null
selfserv_9247 with PID 30218 found at Tue May  2 15:19:16 UTC 2017
selfserv_9247 with PID 30218 started at Tue May  2 15:19:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2046: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30218 at Tue May  2 15:19:17 UTC 2017
kill -USR1 30218
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30218 killed at Tue May  2 15:19:17 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30290 >/dev/null 2>/dev/null
selfserv_9247 with PID 30290 found at Tue May  2 15:19:18 UTC 2017
selfserv_9247 with PID 30290 started at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2047: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30290 at Tue May  2 15:19:18 UTC 2017
kill -USR1 30290
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30290 killed at Tue May  2 15:19:18 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30347 >/dev/null 2>/dev/null
selfserv_9247 with PID 30347 found at Tue May  2 15:19:18 UTC 2017
selfserv_9247 with PID 30347 started at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2048: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30347 at Tue May  2 15:19:18 UTC 2017
kill -USR1 30347
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30347 killed at Tue May  2 15:19:18 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30404 >/dev/null 2>/dev/null
selfserv_9247 with PID 30404 found at Tue May  2 15:19:18 UTC 2017
selfserv_9247 with PID 30404 started at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2049: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30404 at Tue May  2 15:19:18 UTC 2017
kill -USR1 30404
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30404 killed at Tue May  2 15:19:18 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30461 >/dev/null 2>/dev/null
selfserv_9247 with PID 30461 found at Tue May  2 15:19:18 UTC 2017
selfserv_9247 with PID 30461 started at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2050: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30461 at Tue May  2 15:19:18 UTC 2017
kill -USR1 30461
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30461 killed at Tue May  2 15:19:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30518 >/dev/null 2>/dev/null
selfserv_9247 with PID 30518 found at Tue May  2 15:19:18 UTC 2017
selfserv_9247 with PID 30518 started at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2051: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30518 at Tue May  2 15:19:18 UTC 2017
kill -USR1 30518
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30518 killed at Tue May  2 15:19:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30575 >/dev/null 2>/dev/null
selfserv_9247 with PID 30575 found at Tue May  2 15:19:18 UTC 2017
selfserv_9247 with PID 30575 started at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2052: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30575 at Tue May  2 15:19:19 UTC 2017
kill -USR1 30575
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30575 killed at Tue May  2 15:19:19 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30632 >/dev/null 2>/dev/null
selfserv_9247 with PID 30632 found at Tue May  2 15:19:19 UTC 2017
selfserv_9247 with PID 30632 started at Tue May  2 15:19:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2053: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30632 at Tue May  2 15:19:19 UTC 2017
kill -USR1 30632
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30632 killed at Tue May  2 15:19:19 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30689 >/dev/null 2>/dev/null
selfserv_9247 with PID 30689 found at Tue May  2 15:19:20 UTC 2017
selfserv_9247 with PID 30689 started at Tue May  2 15:19:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2054: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30689 at Tue May  2 15:19:20 UTC 2017
kill -USR1 30689
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30689 killed at Tue May  2 15:19:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30746 >/dev/null 2>/dev/null
selfserv_9247 with PID 30746 found at Tue May  2 15:19:20 UTC 2017
selfserv_9247 with PID 30746 started at Tue May  2 15:19:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2055: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30746 at Tue May  2 15:19:20 UTC 2017
kill -USR1 30746
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30746 killed at Tue May  2 15:19:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30803 >/dev/null 2>/dev/null
selfserv_9247 with PID 30803 found at Tue May  2 15:19:21 UTC 2017
selfserv_9247 with PID 30803 started at Tue May  2 15:19:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2056: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30803 at Tue May  2 15:19:21 UTC 2017
kill -USR1 30803
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30803 killed at Tue May  2 15:19:21 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30860 >/dev/null 2>/dev/null
selfserv_9247 with PID 30860 found at Tue May  2 15:19:23 UTC 2017
selfserv_9247 with PID 30860 started at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2057: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30860 at Tue May  2 15:19:23 UTC 2017
kill -USR1 30860
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30860 killed at Tue May  2 15:19:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30917 >/dev/null 2>/dev/null
selfserv_9247 with PID 30917 found at Tue May  2 15:19:23 UTC 2017
selfserv_9247 with PID 30917 started at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2058: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30917 at Tue May  2 15:19:23 UTC 2017
kill -USR1 30917
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30917 killed at Tue May  2 15:19:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30974 >/dev/null 2>/dev/null
selfserv_9247 with PID 30974 found at Tue May  2 15:19:23 UTC 2017
selfserv_9247 with PID 30974 started at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2059: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30974 at Tue May  2 15:19:23 UTC 2017
kill -USR1 30974
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30974 killed at Tue May  2 15:19:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31031 >/dev/null 2>/dev/null
selfserv_9247 with PID 31031 found at Tue May  2 15:19:23 UTC 2017
selfserv_9247 with PID 31031 started at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2060: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31031 at Tue May  2 15:19:23 UTC 2017
kill -USR1 31031
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31031 killed at Tue May  2 15:19:23 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31088 >/dev/null 2>/dev/null
selfserv_9247 with PID 31088 found at Tue May  2 15:19:23 UTC 2017
selfserv_9247 with PID 31088 started at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2061: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31088 at Tue May  2 15:19:24 UTC 2017
kill -USR1 31088
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31088 killed at Tue May  2 15:19:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31145 >/dev/null 2>/dev/null
selfserv_9247 with PID 31145 found at Tue May  2 15:19:24 UTC 2017
selfserv_9247 with PID 31145 started at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2062: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31145 at Tue May  2 15:19:24 UTC 2017
kill -USR1 31145
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31145 killed at Tue May  2 15:19:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31202 >/dev/null 2>/dev/null
selfserv_9247 with PID 31202 found at Tue May  2 15:19:24 UTC 2017
selfserv_9247 with PID 31202 started at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2063: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31202 at Tue May  2 15:19:24 UTC 2017
kill -USR1 31202
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31202 killed at Tue May  2 15:19:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31259 >/dev/null 2>/dev/null
selfserv_9247 with PID 31259 found at Tue May  2 15:19:24 UTC 2017
selfserv_9247 with PID 31259 started at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2064: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31259 at Tue May  2 15:19:24 UTC 2017
kill -USR1 31259
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31259 killed at Tue May  2 15:19:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:19:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31316 >/dev/null 2>/dev/null
selfserv_9247 with PID 31316 found at Tue May  2 15:19:24 UTC 2017
selfserv_9247 with PID 31316 started at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2065: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31316 at Tue May  2 15:19:24 UTC 2017
kill -USR1 31316
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31316 killed at Tue May  2 15:19:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31373 >/dev/null 2>/dev/null
selfserv_9247 with PID 31373 found at Tue May  2 15:19:25 UTC 2017
selfserv_9247 with PID 31373 started at Tue May  2 15:19:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2066: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31373 at Tue May  2 15:19:25 UTC 2017
kill -USR1 31373
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31373 killed at Tue May  2 15:19:25 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9247 starting at Tue May  2 15:19:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31516 >/dev/null 2>/dev/null
selfserv_9247 with PID 31516 found at Tue May  2 15:19:25 UTC 2017
selfserv_9247 with PID 31516 started at Tue May  2 15:19:25 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:25 UTC 2017
ssl.sh: #2067: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 31516 at Tue May  2 15:19:25 UTC 2017
kill -USR1 31516
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31516 killed at Tue May  2 15:19:25 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9247 starting at Tue May  2 15:19:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31587 >/dev/null 2>/dev/null
selfserv_9247 with PID 31587 found at Tue May  2 15:19:25 UTC 2017
selfserv_9247 with PID 31587 started at Tue May  2 15:19:25 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:25 UTC 2017
ssl.sh: #2068: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 31587 at Tue May  2 15:19:25 UTC 2017
kill -USR1 31587
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31587 killed at Tue May  2 15:19:25 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9247 starting at Tue May  2 15:19:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31658 >/dev/null 2>/dev/null
selfserv_9247 with PID 31658 found at Tue May  2 15:19:26 UTC 2017
selfserv_9247 with PID 31658 started at Tue May  2 15:19:26 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:27 UTC 2017
ssl.sh: #2069: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 31658 at Tue May  2 15:19:27 UTC 2017
kill -USR1 31658
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31658 killed at Tue May  2 15:19:27 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9247 starting at Tue May  2 15:19:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31729 >/dev/null 2>/dev/null
selfserv_9247 with PID 31729 found at Tue May  2 15:19:27 UTC 2017
selfserv_9247 with PID 31729 started at Tue May  2 15:19:27 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:27 UTC 2017
ssl.sh: #2070: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 31729 at Tue May  2 15:19:27 UTC 2017
kill -USR1 31729
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31729 killed at Tue May  2 15:19:27 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9247 starting at Tue May  2 15:19:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31800 >/dev/null 2>/dev/null
selfserv_9247 with PID 31800 found at Tue May  2 15:19:27 UTC 2017
selfserv_9247 with PID 31800 started at Tue May  2 15:19:27 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:27 UTC 2017
ssl.sh: #2071: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 31800 at Tue May  2 15:19:27 UTC 2017
kill -USR1 31800
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31800 killed at Tue May  2 15:19:27 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9247 starting at Tue May  2 15:19:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31871 >/dev/null 2>/dev/null
selfserv_9247 with PID 31871 found at Tue May  2 15:19:27 UTC 2017
selfserv_9247 with PID 31871 started at Tue May  2 15:19:27 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:28 UTC 2017
ssl.sh: #2072: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 31871 at Tue May  2 15:19:28 UTC 2017
kill -USR1 31871
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31871 killed at Tue May  2 15:19:28 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9247 starting at Tue May  2 15:19:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31942 >/dev/null 2>/dev/null
selfserv_9247 with PID 31942 found at Tue May  2 15:19:28 UTC 2017
selfserv_9247 with PID 31942 started at Tue May  2 15:19:28 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:28 UTC 2017
ssl.sh: #2073: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 31942 at Tue May  2 15:19:28 UTC 2017
kill -USR1 31942
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31942 killed at Tue May  2 15:19:28 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32030 >/dev/null 2>/dev/null
selfserv_9247 with PID 32030 found at Tue May  2 15:19:28 UTC 2017
selfserv_9247 with PID 32030 started at Tue May  2 15:19:28 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:28 UTC 2017
ssl.sh: #2074: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32030 at Tue May  2 15:19:28 UTC 2017
kill -USR1 32030
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32030 killed at Tue May  2 15:19:28 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32100 >/dev/null 2>/dev/null
selfserv_9247 with PID 32100 found at Tue May  2 15:19:28 UTC 2017
selfserv_9247 with PID 32100 started at Tue May  2 15:19:28 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:29 UTC 2017
ssl.sh: #2075: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32100 at Tue May  2 15:19:29 UTC 2017
kill -USR1 32100
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32100 killed at Tue May  2 15:19:29 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32170 >/dev/null 2>/dev/null
selfserv_9247 with PID 32170 found at Tue May  2 15:19:29 UTC 2017
selfserv_9247 with PID 32170 started at Tue May  2 15:19:29 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:29 UTC 2017
ssl.sh: #2076: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32170 at Tue May  2 15:19:29 UTC 2017
kill -USR1 32170
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32170 killed at Tue May  2 15:19:29 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32241 >/dev/null 2>/dev/null
selfserv_9247 with PID 32241 found at Tue May  2 15:19:29 UTC 2017
selfserv_9247 with PID 32241 started at Tue May  2 15:19:29 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:29 UTC 2017
ssl.sh: #2077: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32241 at Tue May  2 15:19:29 UTC 2017
kill -USR1 32241
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32241 killed at Tue May  2 15:19:29 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9247 starting at Tue May  2 15:19:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32312 >/dev/null 2>/dev/null
selfserv_9247 with PID 32312 found at Tue May  2 15:19:29 UTC 2017
selfserv_9247 with PID 32312 started at Tue May  2 15:19:29 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:29 UTC 2017
ssl.sh: #2078: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32312 at Tue May  2 15:19:29 UTC 2017
kill -USR1 32312
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32312 killed at Tue May  2 15:19:29 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32383 >/dev/null 2>/dev/null
selfserv_9247 with PID 32383 found at Tue May  2 15:19:29 UTC 2017
selfserv_9247 with PID 32383 started at Tue May  2 15:19:29 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:30 UTC 2017
ssl.sh: #2079: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32383 at Tue May  2 15:19:30 UTC 2017
kill -USR1 32383
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32383 killed at Tue May  2 15:19:30 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9247 starting at Tue May  2 15:19:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32454 >/dev/null 2>/dev/null
selfserv_9247 with PID 32454 found at Tue May  2 15:19:30 UTC 2017
selfserv_9247 with PID 32454 started at Tue May  2 15:19:30 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:30 UTC 2017
ssl.sh: #2080: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32454 at Tue May  2 15:19:30 UTC 2017
kill -USR1 32454
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32454 killed at Tue May  2 15:19:30 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32544 >/dev/null 2>/dev/null
selfserv_9247 with PID 32544 found at Tue May  2 15:19:30 UTC 2017
selfserv_9247 with PID 32544 started at Tue May  2 15:19:30 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:31 UTC 2017
ssl.sh: #2081: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32544 at Tue May  2 15:19:31 UTC 2017
kill -USR1 32544
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32544 killed at Tue May  2 15:19:31 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32614 >/dev/null 2>/dev/null
selfserv_9247 with PID 32614 found at Tue May  2 15:19:31 UTC 2017
selfserv_9247 with PID 32614 started at Tue May  2 15:19:31 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:33 UTC 2017
ssl.sh: #2082: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32614 at Tue May  2 15:19:33 UTC 2017
kill -USR1 32614
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32614 killed at Tue May  2 15:19:33 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32684 >/dev/null 2>/dev/null
selfserv_9247 with PID 32684 found at Tue May  2 15:19:33 UTC 2017
selfserv_9247 with PID 32684 started at Tue May  2 15:19:33 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:34 UTC 2017
ssl.sh: #2083: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32684 at Tue May  2 15:19:34 UTC 2017
kill -USR1 32684
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32684 killed at Tue May  2 15:19:34 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32754 >/dev/null 2>/dev/null
selfserv_9247 with PID 32754 found at Tue May  2 15:19:34 UTC 2017
selfserv_9247 with PID 32754 started at Tue May  2 15:19:34 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:36 UTC 2017
ssl.sh: #2084: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 32754 at Tue May  2 15:19:36 UTC 2017
kill -USR1 32754
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32754 killed at Tue May  2 15:19:36 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 356 >/dev/null 2>/dev/null
selfserv_9247 with PID 356 found at Tue May  2 15:19:36 UTC 2017
selfserv_9247 with PID 356 started at Tue May  2 15:19:36 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:36 UTC 2017
ssl.sh: #2085: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 356 at Tue May  2 15:19:36 UTC 2017
kill -USR1 356
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 356 killed at Tue May  2 15:19:36 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9247 starting at Tue May  2 15:19:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 431 >/dev/null 2>/dev/null
selfserv_9247 with PID 431 found at Tue May  2 15:19:36 UTC 2017
selfserv_9247 with PID 431 started at Tue May  2 15:19:36 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:36 UTC 2017
ssl.sh: #2086: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 431 at Tue May  2 15:19:36 UTC 2017
kill -USR1 431
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 431 killed at Tue May  2 15:19:36 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9247 starting at Tue May  2 15:19:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 510 >/dev/null 2>/dev/null
selfserv_9247 with PID 510 found at Tue May  2 15:19:36 UTC 2017
selfserv_9247 with PID 510 started at Tue May  2 15:19:36 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:36 UTC 2017
ssl.sh: #2087: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 510 at Tue May  2 15:19:36 UTC 2017
kill -USR1 510
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 510 killed at Tue May  2 15:19:36 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9247 starting at Tue May  2 15:19:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 596 >/dev/null 2>/dev/null
selfserv_9247 with PID 596 found at Tue May  2 15:19:37 UTC 2017
selfserv_9247 with PID 596 started at Tue May  2 15:19:37 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:37 UTC 2017
ssl.sh: #2088: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 596 at Tue May  2 15:19:37 UTC 2017
kill -USR1 596
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 596 killed at Tue May  2 15:19:37 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9247 starting at Tue May  2 15:19:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 670 >/dev/null 2>/dev/null
selfserv_9247 with PID 670 found at Tue May  2 15:19:37 UTC 2017
selfserv_9247 with PID 670 started at Tue May  2 15:19:37 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:37 UTC 2017
ssl.sh: #2089: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 670 at Tue May  2 15:19:37 UTC 2017
kill -USR1 670
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 670 killed at Tue May  2 15:19:37 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9247 starting at Tue May  2 15:19:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 744 >/dev/null 2>/dev/null
selfserv_9247 with PID 744 found at Tue May  2 15:19:37 UTC 2017
selfserv_9247 with PID 744 started at Tue May  2 15:19:37 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:37 UTC 2017
ssl.sh: #2090: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 744 at Tue May  2 15:19:37 UTC 2017
kill -USR1 744
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 744 killed at Tue May  2 15:19:37 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 885 >/dev/null 2>/dev/null
selfserv_9247 with PID 885 found at Tue May  2 15:19:37 UTC 2017
selfserv_9247 with PID 885 started at Tue May  2 15:19:37 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:19:38 UTC 2017
ssl.sh: #2091: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 885 at Tue May  2 15:19:38 UTC 2017
kill -USR1 885
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 885 killed at Tue May  2 15:19:38 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 958 >/dev/null 2>/dev/null
selfserv_9247 with PID 958 found at Tue May  2 15:19:39 UTC 2017
selfserv_9247 with PID 958 started at Tue May  2 15:19:39 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:39 UTC 2017
ssl.sh: #2092: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 958 at Tue May  2 15:19:39 UTC 2017
kill -USR1 958
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 958 killed at Tue May  2 15:19:39 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1029 >/dev/null 2>/dev/null
selfserv_9247 with PID 1029 found at Tue May  2 15:19:39 UTC 2017
selfserv_9247 with PID 1029 started at Tue May  2 15:19:39 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:19:39 UTC 2017
ssl.sh: #2093: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1029 at Tue May  2 15:19:39 UTC 2017
kill -USR1 1029
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1029 killed at Tue May  2 15:19:39 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1099 >/dev/null 2>/dev/null
selfserv_9247 with PID 1099 found at Tue May  2 15:19:40 UTC 2017
selfserv_9247 with PID 1099 started at Tue May  2 15:19:40 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:19:40 UTC 2017
ssl.sh: #2094: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1099 at Tue May  2 15:19:40 UTC 2017
kill -USR1 1099
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1099 killed at Tue May  2 15:19:40 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9247 starting at Tue May  2 15:19:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1169 >/dev/null 2>/dev/null
selfserv_9247 with PID 1169 found at Tue May  2 15:19:40 UTC 2017
selfserv_9247 with PID 1169 started at Tue May  2 15:19:40 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:40 UTC 2017
ssl.sh: #2095: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1169 at Tue May  2 15:19:40 UTC 2017
kill -USR1 1169
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1169 killed at Tue May  2 15:19:40 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9247 with PID 1240 found at Tue May  2 15:19:40 UTC 2017
selfserv_9247 with PID 1240 started at Tue May  2 15:19:40 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:40 UTC 2017
ssl.sh: #2096: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1240 at Tue May  2 15:19:40 UTC 2017
kill -USR1 1240
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1240 killed at Tue May  2 15:19:40 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1326 >/dev/null 2>/dev/null
selfserv_9247 with PID 1326 found at Tue May  2 15:19:40 UTC 2017
selfserv_9247 with PID 1326 started at Tue May  2 15:19:40 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:41 UTC 2017
ssl.sh: #2097: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1326 at Tue May  2 15:19:41 UTC 2017
kill -USR1 1326
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1326 killed at Tue May  2 15:19:41 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9247 starting at Tue May  2 15:19:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1397 >/dev/null 2>/dev/null
selfserv_9247 with PID 1397 found at Tue May  2 15:19:41 UTC 2017
selfserv_9247 with PID 1397 started at Tue May  2 15:19:41 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:41 UTC 2017
ssl.sh: #2098: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1397 at Tue May  2 15:19:41 UTC 2017
kill -USR1 1397
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1397 killed at Tue May  2 15:19:41 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1468 >/dev/null 2>/dev/null
selfserv_9247 with PID 1468 found at Tue May  2 15:19:41 UTC 2017
selfserv_9247 with PID 1468 started at Tue May  2 15:19:41 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:41 UTC 2017
ssl.sh: #2099: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1468 at Tue May  2 15:19:41 UTC 2017
kill -USR1 1468
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1468 killed at Tue May  2 15:19:41 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1538 >/dev/null 2>/dev/null
selfserv_9247 with PID 1538 found at Tue May  2 15:19:41 UTC 2017
selfserv_9247 with PID 1538 started at Tue May  2 15:19:41 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:42 UTC 2017
ssl.sh: #2100: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1538 at Tue May  2 15:19:42 UTC 2017
kill -USR1 1538
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1538 killed at Tue May  2 15:19:42 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1618 >/dev/null 2>/dev/null
selfserv_9247 with PID 1618 found at Tue May  2 15:19:42 UTC 2017
selfserv_9247 with PID 1618 started at Tue May  2 15:19:42 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:19:45 UTC 2017
ssl.sh: #2101: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1618 at Tue May  2 15:19:45 UTC 2017
kill -USR1 1618
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1618 killed at Tue May  2 15:19:45 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9247 starting at Tue May  2 15:19:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1698 >/dev/null 2>/dev/null
selfserv_9247 with PID 1698 found at Tue May  2 15:19:45 UTC 2017
selfserv_9247 with PID 1698 started at Tue May  2 15:19:45 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:19:48 UTC 2017
ssl.sh: #2102: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1698 at Tue May  2 15:19:48 UTC 2017
kill -USR1 1698
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1698 killed at Tue May  2 15:19:48 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1768 >/dev/null 2>/dev/null
selfserv_9247 with PID 1768 found at Tue May  2 15:19:48 UTC 2017
selfserv_9247 with PID 1768 started at Tue May  2 15:19:48 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:48 UTC 2017
ssl.sh: #2103: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1768 at Tue May  2 15:19:48 UTC 2017
kill -USR1 1768
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1768 killed at Tue May  2 15:19:48 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1838 >/dev/null 2>/dev/null
selfserv_9247 with PID 1838 found at Tue May  2 15:19:48 UTC 2017
selfserv_9247 with PID 1838 started at Tue May  2 15:19:48 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:49 UTC 2017
ssl.sh: #2104: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1838 at Tue May  2 15:19:49 UTC 2017
kill -USR1 1838
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1838 killed at Tue May  2 15:19:49 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9247 starting at Tue May  2 15:19:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1908 >/dev/null 2>/dev/null
selfserv_9247 with PID 1908 found at Tue May  2 15:19:49 UTC 2017
selfserv_9247 with PID 1908 started at Tue May  2 15:19:49 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:49 UTC 2017
ssl.sh: #2105: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1908 at Tue May  2 15:19:49 UTC 2017
kill -USR1 1908
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1908 killed at Tue May  2 15:19:49 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1993 >/dev/null 2>/dev/null
selfserv_9247 with PID 1993 found at Tue May  2 15:19:49 UTC 2017
selfserv_9247 with PID 1993 started at Tue May  2 15:19:49 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:50 UTC 2017
ssl.sh: #2106: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 1993 at Tue May  2 15:19:50 UTC 2017
kill -USR1 1993
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1993 killed at Tue May  2 15:19:50 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9247 starting at Tue May  2 15:19:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2063 >/dev/null 2>/dev/null
selfserv_9247 with PID 2063 found at Tue May  2 15:19:50 UTC 2017
selfserv_9247 with PID 2063 started at Tue May  2 15:19:50 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:50 UTC 2017
ssl.sh: #2107: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 2063 at Tue May  2 15:19:50 UTC 2017
kill -USR1 2063
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2063 killed at Tue May  2 15:19:50 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2149 >/dev/null 2>/dev/null
selfserv_9247 with PID 2149 found at Tue May  2 15:19:50 UTC 2017
selfserv_9247 with PID 2149 started at Tue May  2 15:19:50 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:19:55 UTC 2017
ssl.sh: #2108: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 2149 at Tue May  2 15:19:55 UTC 2017
kill -USR1 2149
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2149 killed at Tue May  2 15:19:55 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:19:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:19:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2219 >/dev/null 2>/dev/null
selfserv_9247 with PID 2219 found at Tue May  2 15:19:55 UTC 2017
selfserv_9247 with PID 2219 started at Tue May  2 15:19:55 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:55 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:20:00 UTC 2017
ssl.sh: #2109: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 2219 at Tue May  2 15:20:00 UTC 2017
kill -USR1 2219
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2219 killed at Tue May  2 15:20:00 UTC 2017
ssl.sh: SSL - FIPS mode off for server ===============================
ssl.sh: Turning FIPS off for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -fips false -force
FIPS mode disabled.
ssl.sh: #2110:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -list
ssl.sh: #2111:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2112:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -fips false -force
FIPS mode disabled.
ssl.sh: #2113:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -list
ssl.sh: #2114:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2115:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: SSL - FIPS mode on for client ===============================
ssl.sh: Turning FIPS on for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -fips true -force
FIPS mode enabled.
ssl.sh: #2116:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -list
ssl.sh: #2117:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2118:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -fips true -force
FIPS mode enabled.
ssl.sh: #2119:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2120:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2121:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server normal/client fips  - with ECC ===============================
selfserv_9247 starting at Tue May  2 15:20:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:20:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2411 >/dev/null 2>/dev/null
selfserv_9247 with PID 2411 found at Tue May  2 15:20:01 UTC 2017
selfserv_9247 with PID 2411 started at Tue May  2 15:20:01 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2122: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2123: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2124: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2125: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2126: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2127: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2128: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2129: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2130: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2131: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2132: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2133: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2134: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2135: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2136: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2137: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2138: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2139: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2140: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2141: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2142: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2143: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2144: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2145: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2146: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2147: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2148: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2149: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2150: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2151: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2152: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2153: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2154: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2155: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2156: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2157: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2158: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2159: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2160: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2161: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2162: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2163: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2164: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2165: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2166: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2167: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2168: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2169: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2170: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2171: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2172: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2173: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2174: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2175: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2176: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2177: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2178: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2179: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2180: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2181: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2182: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2183: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2184: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2185: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2186: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2187: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2188: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2189: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2190: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2191: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2192: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2193: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2194: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2195: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2196: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2197: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2198: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2199: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2200: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2201: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2202: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2203: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2204: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2205: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2206: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2207: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2208: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2209: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2210: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2211: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2212: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2213: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2214: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2215: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2216: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2217: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2218: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2219: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2220: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2221: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2222: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2223: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2224: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2225: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2226: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2227: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2228: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2229: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2230: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2231: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2232: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2233: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2234: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2235: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2236: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2237: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2238: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2239: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2240: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2241: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2242: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 2411 at Tue May  2 15:20:11 UTC 2017
kill -USR1 2411
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2411 killed at Tue May  2 15:20:11 UTC 2017
ssl.sh: SSL Client Authentication  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:20:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4682 >/dev/null 2>/dev/null
selfserv_9247 with PID 4682 found at Tue May  2 15:20:11 UTC 2017
selfserv_9247 with PID 4682 started at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2243: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 4682 at Tue May  2 15:20:11 UTC 2017
kill -USR1 4682
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4682 killed at Tue May  2 15:20:11 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:20:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4739 >/dev/null 2>/dev/null
selfserv_9247 with PID 4739 found at Tue May  2 15:20:11 UTC 2017
selfserv_9247 with PID 4739 started at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2244: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 4739 at Tue May  2 15:20:38 UTC 2017
kill -USR1 4739
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4739 killed at Tue May  2 15:20:38 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:20:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4796 >/dev/null 2>/dev/null
selfserv_9247 with PID 4796 found at Tue May  2 15:20:38 UTC 2017
selfserv_9247 with PID 4796 started at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2245: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4796 at Tue May  2 15:20:38 UTC 2017
kill -USR1 4796
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4796 killed at Tue May  2 15:20:38 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:20:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4859 >/dev/null 2>/dev/null
selfserv_9247 with PID 4859 found at Tue May  2 15:20:38 UTC 2017
selfserv_9247 with PID 4859 started at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2246: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 4859 at Tue May  2 15:20:38 UTC 2017
kill -USR1 4859
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4859 killed at Tue May  2 15:20:38 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:20:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4916 >/dev/null 2>/dev/null
selfserv_9247 with PID 4916 found at Tue May  2 15:20:38 UTC 2017
selfserv_9247 with PID 4916 started at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2247: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 4916 at Tue May  2 15:21:01 UTC 2017
kill -USR1 4916
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4916 killed at Tue May  2 15:21:01 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:21:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4973 >/dev/null 2>/dev/null
selfserv_9247 with PID 4973 found at Tue May  2 15:21:01 UTC 2017
selfserv_9247 with PID 4973 started at Tue May  2 15:21:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2248: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4973 at Tue May  2 15:21:01 UTC 2017
kill -USR1 4973
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4973 killed at Tue May  2 15:21:01 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:21:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5036 >/dev/null 2>/dev/null
selfserv_9247 with PID 5036 found at Tue May  2 15:21:01 UTC 2017
selfserv_9247 with PID 5036 started at Tue May  2 15:21:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2249: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5036 at Tue May  2 15:21:01 UTC 2017
kill -USR1 5036
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5036 killed at Tue May  2 15:21:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:21:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5093 >/dev/null 2>/dev/null
selfserv_9247 with PID 5093 found at Tue May  2 15:21:01 UTC 2017
selfserv_9247 with PID 5093 started at Tue May  2 15:21:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2250: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5093 at Tue May  2 15:21:28 UTC 2017
kill -USR1 5093
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5093 killed at Tue May  2 15:21:28 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:21:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5150 >/dev/null 2>/dev/null
selfserv_9247 with PID 5150 found at Tue May  2 15:21:28 UTC 2017
selfserv_9247 with PID 5150 started at Tue May  2 15:21:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2251: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5150 at Tue May  2 15:21:28 UTC 2017
kill -USR1 5150
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5150 killed at Tue May  2 15:21:28 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:21:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5213 >/dev/null 2>/dev/null
selfserv_9247 with PID 5213 found at Tue May  2 15:21:28 UTC 2017
selfserv_9247 with PID 5213 started at Tue May  2 15:21:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2252: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5213 at Tue May  2 15:21:28 UTC 2017
kill -USR1 5213
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5213 killed at Tue May  2 15:21:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:21:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5270 >/dev/null 2>/dev/null
selfserv_9247 with PID 5270 found at Tue May  2 15:21:28 UTC 2017
selfserv_9247 with PID 5270 started at Tue May  2 15:21:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2253: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5270 at Tue May  2 15:21:54 UTC 2017
kill -USR1 5270
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5270 killed at Tue May  2 15:21:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:21:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5327 >/dev/null 2>/dev/null
selfserv_9247 with PID 5327 found at Tue May  2 15:21:54 UTC 2017
selfserv_9247 with PID 5327 started at Tue May  2 15:21:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2254: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5327 at Tue May  2 15:21:54 UTC 2017
kill -USR1 5327
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5327 killed at Tue May  2 15:21:54 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:21:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5390 >/dev/null 2>/dev/null
selfserv_9247 with PID 5390 found at Tue May  2 15:21:54 UTC 2017
selfserv_9247 with PID 5390 started at Tue May  2 15:21:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2255: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5390 at Tue May  2 15:21:54 UTC 2017
kill -USR1 5390
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5390 killed at Tue May  2 15:21:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:21:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:21:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5447 >/dev/null 2>/dev/null
selfserv_9247 with PID 5447 found at Tue May  2 15:21:55 UTC 2017
selfserv_9247 with PID 5447 started at Tue May  2 15:21:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2256: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5447 at Tue May  2 15:22:18 UTC 2017
kill -USR1 5447
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5447 killed at Tue May  2 15:22:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:22:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:22:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5519 >/dev/null 2>/dev/null
selfserv_9247 with PID 5519 found at Tue May  2 15:22:18 UTC 2017
selfserv_9247 with PID 5519 started at Tue May  2 15:22:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2257: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5519 at Tue May  2 15:22:18 UTC 2017
kill -USR1 5519
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5519 killed at Tue May  2 15:22:18 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:22:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:22:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5595 >/dev/null 2>/dev/null
selfserv_9247 with PID 5595 found at Tue May  2 15:22:18 UTC 2017
selfserv_9247 with PID 5595 started at Tue May  2 15:22:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2258: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5595 at Tue May  2 15:22:44 UTC 2017
kill -USR1 5595
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5595 killed at Tue May  2 15:22:44 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:22:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:22:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5659 >/dev/null 2>/dev/null
selfserv_9247 with PID 5659 found at Tue May  2 15:22:44 UTC 2017
selfserv_9247 with PID 5659 started at Tue May  2 15:22:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2259: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5659 at Tue May  2 15:22:44 UTC 2017
kill -USR1 5659
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5659 killed at Tue May  2 15:22:44 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:22:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:22:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5720 >/dev/null 2>/dev/null
selfserv_9247 with PID 5720 found at Tue May  2 15:22:45 UTC 2017
selfserv_9247 with PID 5720 started at Tue May  2 15:22:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2260: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5720 at Tue May  2 15:23:08 UTC 2017
kill -USR1 5720
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5720 killed at Tue May  2 15:23:08 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:23:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5777 >/dev/null 2>/dev/null
selfserv_9247 with PID 5777 found at Tue May  2 15:23:08 UTC 2017
selfserv_9247 with PID 5777 started at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2261: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5777 at Tue May  2 15:23:08 UTC 2017
kill -USR1 5777
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5777 killed at Tue May  2 15:23:08 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:23:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5838 >/dev/null 2>/dev/null
selfserv_9247 with PID 5838 found at Tue May  2 15:23:08 UTC 2017
selfserv_9247 with PID 5838 started at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2262: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5838 at Tue May  2 15:23:34 UTC 2017
kill -USR1 5838
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5838 killed at Tue May  2 15:23:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:23:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:23:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5903 >/dev/null 2>/dev/null
selfserv_9247 with PID 5903 found at Tue May  2 15:23:34 UTC 2017
selfserv_9247 with PID 5903 started at Tue May  2 15:23:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2263: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5903 at Tue May  2 15:23:34 UTC 2017
kill -USR1 5903
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5903 killed at Tue May  2 15:23:34 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:23:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:23:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5964 >/dev/null 2>/dev/null
selfserv_9247 with PID 5964 found at Tue May  2 15:23:34 UTC 2017
selfserv_9247 with PID 5964 started at Tue May  2 15:23:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2264: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5964 at Tue May  2 15:24:00 UTC 2017
kill -USR1 5964
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5964 killed at Tue May  2 15:24:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:24:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6021 >/dev/null 2>/dev/null
selfserv_9247 with PID 6021 found at Tue May  2 15:24:00 UTC 2017
selfserv_9247 with PID 6021 started at Tue May  2 15:24:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2265: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6021 at Tue May  2 15:24:01 UTC 2017
kill -USR1 6021
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6021 killed at Tue May  2 15:24:01 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:24:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6082 >/dev/null 2>/dev/null
selfserv_9247 with PID 6082 found at Tue May  2 15:24:01 UTC 2017
selfserv_9247 with PID 6082 started at Tue May  2 15:24:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2266: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6082 at Tue May  2 15:24:24 UTC 2017
kill -USR1 6082
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6082 killed at Tue May  2 15:24:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:24:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6139 >/dev/null 2>/dev/null
selfserv_9247 with PID 6139 found at Tue May  2 15:24:24 UTC 2017
selfserv_9247 with PID 6139 started at Tue May  2 15:24:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2267: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6139 at Tue May  2 15:24:24 UTC 2017
kill -USR1 6139
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6139 killed at Tue May  2 15:24:24 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9247 starting at Tue May  2 15:24:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6217 >/dev/null 2>/dev/null
selfserv_9247 with PID 6217 found at Tue May  2 15:24:24 UTC 2017
selfserv_9247 with PID 6217 started at Tue May  2 15:24:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2268: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6217 at Tue May  2 15:24:24 UTC 2017
kill -USR1 6217
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6217 killed at Tue May  2 15:24:24 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9247 starting at Tue May  2 15:24:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6280 >/dev/null 2>/dev/null
selfserv_9247 with PID 6280 found at Tue May  2 15:24:24 UTC 2017
selfserv_9247 with PID 6280 started at Tue May  2 15:24:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2269: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6280 at Tue May  2 15:24:24 UTC 2017
kill -USR1 6280
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6280 killed at Tue May  2 15:24:24 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9247 starting at Tue May  2 15:24:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6343 >/dev/null 2>/dev/null
selfserv_9247 with PID 6343 found at Tue May  2 15:24:24 UTC 2017
selfserv_9247 with PID 6343 started at Tue May  2 15:24:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2270: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6343 at Tue May  2 15:24:24 UTC 2017
kill -USR1 6343
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6343 killed at Tue May  2 15:24:25 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9247 starting at Tue May  2 15:24:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6406 >/dev/null 2>/dev/null
selfserv_9247 with PID 6406 found at Tue May  2 15:24:25 UTC 2017
selfserv_9247 with PID 6406 started at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2271: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6406 at Tue May  2 15:24:25 UTC 2017
kill -USR1 6406
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6406 killed at Tue May  2 15:24:25 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9247 starting at Tue May  2 15:24:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6469 >/dev/null 2>/dev/null
selfserv_9247 with PID 6469 found at Tue May  2 15:24:25 UTC 2017
selfserv_9247 with PID 6469 started at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2272: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6469 at Tue May  2 15:24:25 UTC 2017
kill -USR1 6469
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6469 killed at Tue May  2 15:24:25 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9247 starting at Tue May  2 15:24:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6532 >/dev/null 2>/dev/null
selfserv_9247 with PID 6532 found at Tue May  2 15:24:25 UTC 2017
selfserv_9247 with PID 6532 started at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2273: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6532 at Tue May  2 15:24:25 UTC 2017
kill -USR1 6532
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6532 killed at Tue May  2 15:24:25 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9247 starting at Tue May  2 15:24:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6595 >/dev/null 2>/dev/null
selfserv_9247 with PID 6595 found at Tue May  2 15:24:25 UTC 2017
selfserv_9247 with PID 6595 started at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2274: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6595 at Tue May  2 15:24:25 UTC 2017
kill -USR1 6595
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6595 killed at Tue May  2 15:24:25 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9247 starting at Tue May  2 15:24:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6658 >/dev/null 2>/dev/null
selfserv_9247 with PID 6658 found at Tue May  2 15:24:25 UTC 2017
selfserv_9247 with PID 6658 started at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2275: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6658 at Tue May  2 15:24:25 UTC 2017
kill -USR1 6658
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6658 killed at Tue May  2 15:24:25 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9247 starting at Tue May  2 15:24:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6721 >/dev/null 2>/dev/null
selfserv_9247 with PID 6721 found at Tue May  2 15:24:25 UTC 2017
selfserv_9247 with PID 6721 started at Tue May  2 15:24:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2276: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6721 at Tue May  2 15:24:26 UTC 2017
kill -USR1 6721
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6721 killed at Tue May  2 15:24:26 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9247 starting at Tue May  2 15:24:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6784 >/dev/null 2>/dev/null
selfserv_9247 with PID 6784 found at Tue May  2 15:24:26 UTC 2017
selfserv_9247 with PID 6784 started at Tue May  2 15:24:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2277: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6784 at Tue May  2 15:24:26 UTC 2017
kill -USR1 6784
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6784 killed at Tue May  2 15:24:26 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6883 >/dev/null 2>/dev/null
selfserv_9247 with PID 6883 found at Tue May  2 15:24:26 UTC 2017
selfserv_9247 with PID 6883 started at Tue May  2 15:24:26 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:24:26 UTC 2017
ssl.sh: #2278: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 6883 at Tue May  2 15:24:26 UTC 2017
kill -USR1 6883
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6883 killed at Tue May  2 15:24:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6953 >/dev/null 2>/dev/null
selfserv_9247 with PID 6953 found at Tue May  2 15:24:26 UTC 2017
selfserv_9247 with PID 6953 started at Tue May  2 15:24:26 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:24:27 UTC 2017
ssl.sh: #2279: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 6953 at Tue May  2 15:24:27 UTC 2017
kill -USR1 6953
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6953 killed at Tue May  2 15:24:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7023 >/dev/null 2>/dev/null
selfserv_9247 with PID 7023 found at Tue May  2 15:24:27 UTC 2017
selfserv_9247 with PID 7023 started at Tue May  2 15:24:27 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:24:27 UTC 2017
ssl.sh: #2280: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7023 at Tue May  2 15:24:27 UTC 2017
kill -USR1 7023
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7023 killed at Tue May  2 15:24:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7094 >/dev/null 2>/dev/null
selfserv_9247 with PID 7094 found at Tue May  2 15:24:27 UTC 2017
selfserv_9247 with PID 7094 started at Tue May  2 15:24:27 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:24:27 UTC 2017
ssl.sh: #2281: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7094 at Tue May  2 15:24:27 UTC 2017
kill -USR1 7094
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7094 killed at Tue May  2 15:24:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9247 starting at Tue May  2 15:24:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7165 >/dev/null 2>/dev/null
selfserv_9247 with PID 7165 found at Tue May  2 15:24:27 UTC 2017
selfserv_9247 with PID 7165 started at Tue May  2 15:24:27 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:24:27 UTC 2017
ssl.sh: #2282: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7165 at Tue May  2 15:24:27 UTC 2017
kill -USR1 7165
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7165 killed at Tue May  2 15:24:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7236 >/dev/null 2>/dev/null
selfserv_9247 with PID 7236 found at Tue May  2 15:24:27 UTC 2017
selfserv_9247 with PID 7236 started at Tue May  2 15:24:27 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:24:27 UTC 2017
ssl.sh: #2283: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7236 at Tue May  2 15:24:27 UTC 2017
kill -USR1 7236
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7236 killed at Tue May  2 15:24:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9247 starting at Tue May  2 15:24:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7307 >/dev/null 2>/dev/null
selfserv_9247 with PID 7307 found at Tue May  2 15:24:27 UTC 2017
selfserv_9247 with PID 7307 started at Tue May  2 15:24:27 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:24:27 UTC 2017
ssl.sh: #2284: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7307 at Tue May  2 15:24:27 UTC 2017
kill -USR1 7307
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7307 killed at Tue May  2 15:24:28 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9247 starting at Tue May  2 15:24:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7384 >/dev/null 2>/dev/null
selfserv_9247 with PID 7384 found at Tue May  2 15:24:28 UTC 2017
selfserv_9247 with PID 7384 started at Tue May  2 15:24:28 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:24:28 UTC 2017
ssl.sh: #2285: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7384 at Tue May  2 15:24:28 UTC 2017
kill -USR1 7384
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7384 killed at Tue May  2 15:24:28 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9247 starting at Tue May  2 15:24:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7461 >/dev/null 2>/dev/null
selfserv_9247 with PID 7461 found at Tue May  2 15:24:28 UTC 2017
selfserv_9247 with PID 7461 started at Tue May  2 15:24:28 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:24:28 UTC 2017
ssl.sh: #2286: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7461 at Tue May  2 15:24:28 UTC 2017
kill -USR1 7461
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7461 killed at Tue May  2 15:24:28 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7564 >/dev/null 2>/dev/null
selfserv_9247 with PID 7564 found at Tue May  2 15:24:28 UTC 2017
selfserv_9247 with PID 7564 started at Tue May  2 15:24:28 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:24:29 UTC 2017
ssl.sh: #2287: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7564 at Tue May  2 15:24:29 UTC 2017
kill -USR1 7564
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7564 killed at Tue May  2 15:24:29 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9247 starting at Tue May  2 15:24:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7636 >/dev/null 2>/dev/null
selfserv_9247 with PID 7636 found at Tue May  2 15:24:29 UTC 2017
selfserv_9247 with PID 7636 started at Tue May  2 15:24:29 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:24:29 UTC 2017
ssl.sh: #2288: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7636 at Tue May  2 15:24:29 UTC 2017
kill -USR1 7636
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7636 killed at Tue May  2 15:24:29 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7707 >/dev/null 2>/dev/null
selfserv_9247 with PID 7707 found at Tue May  2 15:24:29 UTC 2017
selfserv_9247 with PID 7707 started at Tue May  2 15:24:29 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:24:29 UTC 2017
ssl.sh: #2289: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7707 at Tue May  2 15:24:29 UTC 2017
kill -USR1 7707
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7707 killed at Tue May  2 15:24:29 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7779 >/dev/null 2>/dev/null
selfserv_9247 with PID 7779 found at Tue May  2 15:24:29 UTC 2017
selfserv_9247 with PID 7779 started at Tue May  2 15:24:29 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:24:29 UTC 2017
ssl.sh: #2290: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7779 at Tue May  2 15:24:29 UTC 2017
kill -USR1 7779
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7779 killed at Tue May  2 15:24:29 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9247 starting at Tue May  2 15:24:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7849 >/dev/null 2>/dev/null
selfserv_9247 with PID 7849 found at Tue May  2 15:24:29 UTC 2017
selfserv_9247 with PID 7849 started at Tue May  2 15:24:29 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:24:30 UTC 2017
ssl.sh: #2291: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7849 at Tue May  2 15:24:30 UTC 2017
kill -USR1 7849
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7849 killed at Tue May  2 15:24:30 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7920 >/dev/null 2>/dev/null
selfserv_9247 with PID 7920 found at Tue May  2 15:24:30 UTC 2017
selfserv_9247 with PID 7920 started at Tue May  2 15:24:30 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:24:30 UTC 2017
ssl.sh: #2292: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 7920 at Tue May  2 15:24:30 UTC 2017
kill -USR1 7920
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7920 killed at Tue May  2 15:24:30 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8029 >/dev/null 2>/dev/null
selfserv_9247 with PID 8029 found at Tue May  2 15:24:30 UTC 2017
selfserv_9247 with PID 8029 started at Tue May  2 15:24:30 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:24:30 UTC 2017
ssl.sh: #2293: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 8029 at Tue May  2 15:24:30 UTC 2017
kill -USR1 8029
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8029 killed at Tue May  2 15:24:30 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9247 starting at Tue May  2 15:24:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8099 >/dev/null 2>/dev/null
selfserv_9247 with PID 8099 found at Tue May  2 15:24:30 UTC 2017
selfserv_9247 with PID 8099 started at Tue May  2 15:24:30 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:24:31 UTC 2017
ssl.sh: #2294: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 8099 at Tue May  2 15:24:31 UTC 2017
kill -USR1 8099
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8099 killed at Tue May  2 15:24:31 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8182 >/dev/null 2>/dev/null
selfserv_9247 with PID 8182 found at Tue May  2 15:24:31 UTC 2017
selfserv_9247 with PID 8182 started at Tue May  2 15:24:31 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:24:34 UTC 2017
ssl.sh: #2295: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 8182 at Tue May  2 15:24:34 UTC 2017
kill -USR1 8182
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8182 killed at Tue May  2 15:24:34 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:24:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8252 >/dev/null 2>/dev/null
selfserv_9247 with PID 8252 found at Tue May  2 15:24:34 UTC 2017
selfserv_9247 with PID 8252 started at Tue May  2 15:24:34 UTC 2017
strsclnt -q -p 9247 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:24:38 UTC 2017
ssl.sh: #2296: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 8252 at Tue May  2 15:24:38 UTC 2017
kill -USR1 8252
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8252 killed at Tue May  2 15:24:38 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server normal/client fips  - with ECC ===============================
selfserv_9247 starting at Tue May  2 15:24:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8314 >/dev/null 2>/dev/null
selfserv_9247 with PID 8314 found at Tue May  2 15:24:38 UTC 2017
selfserv_9247 with PID 8314 started at Tue May  2 15:24:38 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2297: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2298: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2299: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2300: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2301: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2302: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2303: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2304: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2305: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2306: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2307: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2308: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2309: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2310: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2311: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2312: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2313: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2314: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2315: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2316: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2317: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2318: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2319: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2320: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2321: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2322: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2323: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2324: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2325: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2326: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2327: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2328: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2329: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2330: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2331: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2332: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2333: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2334: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2335: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2336: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2337: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2338: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2339: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2340: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2341: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2342: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2343: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2344: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2345: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2346: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2347: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2348: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2349: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2350: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2351: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2352: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2353: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2354: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2355: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2356: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2357: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2358: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2359: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2360: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2361: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2362: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2363: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2364: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2365: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2366: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2367: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2368: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2369: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2370: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2371: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2372: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2373: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2374: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2375: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2376: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2377: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2378: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2379: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2380: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2381: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2382: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2383: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2384: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2385: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2386: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2387: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2388: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2389: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2390: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2391: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2392: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2393: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2394: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2395: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2396: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2397: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2398: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2399: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2400: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2401: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2402: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2403: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2404: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2405: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2406: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2407: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2408: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2409: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2410: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2411: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2412: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2413: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2414: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2415: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2416: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9247 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2417: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 8314 at Tue May  2 15:24:47 UTC 2017
kill -USR1 8314
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8314 killed at Tue May  2 15:24:47 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:24:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10595 >/dev/null 2>/dev/null
selfserv_9247 with PID 10595 found at Tue May  2 15:24:48 UTC 2017
selfserv_9247 with PID 10595 started at Tue May  2 15:24:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2418: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10595 at Tue May  2 15:24:48 UTC 2017
kill -USR1 10595
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10595 killed at Tue May  2 15:24:48 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:24:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:24:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10652 >/dev/null 2>/dev/null
selfserv_9247 with PID 10652 found at Tue May  2 15:24:48 UTC 2017
selfserv_9247 with PID 10652 started at Tue May  2 15:24:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2419: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10652 at Tue May  2 15:25:15 UTC 2017
kill -USR1 10652
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10652 killed at Tue May  2 15:25:15 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:25:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:25:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10709 >/dev/null 2>/dev/null
selfserv_9247 with PID 10709 found at Tue May  2 15:25:15 UTC 2017
selfserv_9247 with PID 10709 started at Tue May  2 15:25:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2420: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 10709 at Tue May  2 15:25:15 UTC 2017
kill -USR1 10709
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10709 killed at Tue May  2 15:25:15 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:25:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:25:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10772 >/dev/null 2>/dev/null
selfserv_9247 with PID 10772 found at Tue May  2 15:25:15 UTC 2017
selfserv_9247 with PID 10772 started at Tue May  2 15:25:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2421: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10772 at Tue May  2 15:25:15 UTC 2017
kill -USR1 10772
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10772 killed at Tue May  2 15:25:15 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:25:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:25:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10829 >/dev/null 2>/dev/null
selfserv_9247 with PID 10829 found at Tue May  2 15:25:15 UTC 2017
selfserv_9247 with PID 10829 started at Tue May  2 15:25:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2422: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10829 at Tue May  2 15:25:38 UTC 2017
kill -USR1 10829
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10829 killed at Tue May  2 15:25:38 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:25:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:25:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10886 >/dev/null 2>/dev/null
selfserv_9247 with PID 10886 found at Tue May  2 15:25:38 UTC 2017
selfserv_9247 with PID 10886 started at Tue May  2 15:25:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2423: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 10886 at Tue May  2 15:25:38 UTC 2017
kill -USR1 10886
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10886 killed at Tue May  2 15:25:38 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:25:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10949 >/dev/null 2>/dev/null
selfserv_9247 with PID 10949 found at Tue May  2 15:25:39 UTC 2017
selfserv_9247 with PID 10949 started at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2424: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10949 at Tue May  2 15:25:39 UTC 2017
kill -USR1 10949
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10949 killed at Tue May  2 15:25:39 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:25:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11006 >/dev/null 2>/dev/null
selfserv_9247 with PID 11006 found at Tue May  2 15:25:39 UTC 2017
selfserv_9247 with PID 11006 started at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2425: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11006 at Tue May  2 15:26:06 UTC 2017
kill -USR1 11006
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11006 killed at Tue May  2 15:26:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:26:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:26:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11064 >/dev/null 2>/dev/null
selfserv_9247 with PID 11064 found at Tue May  2 15:26:06 UTC 2017
selfserv_9247 with PID 11064 started at Tue May  2 15:26:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2426: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11064 at Tue May  2 15:26:06 UTC 2017
kill -USR1 11064
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11064 killed at Tue May  2 15:26:06 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:26:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:26:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11127 >/dev/null 2>/dev/null
selfserv_9247 with PID 11127 found at Tue May  2 15:26:06 UTC 2017
selfserv_9247 with PID 11127 started at Tue May  2 15:26:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2427: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11127 at Tue May  2 15:26:06 UTC 2017
kill -USR1 11127
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11127 killed at Tue May  2 15:26:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:26:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:26:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11184 >/dev/null 2>/dev/null
selfserv_9247 with PID 11184 found at Tue May  2 15:26:06 UTC 2017
selfserv_9247 with PID 11184 started at Tue May  2 15:26:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2428: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11184 at Tue May  2 15:26:33 UTC 2017
kill -USR1 11184
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11184 killed at Tue May  2 15:26:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:26:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:26:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11241 >/dev/null 2>/dev/null
selfserv_9247 with PID 11241 found at Tue May  2 15:26:33 UTC 2017
selfserv_9247 with PID 11241 started at Tue May  2 15:26:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2429: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11241 at Tue May  2 15:26:34 UTC 2017
kill -USR1 11241
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11241 killed at Tue May  2 15:26:34 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:26:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:26:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11304 >/dev/null 2>/dev/null
selfserv_9247 with PID 11304 found at Tue May  2 15:26:34 UTC 2017
selfserv_9247 with PID 11304 started at Tue May  2 15:26:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2430: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11304 at Tue May  2 15:26:34 UTC 2017
kill -USR1 11304
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11304 killed at Tue May  2 15:26:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:26:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:26:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11361 >/dev/null 2>/dev/null
selfserv_9247 with PID 11361 found at Tue May  2 15:26:34 UTC 2017
selfserv_9247 with PID 11361 started at Tue May  2 15:26:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2431: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11361 at Tue May  2 15:26:57 UTC 2017
kill -USR1 11361
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11361 killed at Tue May  2 15:26:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:26:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:26:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11418 >/dev/null 2>/dev/null
selfserv_9247 with PID 11418 found at Tue May  2 15:26:57 UTC 2017
selfserv_9247 with PID 11418 started at Tue May  2 15:26:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2432: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11418 at Tue May  2 15:26:57 UTC 2017
kill -USR1 11418
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11418 killed at Tue May  2 15:26:57 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:26:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:26:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11494 >/dev/null 2>/dev/null
selfserv_9247 with PID 11494 found at Tue May  2 15:26:57 UTC 2017
selfserv_9247 with PID 11494 started at Tue May  2 15:26:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2433: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11494 at Tue May  2 15:27:24 UTC 2017
kill -USR1 11494
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11494 killed at Tue May  2 15:27:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:27:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:27:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11551 >/dev/null 2>/dev/null
selfserv_9247 with PID 11551 found at Tue May  2 15:27:24 UTC 2017
selfserv_9247 with PID 11551 started at Tue May  2 15:27:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2434: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11551 at Tue May  2 15:27:25 UTC 2017
kill -USR1 11551
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11551 killed at Tue May  2 15:27:25 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:27:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:27:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11612 >/dev/null 2>/dev/null
selfserv_9247 with PID 11612 found at Tue May  2 15:27:25 UTC 2017
selfserv_9247 with PID 11612 started at Tue May  2 15:27:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2435: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11612 at Tue May  2 15:27:48 UTC 2017
kill -USR1 11612
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11612 killed at Tue May  2 15:27:48 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:27:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:27:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11670 >/dev/null 2>/dev/null
selfserv_9247 with PID 11670 found at Tue May  2 15:27:48 UTC 2017
selfserv_9247 with PID 11670 started at Tue May  2 15:27:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2436: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11670 at Tue May  2 15:27:48 UTC 2017
kill -USR1 11670
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11670 killed at Tue May  2 15:27:48 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:27:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:27:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11731 >/dev/null 2>/dev/null
selfserv_9247 with PID 11731 found at Tue May  2 15:27:48 UTC 2017
selfserv_9247 with PID 11731 started at Tue May  2 15:27:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2437: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11731 at Tue May  2 15:28:15 UTC 2017
kill -USR1 11731
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11731 killed at Tue May  2 15:28:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:28:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:28:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11806 >/dev/null 2>/dev/null
selfserv_9247 with PID 11806 found at Tue May  2 15:28:15 UTC 2017
selfserv_9247 with PID 11806 started at Tue May  2 15:28:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2438: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11806 at Tue May  2 15:28:15 UTC 2017
kill -USR1 11806
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11806 killed at Tue May  2 15:28:15 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:28:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:28:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11867 >/dev/null 2>/dev/null
selfserv_9247 with PID 11867 found at Tue May  2 15:28:15 UTC 2017
selfserv_9247 with PID 11867 started at Tue May  2 15:28:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2439: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11867 at Tue May  2 15:28:42 UTC 2017
kill -USR1 11867
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11867 killed at Tue May  2 15:28:42 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:28:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:28:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11932 >/dev/null 2>/dev/null
selfserv_9247 with PID 11932 found at Tue May  2 15:28:42 UTC 2017
selfserv_9247 with PID 11932 started at Tue May  2 15:28:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2440: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11932 at Tue May  2 15:28:43 UTC 2017
kill -USR1 11932
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11932 killed at Tue May  2 15:28:43 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:28:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:28:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11993 >/dev/null 2>/dev/null
selfserv_9247 with PID 11993 found at Tue May  2 15:28:43 UTC 2017
selfserv_9247 with PID 11993 started at Tue May  2 15:28:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2441: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11993 at Tue May  2 15:29:06 UTC 2017
kill -USR1 11993
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11993 killed at Tue May  2 15:29:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:29:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12050 >/dev/null 2>/dev/null
selfserv_9247 with PID 12050 found at Tue May  2 15:29:06 UTC 2017
selfserv_9247 with PID 12050 started at Tue May  2 15:29:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2442: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 12050 at Tue May  2 15:29:06 UTC 2017
kill -USR1 12050
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12050 killed at Tue May  2 15:29:06 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12184 >/dev/null 2>/dev/null
selfserv_9247 with PID 12184 found at Tue May  2 15:29:06 UTC 2017
selfserv_9247 with PID 12184 started at Tue May  2 15:29:06 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:29:07 UTC 2017
ssl.sh: #2443: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12184 at Tue May  2 15:29:07 UTC 2017
kill -USR1 12184
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12184 killed at Tue May  2 15:29:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:07 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12254 >/dev/null 2>/dev/null
selfserv_9247 with PID 12254 found at Tue May  2 15:29:07 UTC 2017
selfserv_9247 with PID 12254 started at Tue May  2 15:29:07 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:29:07 UTC 2017
ssl.sh: #2444: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12254 at Tue May  2 15:29:07 UTC 2017
kill -USR1 12254
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12254 killed at Tue May  2 15:29:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:07 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12324 >/dev/null 2>/dev/null
selfserv_9247 with PID 12324 found at Tue May  2 15:29:07 UTC 2017
selfserv_9247 with PID 12324 started at Tue May  2 15:29:07 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:29:07 UTC 2017
ssl.sh: #2445: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12324 at Tue May  2 15:29:07 UTC 2017
kill -USR1 12324
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12324 killed at Tue May  2 15:29:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:07 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12395 >/dev/null 2>/dev/null
selfserv_9247 with PID 12395 found at Tue May  2 15:29:07 UTC 2017
selfserv_9247 with PID 12395 started at Tue May  2 15:29:07 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:29:08 UTC 2017
ssl.sh: #2446: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12395 at Tue May  2 15:29:08 UTC 2017
kill -USR1 12395
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12395 killed at Tue May  2 15:29:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9247 starting at Tue May  2 15:29:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12466 >/dev/null 2>/dev/null
selfserv_9247 with PID 12466 found at Tue May  2 15:29:08 UTC 2017
selfserv_9247 with PID 12466 started at Tue May  2 15:29:08 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:29:08 UTC 2017
ssl.sh: #2447: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12466 at Tue May  2 15:29:08 UTC 2017
kill -USR1 12466
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12466 killed at Tue May  2 15:29:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12537 >/dev/null 2>/dev/null
selfserv_9247 with PID 12537 found at Tue May  2 15:29:08 UTC 2017
selfserv_9247 with PID 12537 started at Tue May  2 15:29:08 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:29:08 UTC 2017
ssl.sh: #2448: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12537 at Tue May  2 15:29:08 UTC 2017
kill -USR1 12537
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12537 killed at Tue May  2 15:29:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9247 starting at Tue May  2 15:29:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12608 >/dev/null 2>/dev/null
selfserv_9247 with PID 12608 found at Tue May  2 15:29:08 UTC 2017
selfserv_9247 with PID 12608 started at Tue May  2 15:29:08 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:29:08 UTC 2017
ssl.sh: #2449: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12608 at Tue May  2 15:29:08 UTC 2017
kill -USR1 12608
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12608 killed at Tue May  2 15:29:08 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12715 >/dev/null 2>/dev/null
selfserv_9247 with PID 12715 found at Tue May  2 15:29:08 UTC 2017
selfserv_9247 with PID 12715 started at Tue May  2 15:29:08 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:29:09 UTC 2017
ssl.sh: #2450: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12715 at Tue May  2 15:29:09 UTC 2017
kill -USR1 12715
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12715 killed at Tue May  2 15:29:09 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9247 starting at Tue May  2 15:29:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12785 >/dev/null 2>/dev/null
selfserv_9247 with PID 12785 found at Tue May  2 15:29:09 UTC 2017
selfserv_9247 with PID 12785 started at Tue May  2 15:29:09 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:29:09 UTC 2017
ssl.sh: #2451: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12785 at Tue May  2 15:29:09 UTC 2017
kill -USR1 12785
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12785 killed at Tue May  2 15:29:09 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12856 >/dev/null 2>/dev/null
selfserv_9247 with PID 12856 found at Tue May  2 15:29:09 UTC 2017
selfserv_9247 with PID 12856 started at Tue May  2 15:29:09 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:29:09 UTC 2017
ssl.sh: #2452: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12856 at Tue May  2 15:29:09 UTC 2017
kill -USR1 12856
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12856 killed at Tue May  2 15:29:09 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12926 >/dev/null 2>/dev/null
selfserv_9247 with PID 12926 found at Tue May  2 15:29:09 UTC 2017
selfserv_9247 with PID 12926 started at Tue May  2 15:29:09 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:29:10 UTC 2017
ssl.sh: #2453: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12926 at Tue May  2 15:29:10 UTC 2017
kill -USR1 12926
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12926 killed at Tue May  2 15:29:10 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9247 starting at Tue May  2 15:29:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12996 >/dev/null 2>/dev/null
selfserv_9247 with PID 12996 found at Tue May  2 15:29:10 UTC 2017
selfserv_9247 with PID 12996 started at Tue May  2 15:29:10 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:29:10 UTC 2017
ssl.sh: #2454: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 12996 at Tue May  2 15:29:10 UTC 2017
kill -USR1 12996
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12996 killed at Tue May  2 15:29:10 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13067 >/dev/null 2>/dev/null
selfserv_9247 with PID 13067 found at Tue May  2 15:29:10 UTC 2017
selfserv_9247 with PID 13067 started at Tue May  2 15:29:10 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:29:10 UTC 2017
ssl.sh: #2455: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 13067 at Tue May  2 15:29:10 UTC 2017
kill -USR1 13067
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 13067 killed at Tue May  2 15:29:10 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13177 >/dev/null 2>/dev/null
selfserv_9247 with PID 13177 found at Tue May  2 15:29:10 UTC 2017
selfserv_9247 with PID 13177 started at Tue May  2 15:29:10 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:29:11 UTC 2017
ssl.sh: #2456: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 13177 at Tue May  2 15:29:11 UTC 2017
kill -USR1 13177
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 13177 killed at Tue May  2 15:29:11 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9247 starting at Tue May  2 15:29:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13256 >/dev/null 2>/dev/null
selfserv_9247 with PID 13256 found at Tue May  2 15:29:11 UTC 2017
selfserv_9247 with PID 13256 started at Tue May  2 15:29:11 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:29:11 UTC 2017
ssl.sh: #2457: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 13256 at Tue May  2 15:29:11 UTC 2017
kill -USR1 13256
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 13256 killed at Tue May  2 15:29:11 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13339 >/dev/null 2>/dev/null
selfserv_9247 with PID 13339 found at Tue May  2 15:29:11 UTC 2017
selfserv_9247 with PID 13339 started at Tue May  2 15:29:11 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:29:17 UTC 2017
ssl.sh: #2458: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 13339 at Tue May  2 15:29:17 UTC 2017
kill -USR1 13339
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 13339 killed at Tue May  2 15:29:17 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9247 starting at Tue May  2 15:29:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:29:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13409 >/dev/null 2>/dev/null
selfserv_9247 with PID 13409 found at Tue May  2 15:29:17 UTC 2017
selfserv_9247 with PID 13409 started at Tue May  2 15:29:17 UTC 2017
strsclnt -q -p 9247 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:29:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:29:22 UTC 2017
ssl.sh: #2459: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9247 with PID 13409 at Tue May  2 15:29:22 UTC 2017
kill -USR1 13409
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 13409 killed at Tue May  2 15:29:22 UTC 2017
ssl.sh: SSL - FIPS mode off for client ===============================
ssl.sh: Turning FIPS off for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -fips false -force
FIPS mode disabled.
ssl.sh: #2460:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -list
ssl.sh: #2461:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2462:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -fips false -force
FIPS mode disabled.
ssl.sh: #2463:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2464:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2465:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
TIMESTAMP ssl END: Tue May  2 15:29:22 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Tue May  2 15:29:22 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Tue May  2 15:29:22 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 15:29:22 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.7616 -t Test2 -f ../tests.pw
merge.sh: #2466: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2467: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2468: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2469: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2470: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2471: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:16:08 2017
            Not After : Mon May 02 15:16:08 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:ec:ec:e8:3b:67:34:92:5d:ec:f1:6d:a9:79:72:25:
                    b0:83:b7:a4:c6:11:f0:91:7f:b1:0f:b9:4c:aa:eb:c1:
                    bb:48:9d:f9:6a:75:78:04:19:09:e1:17:60:6a:14:ea:
                    d6:66:6c:eb:15:59:76:6f:47:28:a7:21:0d:fa:29:ab:
                    4d:2e:a9:2f:cf:fb:63:32:cf:5b:1e:ca:3e:c6:80:e3:
                    45:bc:cf:4f:47:16:4f:e6:c9:94:67:cf:c9:d9:da:ac:
                    2c:12:e4:20:8b:8a:f3:7e:4f:e6:a7:b1:c0:01:8c:84:
                    71:d4:f3:e9:86:d0:67:d2:6c:4c:fe:22:83:cf:2e:ca:
                    92:88:4c:9c:0f:89:e5:d7:87:a9:0d:75:cc:41:34:5c:
                    cb:93:e6:27:75:d3:e6:54:98:72:2b:ba:69:38:ce:26:
                    ff:b9:53:11:d9:41:bc:d0:a8:13:ee:ee:12:f3:b0:55:
                    3b:c8:9d:0d:60:cb:71:db:38:75:af:44:1b:e0:c3:cf:
                    3d:ab:30:ee:87:17:e6:e1:a4:b5:eb:0c:36:31:65:a0:
                    42:6e:ba:73:ad:a1:aa:79:fa:b8:b5:0f:64:4a:4b:bf:
                    29:8f:47:59:4a:65:bd:ca:c8:23:b7:6e:82:48:9c:9e:
                    00:e1:c0:80:0b:7b:1e:b1:31:f2:9f:4d:0e:1a:10:c1
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:11:6f:9c:8f:24:14:55:af:e7:4d:7f:f0:a0:34:88:
        dd:73:2a:14:f9:d0:dc:5b:0a:ba:b4:d4:43:4f:9c:63:
        b4:ee:78:36:73:e8:d9:8c:69:ac:01:03:4c:57:d1:e2:
        9d:d3:c4:fe:10:56:d6:8c:07:3e:96:80:ab:cc:4a:3e:
        fb:50:34:21:df:6d:3d:58:c3:1b:18:5a:20:c9:d9:10:
        5c:a9:6b:5b:b6:59:39:82:a1:fd:28:45:6f:c7:c4:82:
        67:cc:a1:b8:43:48:d6:01:69:fa:59:c5:71:b7:1c:fa:
        21:2f:c6:6d:49:f3:c3:1d:05:78:a4:c8:77:cb:22:b0:
        e5:fd:39:52:d9:19:13:de:6d:d5:2e:d8:c5:45:9e:b1:
        dd:fe:9d:bb:84:92:f2:93:fe:4a:a9:70:f1:1f:45:49:
        b2:2e:af:ab:48:d3:00:ac:d3:17:6a:a6:90:22:ca:e8:
        a3:29:21:be:e4:4b:bc:c0:01:f7:67:4f:48:ad:e1:f8:
        30:7e:b5:78:44:b5:28:b1:4b:21:c3:d3:9f:e7:cf:f6:
        be:e0:16:de:bb:24:66:1d:06:b3:66:7e:62:ac:65:ab:
        fa:bc:18:a3:b5:1b:d7:b2:d8:55:95:e0:a0:2b:81:d2:
        40:a5:4a:c5:e3:50:2b:2c:7e:f7:c9:d8:76:c1:94:d7
    Fingerprint (SHA-256):
        2A:4A:22:36:8B:32:34:FC:8E:A0:BE:35:7A:A6:70:60:BF:3E:08:7E:96:85:68:1B:9B:3B:32:90:53:F3:8A:C1
    Fingerprint (SHA1):
        4D:C2:39:A6:09:89:45:52:3F:03:96:C6:9D:13:21:6C:08:9A:3C:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2472: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:16:08 2017
            Not After : Mon May 02 15:16:08 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:8f:ce:58:ac:d4:b9:57:2a:12:e8:97:ee:50:80:dd:
                    d6:9c:9a:91:04:d0:13:5e:03:79:44:e9:e5:36:24:86:
                    7e:57:d6:ca:4e:82:f6:02:a3:69:51:82:2f:a7:e0:8b:
                    65:81:ce:2a:74:d3:b2:7a:f5:3b:c2:71:01:da:82:b4:
                    6c:5f:17:22:1e:ab:78:b8:04:24:32:91:c1:2c:5a:91:
                    b4:f0:28:72:2a:ce:d6:a1:6f:67:fc:c4:23:9c:17:34:
                    6a:b1:ed:0e:28:e4:33:8a:22:6b:4e:bd:dd:c6:95:df:
                    e5:1e:e8:00:de:81:48:ee:9d:d1:5b:2c:86:66:25:1a:
                    fa:3c:99:d9:d8:81:57:b0:33:bf:cc:ef:da:ec:3b:f8:
                    4b:2a:af:66:79:de:ff:6f:a7:4d:ce:35:2d:a8:dd:6a:
                    26:6a:58:66:5b:00:04:2a:18:9e:d0:63:ef:1c:7e:57:
                    98:67:41:f1:ec:20:52:b9:e0:5c:52:96:40:4b:3a:5f:
                    e8:ff:03:06:40:a1:3b:ec:73:46:c2:70:c4:90:ab:e2:
                    25:0b:33:5c:6c:df:44:54:a3:11:1a:f9:89:b3:f1:7f:
                    51:fd:d7:56:31:33:cf:36:85:99:5d:d0:68:af:02:8d:
                    8b:26:66:f8:f0:c9:e4:12:f4:5b:26:ec:48:95:d3:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:f8:90:41:c0:41:2c:4f:e5:c1:5a:e4:21:c0:fe:e3:
        29:95:c8:5c:48:01:5b:8c:59:dc:67:ce:1a:af:af:90:
        a6:f6:15:5b:06:0d:07:fa:77:1a:3a:4d:fd:48:49:72:
        dd:ca:4c:4e:4f:7b:85:cd:0d:62:e9:dc:ef:11:e2:45:
        a0:37:40:f4:79:40:33:ab:0a:5c:0c:6f:87:d6:19:10:
        ed:44:f1:6f:a5:8f:1a:d4:a5:01:fa:10:71:1c:41:e8:
        dd:0b:8e:6b:58:fb:3e:19:36:a8:ba:83:44:42:b4:ad:
        a3:df:4f:18:6e:fc:6d:00:ed:c1:59:bf:d7:f7:aa:6c:
        7e:f7:7b:a6:b4:f2:10:d7:aa:a5:19:3c:05:7e:84:9c:
        d6:80:11:27:fc:e7:78:ff:4a:6d:1c:bb:a8:80:4a:2b:
        6c:5f:52:54:7e:f6:89:37:6e:76:8b:92:9a:6c:dd:5d:
        97:85:38:f8:c3:06:fe:87:12:03:5d:ab:12:e8:e7:d6:
        74:4e:7e:a2:5c:7f:73:53:2a:03:5c:65:79:ef:3e:18:
        2d:db:5f:53:67:87:76:85:e5:25:2e:cc:88:1f:9b:e6:
        64:a1:14:d8:0c:ac:7a:f6:e7:40:0e:e4:25:0e:1c:87:
        1d:0b:df:67:a2:7d:2d:ac:82:3f:81:40:ca:b5:1c:d1
    Fingerprint (SHA-256):
        A3:34:7F:7D:EF:8D:41:D2:4E:A6:0F:9A:FE:CE:E2:2A:A8:24:7D:31:A2:00:E7:85:12:01:7A:73:3E:72:D6:D7
    Fingerprint (SHA1):
        BC:8C:C5:E6:56:B6:6E:AA:1A:A4:9B:99:43:13:C6:A2:3A:EE:30:6E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2473: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2474: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice-ec                                                     u,u,u
Dave                                                         u,u,u
localhost.localdomain-dsamixed                               ,,   
serverCA-dsa                                                 C,C,C
chain-2-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Dave-dsa                                                     ,,   
localhost.localdomain-ecmixed                                ,,   
localhost-sni.localdomain-dsamixed                           ,,   
Alice #99                                                    ,,   
Alice-dsamixed                                               u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
localhost.localdomain                                        u,u,u
localhost-sni.localdomain-ecmixed                            ,,   
clientCA                                                     T,C,C
Alice #3                                                     ,,   
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-ecmixed                                                u,u,u
Dave-ecmixed                                                 ,,   
localhost.localdomain-dsa                                    ,,   
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-ec                                 ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-ec                                           ,,   
serverCA-ec                                                  C,C,C
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
Alice #2                                                     ,,   
Alice #4                                                     ,,   
Alice                                                        u,u,u
Dave-ec                                                      ,,   
localhost-sni.localdomain-dsa                                ,,   
ExtendedSSLUser-dsa                                          ,,   
ExtendedSSLUser-ecmixed                                      ,,   
chain-1-clientCA-dsa                                         ,,   
chain-2-clientCA                                             ,,   
Alice #100                                                   ,,   
Alice-dsa                                                    u,u,u
ExtendedSSLUser-dsamixed                                     ,,   
chain-2-clientCA-dsa                                         ,,   
bob@bogus.com                                                ,,   
Dave-dsamixed                                                ,,   
localhost.localdomain-ec                                     ,,   
clientCA-ec                                                  T,C,C
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.7616 -t Test2 -f ../tests.pw
merge.sh: #2475: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.7616 -t Test1 -f ../tests.pw
merge.sh: #2476: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #2477: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #2478: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #2479: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 15:16:18 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:15:48 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 15:16:14 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #2480: Verifying TestCA CRL  - PASSED
TEST_MODE=STANDARD
NSS_DEFAULT_DB_TYPE=dbm
TIMESTAMP merge END: Tue May  2 15:29:23 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Tue May  2 15:29:23 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Tue May  2 15:29:23 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 15:29:23 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #2481: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152924 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2482: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #2483: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2484: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #2485: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2486: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2487: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2488: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2489: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #2490: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2491: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2492: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2493: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2494: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #2495: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2496: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2497: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2498: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2499: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #2500: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2501: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2502: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2503: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #2504: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2505: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2506: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2507: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #2508: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2509: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2510: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2511: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #2512: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2513: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2514: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2515: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #2516: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2517: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2518: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2519: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #2520: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2521: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2522: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2523: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #2524: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2525: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2526: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2527: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #2528: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2529: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2530: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2531: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #2532: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2533: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2534: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2535: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #2536: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2537: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2538: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2539: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #2540: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2541: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2542: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2543: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502152926Z
nextupdate=20180502152926Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:29:26 2017
    Next Update: Wed May 02 15:29:26 2018
    CRL Extensions:
chains.sh: #2544: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502152927Z
addcert 2 20170502152927Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:29:27 2017
    Next Update: Wed May 02 15:29:26 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:29:27 2017
    CRL Extensions:
chains.sh: #2545: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502152927Z
nextupdate=20180502152927Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:29:27 2017
    Next Update: Wed May 02 15:29:27 2018
    CRL Extensions:
chains.sh: #2546: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502152928Z
addcert 2 20170502152928Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:29:28 2017
    Next Update: Wed May 02 15:29:27 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:29:28 2017
    CRL Extensions:
chains.sh: #2547: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502152929Z
addcert 4 20170502152929Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:29:29 2017
    Next Update: Wed May 02 15:29:27 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:29:28 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 15:29:29 2017
    CRL Extensions:
chains.sh: #2548: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502152930Z
nextupdate=20180502152930Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:29:30 2017
    Next Update: Wed May 02 15:29:30 2018
    CRL Extensions:
chains.sh: #2549: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502152931Z
addcert 2 20170502152931Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:29:31 2017
    Next Update: Wed May 02 15:29:30 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:29:31 2017
    CRL Extensions:
chains.sh: #2550: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502152932Z
addcert 3 20170502152932Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:29:32 2017
    Next Update: Wed May 02 15:29:30 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:29:31 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:29:32 2017
    CRL Extensions:
chains.sh: #2551: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502152932Z
nextupdate=20180502152932Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:29:32 2017
    Next Update: Wed May 02 15:29:32 2018
    CRL Extensions:
chains.sh: #2552: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502152933Z
addcert 2 20170502152933Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:29:33 2017
    Next Update: Wed May 02 15:29:32 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:29:33 2017
    CRL Extensions:
chains.sh: #2553: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502152934Z
addcert 3 20170502152934Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:29:34 2017
    Next Update: Wed May 02 15:29:32 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:29:33 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:29:34 2017
    CRL Extensions:
chains.sh: #2554: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #2555: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #2556: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2557: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2558: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2559: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2560: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2561: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #2562: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #2563: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2564: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #2565: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #2566: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #2567: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #2568: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #2569: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #2570: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #2571: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #2572: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #2573: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #2574: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #2575: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #2576: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #2577: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #2578: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 15:29:34 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:29:34 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 15104 >/dev/null 2>/dev/null
httpserv with PID 15104 found at Tue May  2 15:29:34 UTC 2017
httpserv with PID 15104 started at Tue May  2 15:29:34 UTC 2017
tstclnt -h localhost.localdomain -p 9257 -q -t 20
chains.sh: #2579: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152924 (0x1dee3edc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:29:23 2017
            Not After : Mon May 02 15:29:23 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:00:99:7e:33:cc:3a:13:69:35:04:56:32:83:5e:d4:
                    c5:1c:17:ef:e5:b1:02:eb:80:01:16:4e:d5:ee:28:1e:
                    2f:b4:6e:db:33:67:a6:a8:7d:c6:4a:26:5e:fe:b3:81:
                    36:bb:e5:69:2b:67:ae:11:58:eb:40:81:33:70:b6:fe:
                    fc:1d:6b:60:10:6b:78:dd:51:75:c6:64:7c:ed:0e:f9:
                    8e:7a:e5:7b:0b:c6:a1:01:a9:fb:20:78:8a:1a:95:50:
                    e4:02:7d:70:82:19:03:8b:84:a4:24:75:c3:78:9b:70:
                    03:8f:92:28:cb:34:10:92:ca:ae:0a:68:5c:66:64:59:
                    bb:78:59:aa:41:76:bc:55:ab:98:01:f8:fe:70:04:b0:
                    f7:b4:a7:27:58:7e:10:09:96:3c:c0:ff:fd:d4:67:dc:
                    e4:c6:b2:a4:cd:37:8d:45:00:5d:3b:0d:b6:ac:86:16:
                    a2:98:3c:7f:f2:c2:ce:67:db:79:f5:64:fc:a8:25:65:
                    88:43:0e:09:f6:b6:35:63:17:1b:b4:6d:2b:8a:ad:85:
                    9a:de:3f:93:d6:33:8c:ec:2c:5b:8d:88:22:68:27:03:
                    de:77:5a:f6:fb:c4:47:6c:7e:70:05:8b:64:22:95:0c:
                    ad:a3:e2:c2:10:9d:78:b2:d6:51:0b:46:ef:36:40:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:93:af:de:57:7b:d1:59:33:59:8b:1d:9e:cb:54:47:
        5c:8f:f9:f4:2b:a8:5b:ad:c3:7b:4b:d8:d4:8d:c0:69:
        67:c9:25:bc:2a:47:1d:71:61:81:f7:38:e0:57:6a:db:
        f2:f9:89:e9:7d:b1:2a:7f:16:09:e0:28:20:74:3f:12:
        a9:2e:6d:2a:ff:f5:c1:cf:f5:4b:01:9f:ea:8c:13:7b:
        0c:4d:65:40:50:56:87:12:16:fc:b9:e0:5a:69:73:98:
        a3:2e:ba:8c:da:03:57:b3:81:d0:14:34:37:2e:da:59:
        18:e8:a2:16:d6:af:84:49:b1:d7:18:39:bb:9a:8e:15:
        00:0b:d2:b6:6d:49:d5:d8:51:18:59:5d:6d:ae:7a:d1:
        bc:4d:b1:f9:e6:a9:f1:c6:1d:1e:81:12:37:08:7d:17:
        04:f8:75:be:cc:2e:54:a4:94:2f:94:07:a8:1a:96:c4:
        4d:1d:6d:6f:05:c3:ce:00:38:87:33:54:e1:53:8f:08:
        74:58:8f:02:61:0f:89:2b:b0:ea:d9:69:ed:f3:81:62:
        38:7b:b2:02:7d:6f:b9:9d:42:e9:ff:c6:8f:69:fa:97:
        74:08:9f:07:b6:10:52:09:23:ff:22:38:6f:af:67:42:
        e1:b1:45:b3:80:8b:77:da:8e:f0:b6:dd:cd:9a:54:72
    Fingerprint (SHA-256):
        04:75:84:93:A5:25:0C:07:56:A1:DA:0C:D6:D7:26:BC:62:6D:70:1D:49:B4:C7:D7:E8:76:41:74:C2:32:66:85
    Fingerprint (SHA1):
        9E:DB:A1:FB:F1:F8:DE:05:04:D6:CD:4E:4D:B7:08:A9:31:6C:C6:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2580: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2581: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2582: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 15104 at Tue May  2 15:29:35 UTC 2017
kill -USR1 15104
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 15104 killed at Tue May  2 15:29:35 UTC 2017
httpserv starting at Tue May  2 15:29:35 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:29:35 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 15273 >/dev/null 2>/dev/null
httpserv with PID 15273 found at Tue May  2 15:29:35 UTC 2017
httpserv with PID 15273 started at Tue May  2 15:29:35 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2583: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2584: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2585: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9257 -q -t 20
chains.sh: #2586: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152924 (0x1dee3edc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:29:23 2017
            Not After : Mon May 02 15:29:23 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:00:99:7e:33:cc:3a:13:69:35:04:56:32:83:5e:d4:
                    c5:1c:17:ef:e5:b1:02:eb:80:01:16:4e:d5:ee:28:1e:
                    2f:b4:6e:db:33:67:a6:a8:7d:c6:4a:26:5e:fe:b3:81:
                    36:bb:e5:69:2b:67:ae:11:58:eb:40:81:33:70:b6:fe:
                    fc:1d:6b:60:10:6b:78:dd:51:75:c6:64:7c:ed:0e:f9:
                    8e:7a:e5:7b:0b:c6:a1:01:a9:fb:20:78:8a:1a:95:50:
                    e4:02:7d:70:82:19:03:8b:84:a4:24:75:c3:78:9b:70:
                    03:8f:92:28:cb:34:10:92:ca:ae:0a:68:5c:66:64:59:
                    bb:78:59:aa:41:76:bc:55:ab:98:01:f8:fe:70:04:b0:
                    f7:b4:a7:27:58:7e:10:09:96:3c:c0:ff:fd:d4:67:dc:
                    e4:c6:b2:a4:cd:37:8d:45:00:5d:3b:0d:b6:ac:86:16:
                    a2:98:3c:7f:f2:c2:ce:67:db:79:f5:64:fc:a8:25:65:
                    88:43:0e:09:f6:b6:35:63:17:1b:b4:6d:2b:8a:ad:85:
                    9a:de:3f:93:d6:33:8c:ec:2c:5b:8d:88:22:68:27:03:
                    de:77:5a:f6:fb:c4:47:6c:7e:70:05:8b:64:22:95:0c:
                    ad:a3:e2:c2:10:9d:78:b2:d6:51:0b:46:ef:36:40:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:93:af:de:57:7b:d1:59:33:59:8b:1d:9e:cb:54:47:
        5c:8f:f9:f4:2b:a8:5b:ad:c3:7b:4b:d8:d4:8d:c0:69:
        67:c9:25:bc:2a:47:1d:71:61:81:f7:38:e0:57:6a:db:
        f2:f9:89:e9:7d:b1:2a:7f:16:09:e0:28:20:74:3f:12:
        a9:2e:6d:2a:ff:f5:c1:cf:f5:4b:01:9f:ea:8c:13:7b:
        0c:4d:65:40:50:56:87:12:16:fc:b9:e0:5a:69:73:98:
        a3:2e:ba:8c:da:03:57:b3:81:d0:14:34:37:2e:da:59:
        18:e8:a2:16:d6:af:84:49:b1:d7:18:39:bb:9a:8e:15:
        00:0b:d2:b6:6d:49:d5:d8:51:18:59:5d:6d:ae:7a:d1:
        bc:4d:b1:f9:e6:a9:f1:c6:1d:1e:81:12:37:08:7d:17:
        04:f8:75:be:cc:2e:54:a4:94:2f:94:07:a8:1a:96:c4:
        4d:1d:6d:6f:05:c3:ce:00:38:87:33:54:e1:53:8f:08:
        74:58:8f:02:61:0f:89:2b:b0:ea:d9:69:ed:f3:81:62:
        38:7b:b2:02:7d:6f:b9:9d:42:e9:ff:c6:8f:69:fa:97:
        74:08:9f:07:b6:10:52:09:23:ff:22:38:6f:af:67:42:
        e1:b1:45:b3:80:8b:77:da:8e:f0:b6:dd:cd:9a:54:72
    Fingerprint (SHA-256):
        04:75:84:93:A5:25:0C:07:56:A1:DA:0C:D6:D7:26:BC:62:6D:70:1D:49:B4:C7:D7:E8:76:41:74:C2:32:66:85
    Fingerprint (SHA1):
        9E:DB:A1:FB:F1:F8:DE:05:04:D6:CD:4E:4D:B7:08:A9:31:6C:C6:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2587: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2588: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2589: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 15273 at Tue May  2 15:29:35 UTC 2017
kill -USR1 15273
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 15273 killed at Tue May  2 15:29:35 UTC 2017
httpserv starting at Tue May  2 15:29:35 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:29:35 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 15520 >/dev/null 2>/dev/null
httpserv with PID 15520 found at Tue May  2 15:29:35 UTC 2017
httpserv with PID 15520 started at Tue May  2 15:29:35 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2590: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #2591: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152925 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2592: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #2593: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #2594: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152926 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2595: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #2596: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #2597: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2598: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502152927 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2599: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2600: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502152928 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2601: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2602: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #2603: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2604: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2605: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502152929   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2606: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2607: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2608: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #2609: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #2610: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152926 (0x1dee3ede)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:29:35 2017
            Not After : Mon May 02 15:29:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5f:96:af:0c:5e:26:ba:b7:91:12:96:5e:2a:a5:c4:
                    11:1c:58:d4:f9:27:e7:88:67:34:db:c4:4e:9b:77:f8:
                    15:a9:ae:17:fb:96:d0:23:d6:27:39:16:c1:46:36:37:
                    eb:a0:09:f4:4e:93:19:dd:84:fb:03:77:92:ba:d6:01:
                    87:89:8b:83:c2:e9:7e:2c:cc:55:ff:6e:c6:85:4e:1a:
                    cb:86:46:32:e4:a0:96:31:a9:e1:2c:c4:bd:07:85:6f:
                    1a:4a:a5:de:28:44:ab:6b:a9:cb:6a:0f:df:12:d4:11:
                    44:18:91:54:ff:42:da:1a:94:97:6e:6a:16:39:0e:fa:
                    b7:52:d4:a1:a7:5e:40:19:12:d2:e7:c4:46:1d:39:ee:
                    9b:16:dd:ac:5e:23:e2:b8:09:2b:18:99:da:bd:d8:1f:
                    47:ad:bb:96:5a:bb:bc:af:79:a0:ab:7c:49:18:6e:01:
                    b0:2a:ac:91:25:96:49:f7:83:ed:b7:a6:80:c3:be:bf:
                    e1:63:1b:c6:c5:b3:18:0d:18:70:9f:4b:84:a5:14:aa:
                    f1:fa:27:f4:6b:c4:8a:2d:7d:09:47:b6:3e:be:ac:0a:
                    37:24:55:74:be:f5:af:ef:15:4c:b3:7d:28:c0:d4:a0:
                    82:50:e1:09:7f:6b:f6:20:44:9a:a4:62:8f:f7:d3:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:08:9c:84:65:18:7e:1c:92:98:7a:0a:24:b0:0b:90:
        1f:51:39:26:1c:bb:49:8f:15:12:86:a0:97:a2:68:3f:
        85:34:08:92:da:24:fa:06:19:09:03:a3:fa:5d:ce:0d:
        58:05:e8:26:a8:28:ae:c6:fc:85:aa:00:72:e9:28:ee:
        23:99:27:1c:63:e2:a9:fc:b9:c8:86:f6:d9:8f:b2:0e:
        f2:35:5f:7e:ff:2c:f5:9e:5a:07:dc:79:8d:1f:47:a7:
        34:34:ba:52:fc:b1:36:c8:b7:aa:40:03:66:1e:e7:23:
        49:98:59:87:c5:c2:1b:6e:96:4d:3a:55:17:0d:18:6a:
        a6:f1:5c:a6:a0:b5:04:f2:dc:ed:a9:c1:cd:31:62:e3:
        1b:61:27:2b:86:a9:91:3e:a9:2b:cb:f8:00:aa:18:a0:
        6a:05:c3:06:ee:5f:24:f0:a6:ec:fb:de:a6:90:5c:ac:
        78:51:7a:40:12:bd:75:41:df:4d:ef:8b:36:90:4e:67:
        f4:24:a2:bb:3c:5f:2d:c2:cf:5d:b5:72:f8:ab:44:49:
        04:c2:52:dd:36:13:75:3f:a0:24:fa:fb:59:29:92:15:
        a2:7d:97:1e:37:5c:1f:f9:c6:3c:08:3b:ba:5e:0e:59:
        ff:30:10:0f:b0:3b:3b:14:fa:47:fb:58:fc:2e:6f:81
    Fingerprint (SHA-256):
        23:E4:22:48:60:BA:D8:62:AE:FD:7D:55:E6:61:CC:51:82:9B:FB:3C:DC:EF:E6:71:37:10:05:A4:49:B2:FA:9B
    Fingerprint (SHA1):
        A3:67:33:BF:2D:2F:35:E4:FC:F7:8E:57:26:28:87:3A:B4:6B:15:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2611: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152925 (0x1dee3edd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:29:35 2017
            Not After : Mon May 02 15:29:35 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:f8:03:db:3a:19:2a:41:b8:87:ed:27:6e:a9:dd:cf:
                    33:61:36:1b:8b:7d:ae:91:da:3e:12:ca:3b:45:e1:5f:
                    b9:25:85:7f:6b:bf:98:fc:52:ae:2b:f9:d1:72:d0:10:
                    03:95:ef:a3:9a:9f:55:e3:18:a6:93:71:d4:a5:98:00:
                    66:ec:22:6e:d1:12:8a:95:c3:7d:f4:f7:2a:e8:0c:c5:
                    92:4e:c5:64:8e:12:b1:59:25:9c:5f:91:02:c8:f2:96:
                    43:d4:a9:4d:33:2e:44:6e:1a:be:f2:74:b4:77:70:df:
                    98:37:43:98:45:89:2a:a5:c7:be:46:63:59:82:f4:cc:
                    49:42:1e:11:dd:62:8b:1e:8c:90:47:d0:5b:89:91:7d:
                    ca:93:d7:c6:80:39:8e:15:69:b4:19:84:5c:b9:4e:db:
                    e1:6f:f4:df:7a:f6:ef:48:86:6d:c4:b1:d4:1e:dd:93:
                    34:9f:cc:51:b4:19:ac:e0:88:f3:68:b2:86:a4:88:16:
                    ff:50:1e:e6:1b:1b:f2:fb:f9:80:05:5f:60:2a:26:0c:
                    cd:10:49:43:0b:e9:96:35:25:ff:b4:c7:c7:55:64:6b:
                    9f:62:cc:72:ca:79:55:a5:bd:86:d4:56:68:b6:bb:04:
                    1a:7e:ca:53:a5:e9:94:49:2f:7b:36:1e:17:36:e4:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:df:e8:94:f6:0e:80:3b:d1:3c:64:6d:2a:c1:6f:ad:
        9d:52:b3:1c:f9:6b:22:3a:96:85:2e:ce:83:99:56:c3:
        83:78:3c:a7:77:c8:a6:39:77:9a:96:05:59:d8:fb:df:
        32:00:ab:10:ca:cf:fb:83:c7:d0:fa:44:fb:7e:c4:e5:
        f4:17:7c:8f:d5:88:d0:cb:c5:5f:c4:80:5c:c5:1e:b4:
        db:5c:42:50:7d:0c:e0:12:70:b4:10:7a:9c:77:3c:77:
        25:55:b3:b6:67:46:f3:72:48:6f:6a:ec:88:36:fa:fb:
        97:6c:ff:9a:a6:99:78:fe:0f:78:06:a6:ba:bd:3f:e8:
        71:62:96:55:60:16:ba:c1:a6:f0:18:ac:c1:44:b6:ee:
        27:17:f2:cf:3c:ce:c6:74:1a:4b:02:fa:9a:73:9b:33:
        58:0a:c9:2d:2a:32:55:fd:4b:83:db:05:62:07:3c:9f:
        a4:44:09:11:bf:55:06:38:74:08:1f:37:a7:45:32:bb:
        95:0a:14:18:17:e2:4a:df:ea:62:6c:b3:9d:a6:89:18:
        12:63:7d:fa:2e:45:ca:c8:f6:1c:a7:49:b0:40:70:44:
        b6:3b:c9:42:e7:e1:d1:c1:f1:96:d1:50:0b:a3:4a:ff:
        d7:29:6b:4a:0a:7a:51:97:86:13:e2:22:5a:a6:dd:f7
    Fingerprint (SHA-256):
        A4:A3:3F:D9:B4:2D:72:B8:7A:6F:40:DB:17:2F:70:D9:8D:89:40:5A:63:BD:BF:5D:13:F1:F4:CD:FB:F1:1E:69
    Fingerprint (SHA1):
        7E:9A:A1:4D:F7:B8:8B:A8:11:28:9F:69:07:62:4D:28:E9:1A:23:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2612: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2613: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #2614: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #2615: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152925 (0x1dee3edd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:29:35 2017
            Not After : Mon May 02 15:29:35 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:f8:03:db:3a:19:2a:41:b8:87:ed:27:6e:a9:dd:cf:
                    33:61:36:1b:8b:7d:ae:91:da:3e:12:ca:3b:45:e1:5f:
                    b9:25:85:7f:6b:bf:98:fc:52:ae:2b:f9:d1:72:d0:10:
                    03:95:ef:a3:9a:9f:55:e3:18:a6:93:71:d4:a5:98:00:
                    66:ec:22:6e:d1:12:8a:95:c3:7d:f4:f7:2a:e8:0c:c5:
                    92:4e:c5:64:8e:12:b1:59:25:9c:5f:91:02:c8:f2:96:
                    43:d4:a9:4d:33:2e:44:6e:1a:be:f2:74:b4:77:70:df:
                    98:37:43:98:45:89:2a:a5:c7:be:46:63:59:82:f4:cc:
                    49:42:1e:11:dd:62:8b:1e:8c:90:47:d0:5b:89:91:7d:
                    ca:93:d7:c6:80:39:8e:15:69:b4:19:84:5c:b9:4e:db:
                    e1:6f:f4:df:7a:f6:ef:48:86:6d:c4:b1:d4:1e:dd:93:
                    34:9f:cc:51:b4:19:ac:e0:88:f3:68:b2:86:a4:88:16:
                    ff:50:1e:e6:1b:1b:f2:fb:f9:80:05:5f:60:2a:26:0c:
                    cd:10:49:43:0b:e9:96:35:25:ff:b4:c7:c7:55:64:6b:
                    9f:62:cc:72:ca:79:55:a5:bd:86:d4:56:68:b6:bb:04:
                    1a:7e:ca:53:a5:e9:94:49:2f:7b:36:1e:17:36:e4:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:df:e8:94:f6:0e:80:3b:d1:3c:64:6d:2a:c1:6f:ad:
        9d:52:b3:1c:f9:6b:22:3a:96:85:2e:ce:83:99:56:c3:
        83:78:3c:a7:77:c8:a6:39:77:9a:96:05:59:d8:fb:df:
        32:00:ab:10:ca:cf:fb:83:c7:d0:fa:44:fb:7e:c4:e5:
        f4:17:7c:8f:d5:88:d0:cb:c5:5f:c4:80:5c:c5:1e:b4:
        db:5c:42:50:7d:0c:e0:12:70:b4:10:7a:9c:77:3c:77:
        25:55:b3:b6:67:46:f3:72:48:6f:6a:ec:88:36:fa:fb:
        97:6c:ff:9a:a6:99:78:fe:0f:78:06:a6:ba:bd:3f:e8:
        71:62:96:55:60:16:ba:c1:a6:f0:18:ac:c1:44:b6:ee:
        27:17:f2:cf:3c:ce:c6:74:1a:4b:02:fa:9a:73:9b:33:
        58:0a:c9:2d:2a:32:55:fd:4b:83:db:05:62:07:3c:9f:
        a4:44:09:11:bf:55:06:38:74:08:1f:37:a7:45:32:bb:
        95:0a:14:18:17:e2:4a:df:ea:62:6c:b3:9d:a6:89:18:
        12:63:7d:fa:2e:45:ca:c8:f6:1c:a7:49:b0:40:70:44:
        b6:3b:c9:42:e7:e1:d1:c1:f1:96:d1:50:0b:a3:4a:ff:
        d7:29:6b:4a:0a:7a:51:97:86:13:e2:22:5a:a6:dd:f7
    Fingerprint (SHA-256):
        A4:A3:3F:D9:B4:2D:72:B8:7A:6F:40:DB:17:2F:70:D9:8D:89:40:5A:63:BD:BF:5D:13:F1:F4:CD:FB:F1:1E:69
    Fingerprint (SHA1):
        7E:9A:A1:4D:F7:B8:8B:A8:11:28:9F:69:07:62:4D:28:E9:1A:23:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2616: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152926 (0x1dee3ede)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:29:35 2017
            Not After : Mon May 02 15:29:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5f:96:af:0c:5e:26:ba:b7:91:12:96:5e:2a:a5:c4:
                    11:1c:58:d4:f9:27:e7:88:67:34:db:c4:4e:9b:77:f8:
                    15:a9:ae:17:fb:96:d0:23:d6:27:39:16:c1:46:36:37:
                    eb:a0:09:f4:4e:93:19:dd:84:fb:03:77:92:ba:d6:01:
                    87:89:8b:83:c2:e9:7e:2c:cc:55:ff:6e:c6:85:4e:1a:
                    cb:86:46:32:e4:a0:96:31:a9:e1:2c:c4:bd:07:85:6f:
                    1a:4a:a5:de:28:44:ab:6b:a9:cb:6a:0f:df:12:d4:11:
                    44:18:91:54:ff:42:da:1a:94:97:6e:6a:16:39:0e:fa:
                    b7:52:d4:a1:a7:5e:40:19:12:d2:e7:c4:46:1d:39:ee:
                    9b:16:dd:ac:5e:23:e2:b8:09:2b:18:99:da:bd:d8:1f:
                    47:ad:bb:96:5a:bb:bc:af:79:a0:ab:7c:49:18:6e:01:
                    b0:2a:ac:91:25:96:49:f7:83:ed:b7:a6:80:c3:be:bf:
                    e1:63:1b:c6:c5:b3:18:0d:18:70:9f:4b:84:a5:14:aa:
                    f1:fa:27:f4:6b:c4:8a:2d:7d:09:47:b6:3e:be:ac:0a:
                    37:24:55:74:be:f5:af:ef:15:4c:b3:7d:28:c0:d4:a0:
                    82:50:e1:09:7f:6b:f6:20:44:9a:a4:62:8f:f7:d3:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:08:9c:84:65:18:7e:1c:92:98:7a:0a:24:b0:0b:90:
        1f:51:39:26:1c:bb:49:8f:15:12:86:a0:97:a2:68:3f:
        85:34:08:92:da:24:fa:06:19:09:03:a3:fa:5d:ce:0d:
        58:05:e8:26:a8:28:ae:c6:fc:85:aa:00:72:e9:28:ee:
        23:99:27:1c:63:e2:a9:fc:b9:c8:86:f6:d9:8f:b2:0e:
        f2:35:5f:7e:ff:2c:f5:9e:5a:07:dc:79:8d:1f:47:a7:
        34:34:ba:52:fc:b1:36:c8:b7:aa:40:03:66:1e:e7:23:
        49:98:59:87:c5:c2:1b:6e:96:4d:3a:55:17:0d:18:6a:
        a6:f1:5c:a6:a0:b5:04:f2:dc:ed:a9:c1:cd:31:62:e3:
        1b:61:27:2b:86:a9:91:3e:a9:2b:cb:f8:00:aa:18:a0:
        6a:05:c3:06:ee:5f:24:f0:a6:ec:fb:de:a6:90:5c:ac:
        78:51:7a:40:12:bd:75:41:df:4d:ef:8b:36:90:4e:67:
        f4:24:a2:bb:3c:5f:2d:c2:cf:5d:b5:72:f8:ab:44:49:
        04:c2:52:dd:36:13:75:3f:a0:24:fa:fb:59:29:92:15:
        a2:7d:97:1e:37:5c:1f:f9:c6:3c:08:3b:ba:5e:0e:59:
        ff:30:10:0f:b0:3b:3b:14:fa:47:fb:58:fc:2e:6f:81
    Fingerprint (SHA-256):
        23:E4:22:48:60:BA:D8:62:AE:FD:7D:55:E6:61:CC:51:82:9B:FB:3C:DC:EF:E6:71:37:10:05:A4:49:B2:FA:9B
    Fingerprint (SHA1):
        A3:67:33:BF:2D:2F:35:E4:FC:F7:8E:57:26:28:87:3A:B4:6B:15:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2617: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #2618: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #2619: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2620: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2621: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2622: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152926 (0x1dee3ede)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:29:35 2017
            Not After : Mon May 02 15:29:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5f:96:af:0c:5e:26:ba:b7:91:12:96:5e:2a:a5:c4:
                    11:1c:58:d4:f9:27:e7:88:67:34:db:c4:4e:9b:77:f8:
                    15:a9:ae:17:fb:96:d0:23:d6:27:39:16:c1:46:36:37:
                    eb:a0:09:f4:4e:93:19:dd:84:fb:03:77:92:ba:d6:01:
                    87:89:8b:83:c2:e9:7e:2c:cc:55:ff:6e:c6:85:4e:1a:
                    cb:86:46:32:e4:a0:96:31:a9:e1:2c:c4:bd:07:85:6f:
                    1a:4a:a5:de:28:44:ab:6b:a9:cb:6a:0f:df:12:d4:11:
                    44:18:91:54:ff:42:da:1a:94:97:6e:6a:16:39:0e:fa:
                    b7:52:d4:a1:a7:5e:40:19:12:d2:e7:c4:46:1d:39:ee:
                    9b:16:dd:ac:5e:23:e2:b8:09:2b:18:99:da:bd:d8:1f:
                    47:ad:bb:96:5a:bb:bc:af:79:a0:ab:7c:49:18:6e:01:
                    b0:2a:ac:91:25:96:49:f7:83:ed:b7:a6:80:c3:be:bf:
                    e1:63:1b:c6:c5:b3:18:0d:18:70:9f:4b:84:a5:14:aa:
                    f1:fa:27:f4:6b:c4:8a:2d:7d:09:47:b6:3e:be:ac:0a:
                    37:24:55:74:be:f5:af:ef:15:4c:b3:7d:28:c0:d4:a0:
                    82:50:e1:09:7f:6b:f6:20:44:9a:a4:62:8f:f7:d3:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:08:9c:84:65:18:7e:1c:92:98:7a:0a:24:b0:0b:90:
        1f:51:39:26:1c:bb:49:8f:15:12:86:a0:97:a2:68:3f:
        85:34:08:92:da:24:fa:06:19:09:03:a3:fa:5d:ce:0d:
        58:05:e8:26:a8:28:ae:c6:fc:85:aa:00:72:e9:28:ee:
        23:99:27:1c:63:e2:a9:fc:b9:c8:86:f6:d9:8f:b2:0e:
        f2:35:5f:7e:ff:2c:f5:9e:5a:07:dc:79:8d:1f:47:a7:
        34:34:ba:52:fc:b1:36:c8:b7:aa:40:03:66:1e:e7:23:
        49:98:59:87:c5:c2:1b:6e:96:4d:3a:55:17:0d:18:6a:
        a6:f1:5c:a6:a0:b5:04:f2:dc:ed:a9:c1:cd:31:62:e3:
        1b:61:27:2b:86:a9:91:3e:a9:2b:cb:f8:00:aa:18:a0:
        6a:05:c3:06:ee:5f:24:f0:a6:ec:fb:de:a6:90:5c:ac:
        78:51:7a:40:12:bd:75:41:df:4d:ef:8b:36:90:4e:67:
        f4:24:a2:bb:3c:5f:2d:c2:cf:5d:b5:72:f8:ab:44:49:
        04:c2:52:dd:36:13:75:3f:a0:24:fa:fb:59:29:92:15:
        a2:7d:97:1e:37:5c:1f:f9:c6:3c:08:3b:ba:5e:0e:59:
        ff:30:10:0f:b0:3b:3b:14:fa:47:fb:58:fc:2e:6f:81
    Fingerprint (SHA-256):
        23:E4:22:48:60:BA:D8:62:AE:FD:7D:55:E6:61:CC:51:82:9B:FB:3C:DC:EF:E6:71:37:10:05:A4:49:B2:FA:9B
    Fingerprint (SHA1):
        A3:67:33:BF:2D:2F:35:E4:FC:F7:8E:57:26:28:87:3A:B4:6B:15:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2623: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152926 (0x1dee3ede)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:29:35 2017
            Not After : Mon May 02 15:29:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5f:96:af:0c:5e:26:ba:b7:91:12:96:5e:2a:a5:c4:
                    11:1c:58:d4:f9:27:e7:88:67:34:db:c4:4e:9b:77:f8:
                    15:a9:ae:17:fb:96:d0:23:d6:27:39:16:c1:46:36:37:
                    eb:a0:09:f4:4e:93:19:dd:84:fb:03:77:92:ba:d6:01:
                    87:89:8b:83:c2:e9:7e:2c:cc:55:ff:6e:c6:85:4e:1a:
                    cb:86:46:32:e4:a0:96:31:a9:e1:2c:c4:bd:07:85:6f:
                    1a:4a:a5:de:28:44:ab:6b:a9:cb:6a:0f:df:12:d4:11:
                    44:18:91:54:ff:42:da:1a:94:97:6e:6a:16:39:0e:fa:
                    b7:52:d4:a1:a7:5e:40:19:12:d2:e7:c4:46:1d:39:ee:
                    9b:16:dd:ac:5e:23:e2:b8:09:2b:18:99:da:bd:d8:1f:
                    47:ad:bb:96:5a:bb:bc:af:79:a0:ab:7c:49:18:6e:01:
                    b0:2a:ac:91:25:96:49:f7:83:ed:b7:a6:80:c3:be:bf:
                    e1:63:1b:c6:c5:b3:18:0d:18:70:9f:4b:84:a5:14:aa:
                    f1:fa:27:f4:6b:c4:8a:2d:7d:09:47:b6:3e:be:ac:0a:
                    37:24:55:74:be:f5:af:ef:15:4c:b3:7d:28:c0:d4:a0:
                    82:50:e1:09:7f:6b:f6:20:44:9a:a4:62:8f:f7:d3:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:08:9c:84:65:18:7e:1c:92:98:7a:0a:24:b0:0b:90:
        1f:51:39:26:1c:bb:49:8f:15:12:86:a0:97:a2:68:3f:
        85:34:08:92:da:24:fa:06:19:09:03:a3:fa:5d:ce:0d:
        58:05:e8:26:a8:28:ae:c6:fc:85:aa:00:72:e9:28:ee:
        23:99:27:1c:63:e2:a9:fc:b9:c8:86:f6:d9:8f:b2:0e:
        f2:35:5f:7e:ff:2c:f5:9e:5a:07:dc:79:8d:1f:47:a7:
        34:34:ba:52:fc:b1:36:c8:b7:aa:40:03:66:1e:e7:23:
        49:98:59:87:c5:c2:1b:6e:96:4d:3a:55:17:0d:18:6a:
        a6:f1:5c:a6:a0:b5:04:f2:dc:ed:a9:c1:cd:31:62:e3:
        1b:61:27:2b:86:a9:91:3e:a9:2b:cb:f8:00:aa:18:a0:
        6a:05:c3:06:ee:5f:24:f0:a6:ec:fb:de:a6:90:5c:ac:
        78:51:7a:40:12:bd:75:41:df:4d:ef:8b:36:90:4e:67:
        f4:24:a2:bb:3c:5f:2d:c2:cf:5d:b5:72:f8:ab:44:49:
        04:c2:52:dd:36:13:75:3f:a0:24:fa:fb:59:29:92:15:
        a2:7d:97:1e:37:5c:1f:f9:c6:3c:08:3b:ba:5e:0e:59:
        ff:30:10:0f:b0:3b:3b:14:fa:47:fb:58:fc:2e:6f:81
    Fingerprint (SHA-256):
        23:E4:22:48:60:BA:D8:62:AE:FD:7D:55:E6:61:CC:51:82:9B:FB:3C:DC:EF:E6:71:37:10:05:A4:49:B2:FA:9B
    Fingerprint (SHA1):
        A3:67:33:BF:2D:2F:35:E4:FC:F7:8E:57:26:28:87:3A:B4:6B:15:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2624: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #2625: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #2626: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2627: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2628: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2629: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152925 (0x1dee3edd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:29:35 2017
            Not After : Mon May 02 15:29:35 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:f8:03:db:3a:19:2a:41:b8:87:ed:27:6e:a9:dd:cf:
                    33:61:36:1b:8b:7d:ae:91:da:3e:12:ca:3b:45:e1:5f:
                    b9:25:85:7f:6b:bf:98:fc:52:ae:2b:f9:d1:72:d0:10:
                    03:95:ef:a3:9a:9f:55:e3:18:a6:93:71:d4:a5:98:00:
                    66:ec:22:6e:d1:12:8a:95:c3:7d:f4:f7:2a:e8:0c:c5:
                    92:4e:c5:64:8e:12:b1:59:25:9c:5f:91:02:c8:f2:96:
                    43:d4:a9:4d:33:2e:44:6e:1a:be:f2:74:b4:77:70:df:
                    98:37:43:98:45:89:2a:a5:c7:be:46:63:59:82:f4:cc:
                    49:42:1e:11:dd:62:8b:1e:8c:90:47:d0:5b:89:91:7d:
                    ca:93:d7:c6:80:39:8e:15:69:b4:19:84:5c:b9:4e:db:
                    e1:6f:f4:df:7a:f6:ef:48:86:6d:c4:b1:d4:1e:dd:93:
                    34:9f:cc:51:b4:19:ac:e0:88:f3:68:b2:86:a4:88:16:
                    ff:50:1e:e6:1b:1b:f2:fb:f9:80:05:5f:60:2a:26:0c:
                    cd:10:49:43:0b:e9:96:35:25:ff:b4:c7:c7:55:64:6b:
                    9f:62:cc:72:ca:79:55:a5:bd:86:d4:56:68:b6:bb:04:
                    1a:7e:ca:53:a5:e9:94:49:2f:7b:36:1e:17:36:e4:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:df:e8:94:f6:0e:80:3b:d1:3c:64:6d:2a:c1:6f:ad:
        9d:52:b3:1c:f9:6b:22:3a:96:85:2e:ce:83:99:56:c3:
        83:78:3c:a7:77:c8:a6:39:77:9a:96:05:59:d8:fb:df:
        32:00:ab:10:ca:cf:fb:83:c7:d0:fa:44:fb:7e:c4:e5:
        f4:17:7c:8f:d5:88:d0:cb:c5:5f:c4:80:5c:c5:1e:b4:
        db:5c:42:50:7d:0c:e0:12:70:b4:10:7a:9c:77:3c:77:
        25:55:b3:b6:67:46:f3:72:48:6f:6a:ec:88:36:fa:fb:
        97:6c:ff:9a:a6:99:78:fe:0f:78:06:a6:ba:bd:3f:e8:
        71:62:96:55:60:16:ba:c1:a6:f0:18:ac:c1:44:b6:ee:
        27:17:f2:cf:3c:ce:c6:74:1a:4b:02:fa:9a:73:9b:33:
        58:0a:c9:2d:2a:32:55:fd:4b:83:db:05:62:07:3c:9f:
        a4:44:09:11:bf:55:06:38:74:08:1f:37:a7:45:32:bb:
        95:0a:14:18:17:e2:4a:df:ea:62:6c:b3:9d:a6:89:18:
        12:63:7d:fa:2e:45:ca:c8:f6:1c:a7:49:b0:40:70:44:
        b6:3b:c9:42:e7:e1:d1:c1:f1:96:d1:50:0b:a3:4a:ff:
        d7:29:6b:4a:0a:7a:51:97:86:13:e2:22:5a:a6:dd:f7
    Fingerprint (SHA-256):
        A4:A3:3F:D9:B4:2D:72:B8:7A:6F:40:DB:17:2F:70:D9:8D:89:40:5A:63:BD:BF:5D:13:F1:F4:CD:FB:F1:1E:69
    Fingerprint (SHA1):
        7E:9A:A1:4D:F7:B8:8B:A8:11:28:9F:69:07:62:4D:28:E9:1A:23:41
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2630: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152925 (0x1dee3edd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:29:35 2017
            Not After : Mon May 02 15:29:35 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:f8:03:db:3a:19:2a:41:b8:87:ed:27:6e:a9:dd:cf:
                    33:61:36:1b:8b:7d:ae:91:da:3e:12:ca:3b:45:e1:5f:
                    b9:25:85:7f:6b:bf:98:fc:52:ae:2b:f9:d1:72:d0:10:
                    03:95:ef:a3:9a:9f:55:e3:18:a6:93:71:d4:a5:98:00:
                    66:ec:22:6e:d1:12:8a:95:c3:7d:f4:f7:2a:e8:0c:c5:
                    92:4e:c5:64:8e:12:b1:59:25:9c:5f:91:02:c8:f2:96:
                    43:d4:a9:4d:33:2e:44:6e:1a:be:f2:74:b4:77:70:df:
                    98:37:43:98:45:89:2a:a5:c7:be:46:63:59:82:f4:cc:
                    49:42:1e:11:dd:62:8b:1e:8c:90:47:d0:5b:89:91:7d:
                    ca:93:d7:c6:80:39:8e:15:69:b4:19:84:5c:b9:4e:db:
                    e1:6f:f4:df:7a:f6:ef:48:86:6d:c4:b1:d4:1e:dd:93:
                    34:9f:cc:51:b4:19:ac:e0:88:f3:68:b2:86:a4:88:16:
                    ff:50:1e:e6:1b:1b:f2:fb:f9:80:05:5f:60:2a:26:0c:
                    cd:10:49:43:0b:e9:96:35:25:ff:b4:c7:c7:55:64:6b:
                    9f:62:cc:72:ca:79:55:a5:bd:86:d4:56:68:b6:bb:04:
                    1a:7e:ca:53:a5:e9:94:49:2f:7b:36:1e:17:36:e4:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:df:e8:94:f6:0e:80:3b:d1:3c:64:6d:2a:c1:6f:ad:
        9d:52:b3:1c:f9:6b:22:3a:96:85:2e:ce:83:99:56:c3:
        83:78:3c:a7:77:c8:a6:39:77:9a:96:05:59:d8:fb:df:
        32:00:ab:10:ca:cf:fb:83:c7:d0:fa:44:fb:7e:c4:e5:
        f4:17:7c:8f:d5:88:d0:cb:c5:5f:c4:80:5c:c5:1e:b4:
        db:5c:42:50:7d:0c:e0:12:70:b4:10:7a:9c:77:3c:77:
        25:55:b3:b6:67:46:f3:72:48:6f:6a:ec:88:36:fa:fb:
        97:6c:ff:9a:a6:99:78:fe:0f:78:06:a6:ba:bd:3f:e8:
        71:62:96:55:60:16:ba:c1:a6:f0:18:ac:c1:44:b6:ee:
        27:17:f2:cf:3c:ce:c6:74:1a:4b:02:fa:9a:73:9b:33:
        58:0a:c9:2d:2a:32:55:fd:4b:83:db:05:62:07:3c:9f:
        a4:44:09:11:bf:55:06:38:74:08:1f:37:a7:45:32:bb:
        95:0a:14:18:17:e2:4a:df:ea:62:6c:b3:9d:a6:89:18:
        12:63:7d:fa:2e:45:ca:c8:f6:1c:a7:49:b0:40:70:44:
        b6:3b:c9:42:e7:e1:d1:c1:f1:96:d1:50:0b:a3:4a:ff:
        d7:29:6b:4a:0a:7a:51:97:86:13:e2:22:5a:a6:dd:f7
    Fingerprint (SHA-256):
        A4:A3:3F:D9:B4:2D:72:B8:7A:6F:40:DB:17:2F:70:D9:8D:89:40:5A:63:BD:BF:5D:13:F1:F4:CD:FB:F1:1E:69
    Fingerprint (SHA1):
        7E:9A:A1:4D:F7:B8:8B:A8:11:28:9F:69:07:62:4D:28:E9:1A:23:41
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2631: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #2632: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152930 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2633: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #2634: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #2635: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152931 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2636: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #2637: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #2638: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152932 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2639: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #2640: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #2641: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152933 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2642: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #2643: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #2644: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152934 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2645: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #2646: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #2647: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152935 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2648: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #2649: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #2650: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152936 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2651: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #2652: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #2653: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152937 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2654: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #2655: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #2656: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152938 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2657: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #2658: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #2659: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2660: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502152939 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2661: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2662: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502152940 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2663: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2664: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502152941 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2665: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2666: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #2667: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #2668: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2669: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502152942 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2670: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2671: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502152943 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2672: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2673: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502152944 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2674: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2675: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #2676: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #2677: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2678: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502152945 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2679: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2680: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502152946 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2681: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2682: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502152947 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2683: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2684: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #2685: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #2686: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2687: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502152948 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2688: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2689: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502152949 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2690: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2691: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502152950 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2692: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2693: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #2694: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2695: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2696: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502152951   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2697: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2698: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2699: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2700: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502152952   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2701: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2702: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152930 (0x1dee3ee2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:29:37 2017
            Not After : Mon May 02 15:29:37 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:76:4d:83:f2:af:a8:5d:bd:45:52:f1:79:9c:fc:21:
                    b9:ae:9b:3b:48:46:4d:4f:6c:db:c1:99:7b:49:e7:c2:
                    7a:0b:48:ec:84:f3:d9:23:36:07:e0:2a:b7:5f:ac:22:
                    57:99:85:21:d9:14:d3:ee:72:6a:4c:ed:73:ce:55:ea:
                    98:fe:38:b9:94:7e:ae:f5:61:b7:5c:4a:78:90:e0:77:
                    77:eb:15:69:0b:91:b5:fb:5b:29:9b:25:97:27:77:a1:
                    3f:e5:0b:c3:18:70:d5:16:b8:03:42:f4:65:4e:00:b9:
                    80:dd:28:fb:8d:a6:bc:39:5e:9f:82:3c:0e:3d:5c:a8:
                    ab:46:e7:1e:21:6f:e4:fb:51:8d:5c:42:1c:f9:93:84:
                    08:8a:33:9a:ee:51:87:11:88:ee:f5:e4:48:d6:d8:d9:
                    15:72:83:7c:f9:4d:ff:a6:8b:9b:26:b6:ac:02:25:c9:
                    60:4b:65:05:4d:43:cd:c8:a4:ac:ff:c0:21:59:ad:9f:
                    16:62:c7:3f:d3:4f:34:ae:02:39:be:e0:70:08:d9:62:
                    da:c0:fd:dd:5b:e0:30:16:18:01:25:90:c0:e0:aa:18:
                    0f:fa:da:79:c0:d9:3c:7e:b1:49:4c:35:84:72:6c:47:
                    a0:f4:86:db:03:3a:f2:91:96:02:00:0a:f5:3b:6c:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:34:09:e5:fa:49:e2:54:71:0b:00:b8:02:7c:b7:0b:
        f1:df:50:bb:b7:66:af:23:60:ff:db:3d:77:42:7c:09:
        27:2f:1d:f9:e7:a3:94:f5:11:77:84:17:77:8d:d9:68:
        3a:ed:ac:2b:27:a9:15:dd:6a:f7:16:d3:94:27:60:eb:
        82:d8:60:8e:bc:ea:2e:80:72:f6:46:84:a5:ed:8b:cd:
        3e:77:2f:3a:67:bd:2d:f1:8b:b2:03:71:56:90:24:ea:
        cf:a4:0e:12:a0:a9:11:3f:70:03:05:c1:d4:92:a5:40:
        24:ca:16:09:d1:76:bb:de:b3:3f:c3:44:69:6a:26:c9:
        91:2b:66:3d:fa:a0:d5:fa:89:3c:93:71:f2:8a:88:4c:
        e3:cb:e6:2d:5e:88:be:42:81:43:4a:c5:41:af:9d:a1:
        61:5f:7c:ae:4b:dc:76:cc:ca:a0:e5:c7:56:0c:94:df:
        a1:59:c8:84:5a:f6:cb:aa:9c:3f:41:3c:60:a9:22:81:
        3d:c7:64:46:b1:00:94:fa:69:0a:f3:ea:29:d0:ad:4c:
        97:85:62:64:28:df:99:2b:f0:c4:e7:68:0b:dc:93:dc:
        59:27:52:80:3f:69:e1:ab:d2:64:7b:d7:f7:26:73:07:
        05:aa:a3:a0:b1:70:88:db:43:6b:05:6f:90:a3:a5:f2
    Fingerprint (SHA-256):
        6B:D4:4E:0B:86:51:F8:85:13:D1:24:0F:A0:1E:32:34:46:94:2F:2E:68:F3:5D:FF:D5:9B:31:63:B3:BF:D8:69
    Fingerprint (SHA1):
        95:39:63:74:07:FC:B0:3C:E4:9F:89:1D:DB:59:20:8E:56:66:67:58
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2703: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152931 (0x1dee3ee3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:29:37 2017
            Not After : Mon May 02 15:29:37 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:11:b9:d2:6d:61:cf:96:39:b9:4a:c4:a8:bd:8f:ec:
                    17:3e:1f:19:44:ac:3a:bd:8f:d5:20:44:7d:7b:7f:ce:
                    cd:7e:e1:32:36:9f:4c:0f:98:bf:9a:57:a1:22:52:3c:
                    43:41:85:8c:9d:25:85:b3:4b:8a:61:de:a0:f2:a4:c8:
                    97:8a:e6:01:c8:ff:ea:ac:b9:0c:82:db:98:c4:f1:71:
                    92:32:fa:22:eb:49:af:ed:81:5a:e5:97:5f:0d:19:ec:
                    24:83:c1:da:56:0b:20:86:29:a1:fa:78:02:2a:fb:b2:
                    23:ac:ce:69:ba:01:49:9e:cc:e6:41:46:c8:26:37:6d:
                    e1:69:f6:93:39:b3:e7:a8:79:13:ea:ad:d8:a8:75:7a:
                    de:1f:51:4e:a1:24:74:84:64:4a:32:ac:8d:23:67:d5:
                    39:96:1a:89:d3:3d:b6:d9:1f:52:02:38:26:2e:76:a1:
                    eb:c2:b5:fb:26:7e:d1:ac:5a:00:bb:0a:81:31:17:cd:
                    1e:b1:7f:f1:79:63:5a:7e:a3:67:db:31:d5:9d:71:81:
                    d8:35:ce:67:80:99:a5:fc:38:76:11:98:5f:80:26:65:
                    80:3c:9b:e6:4a:dd:3f:bf:9e:ca:b2:d8:67:b6:c1:6a:
                    2b:f7:57:16:a8:26:49:1f:c7:de:3d:0b:97:af:ac:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:64:57:f2:0c:48:07:c6:8b:06:ee:a3:0e:03:4b:dc:
        8b:61:62:bb:23:e0:ae:b8:b3:bd:8b:97:d3:e4:73:fa:
        fc:80:41:d2:a4:1e:e2:5a:a4:c0:2c:46:8f:28:43:fb:
        5d:73:49:07:81:73:cd:35:5b:de:d2:37:35:72:73:86:
        0b:b6:50:f3:d8:90:b6:ee:bf:46:39:e7:3b:5f:4a:2b:
        5e:7e:85:00:35:8a:a9:99:9a:9c:0d:59:e4:99:d8:c8:
        9b:2c:6d:ab:54:cc:aa:e9:d5:2a:37:0e:b2:26:1c:5f:
        3e:cd:c5:59:b7:5f:c9:1e:45:18:3e:72:aa:df:07:1a:
        a8:00:0d:fe:4c:5a:60:3d:de:af:66:4a:69:72:fb:d1:
        ba:6c:ea:ab:0b:1f:f9:37:42:13:2d:31:4b:fc:0c:32:
        5b:e5:4f:76:01:95:6c:84:6b:b8:41:85:01:ba:e7:68:
        4e:e9:4c:f2:3f:0d:79:08:09:dc:9a:22:ac:b7:54:4c:
        b4:5c:7e:63:95:cf:27:5a:74:50:26:bc:2a:f2:77:5b:
        c9:49:14:69:f5:7b:31:01:5b:b9:80:c0:73:66:06:c7:
        8b:a5:fb:cd:06:89:19:12:0b:d0:12:31:fe:7f:ee:1c:
        c1:3f:02:03:ba:cd:27:d0:58:91:2e:d1:51:49:b4:7d
    Fingerprint (SHA-256):
        0C:F0:EE:99:12:29:72:B2:39:B1:22:52:8E:B4:51:6E:9B:47:86:05:F5:AC:4F:7D:5E:BA:B4:5A:C8:63:4E:D5
    Fingerprint (SHA1):
        69:0A:FF:95:3A:60:5B:D7:BD:BA:12:E4:58:1B:31:C4:93:16:53:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2704: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152932 (0x1dee3ee4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:29:38 2017
            Not After : Mon May 02 15:29:38 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:74:da:80:f3:c8:8b:36:f8:cc:6b:20:2d:69:32:81:
                    db:47:6d:2f:f0:63:2b:45:03:5a:5a:68:85:16:a2:53:
                    56:f5:59:ed:b9:99:44:02:8b:1c:26:ae:09:98:7a:cb:
                    2e:03:f8:8d:61:a1:f5:9c:de:7b:6d:f9:8e:a6:17:fa:
                    53:d4:c6:2e:65:f0:5f:4c:43:84:c2:10:09:c8:4e:42:
                    1d:54:08:c8:e7:39:60:f0:47:8a:84:c4:14:07:b9:c6:
                    1f:55:74:6c:65:fb:7d:0f:58:05:68:3e:83:d5:5c:bb:
                    59:2d:8d:63:37:54:a4:29:a9:e8:da:c0:59:7b:0a:e3:
                    8a:db:7d:65:c6:1a:7e:20:94:82:75:ce:99:87:19:ce:
                    8d:15:3c:ce:25:29:76:83:b5:3b:36:6b:00:24:50:c5:
                    e9:66:5e:87:ca:3c:9d:84:9b:db:24:0c:44:63:88:9d:
                    ff:48:50:e2:d0:b1:1e:cc:b1:3e:b3:bf:0f:15:dd:b4:
                    d4:a1:fb:a1:d4:43:33:0e:db:7c:84:ad:95:38:51:12:
                    24:2d:c5:e5:7d:88:db:8d:e0:cf:19:c3:d0:4f:fc:28:
                    ed:fa:ef:8e:be:b5:43:4e:4e:44:0c:1a:97:ac:1c:0b:
                    58:20:5d:89:86:9e:77:8a:7b:59:6b:6a:99:76:d4:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:31:25:12:40:5a:29:2d:aa:a1:91:4c:1a:ab:49:56:
        58:3d:fb:7b:5e:cb:76:1d:be:b5:e7:1f:92:6d:db:20:
        9b:c1:29:bb:6b:4a:67:1c:d5:d2:fd:be:cc:4c:42:6b:
        34:4f:df:21:7f:d3:2a:84:99:90:ab:8b:32:90:be:55:
        7b:39:c3:f3:91:99:d9:2f:92:5d:53:9a:a7:db:d3:64:
        b9:e2:e5:96:4d:62:c8:23:28:07:87:14:46:3d:a3:7a:
        1b:3c:43:3c:7e:ef:2c:6e:fd:27:a4:a9:d2:a5:78:04:
        38:23:7c:43:9c:18:53:d3:3c:f8:11:63:81:73:8a:e4:
        18:21:7b:1e:d3:ac:36:d7:06:41:c7:8c:5e:37:da:6c:
        9b:28:a2:c3:56:4b:a5:49:6a:a9:9f:7f:b1:29:0d:0a:
        7d:5f:6f:11:90:95:6f:e3:9f:98:5c:f8:30:ca:9c:05:
        2d:f4:e0:03:4d:af:17:e7:fc:f6:22:2c:7a:10:d1:47:
        fc:fa:60:eb:b4:f0:c1:58:d1:ad:a8:10:f2:df:42:af:
        78:36:be:e3:c5:7b:19:37:86:fb:42:53:a1:ec:b3:99:
        e3:19:cb:b7:e1:b7:ad:f5:67:c1:81:ef:56:ab:a7:83:
        81:e3:74:6d:3e:d7:7b:f2:2a:d5:ef:b6:f0:ab:81:8b
    Fingerprint (SHA-256):
        13:E1:C3:3C:5A:E2:98:62:36:95:06:30:5D:18:62:EF:CA:DF:74:9A:23:68:AD:B3:0D:DC:CB:E1:3A:C1:80:D8
    Fingerprint (SHA1):
        05:1A:0D:A2:DB:F7:73:56:03:62:36:A3:7F:E9:73:97:41:13:3A:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2705: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152933 (0x1dee3ee5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:29:38 2017
            Not After : Mon May 02 15:29:38 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:4d:ca:0b:2b:4e:72:a0:22:db:dc:e0:51:51:f0:3c:
                    b0:b3:69:45:b8:3f:8c:16:f2:8b:15:a1:ab:42:b5:87:
                    d8:67:e7:17:1b:36:d7:73:99:43:b4:a2:ce:94:04:7e:
                    2d:b2:f4:c8:21:59:b9:8e:91:08:0c:2d:56:1c:c5:16:
                    24:19:c9:08:f3:9b:38:df:99:42:13:c7:92:6c:b4:55:
                    3b:64:41:a7:6d:f8:c0:43:0f:56:77:b7:6d:17:bf:06:
                    73:bf:00:a1:d6:e4:66:3f:19:36:b2:1c:13:c5:ea:21:
                    42:88:62:e6:68:91:25:d5:73:fa:c1:5d:5e:4c:49:26:
                    7d:56:82:80:60:44:6e:bb:d3:93:ee:f1:db:dd:94:70:
                    4e:6e:92:47:a3:0f:39:d1:c9:0b:00:08:d4:1a:c3:ad:
                    09:2f:29:fb:87:5f:43:af:a1:4c:d8:b1:42:30:6a:a1:
                    c9:41:f5:c4:06:78:05:4a:e5:2c:f9:7b:54:8f:7f:7d:
                    2b:e4:4e:77:ad:03:b2:93:5e:3f:a5:47:97:65:c3:15:
                    86:74:a8:d7:19:24:d5:e9:67:50:3d:d6:bc:44:fa:a6:
                    04:a3:bf:31:90:38:11:10:1f:55:ce:5e:2a:30:92:ae:
                    b7:7c:5a:aa:15:85:d6:d8:0b:1a:dd:87:ae:59:9f:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:18:48:b3:03:b7:82:31:5a:3e:da:bd:8f:30:45:a2:
        3c:1d:25:d6:1e:1a:71:47:43:bd:32:f4:83:56:4f:7b:
        48:15:32:4f:31:c7:5f:50:6e:f9:95:28:e5:6a:66:9b:
        95:c5:7d:44:91:2e:a0:c0:fd:71:c6:12:74:f0:45:08:
        17:a6:ec:f5:7f:b7:8f:fc:48:4d:70:56:40:c4:ae:53:
        a2:a1:25:f3:eb:07:7f:8d:6d:88:b5:6c:f2:a5:01:75:
        fb:a0:33:78:c9:55:7b:51:89:4c:ae:6b:88:1c:b4:13:
        3a:20:28:35:9f:e1:67:6d:f1:04:cc:68:12:98:3d:21:
        bc:d2:44:61:d9:9e:50:50:61:8e:30:d7:ed:09:65:0d:
        51:fe:e0:91:15:15:9e:d3:fb:b1:8e:ca:3c:a8:d3:b7:
        67:c8:66:58:26:b5:59:82:fa:a5:9c:3d:a3:8a:f6:92:
        64:4a:d8:b1:81:e1:7b:b2:65:00:bd:9b:4d:c9:ff:f1:
        df:7d:4c:4c:81:81:bb:27:d0:87:29:5d:8d:fb:b9:51:
        4a:d3:12:ba:2e:cf:0e:d1:ec:f1:48:a8:92:64:23:3c:
        5d:45:5c:5d:fe:09:d4:40:ab:56:37:73:37:da:d9:f5:
        fc:c3:dd:46:6a:83:0c:63:d5:5c:a7:b4:2d:19:d8:f2
    Fingerprint (SHA-256):
        FB:3B:0F:D1:22:D2:61:6F:B5:D6:11:34:04:C7:63:8F:B1:F7:B4:54:18:7C:1D:65:73:82:B3:5B:86:65:5C:7D
    Fingerprint (SHA1):
        63:57:6B:97:47:97:C3:40:B4:6C:D2:D1:46:54:44:CF:C4:F9:64:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2706: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152934 (0x1dee3ee6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:29:38 2017
            Not After : Mon May 02 15:29:38 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:cd:a1:22:23:a1:80:f9:02:9c:ff:2b:12:af:dc:51:
                    2d:64:af:3c:fc:4c:47:c0:c7:c3:e4:0e:da:0d:26:cb:
                    83:29:e9:e7:55:6d:36:4f:82:a1:90:3e:70:f3:80:72:
                    d8:b9:c8:34:2a:db:c1:50:2e:f4:6d:e2:27:f9:e0:80:
                    4f:00:66:98:ac:8b:0d:82:d6:0c:7c:b8:58:43:5b:a4:
                    9b:65:46:7f:b1:a7:4e:46:84:6a:d3:86:9e:0d:1d:e8:
                    74:e3:50:f4:1a:c6:cc:73:cf:a2:5d:3b:21:ab:ed:8f:
                    97:b9:41:7c:e9:9b:c6:31:7c:c1:fe:64:b8:fa:9d:ab:
                    20:85:14:c3:31:79:a1:0d:d6:c6:97:6f:85:61:e5:d4:
                    61:8b:80:9c:0a:e7:9d:dd:74:66:91:8f:e8:2a:b8:d1:
                    8d:fc:07:65:78:3d:93:b9:30:71:c9:cb:ec:7a:fb:39:
                    80:e1:d8:30:c8:72:03:ef:2d:87:9f:69:d8:03:a9:53:
                    84:c2:51:99:ac:e1:44:b2:38:c1:95:a3:9e:66:e0:07:
                    b2:55:47:96:9c:f0:c5:2d:b9:3d:62:fd:41:8c:0a:a0:
                    f0:76:ae:42:99:7d:2c:88:4b:a5:03:08:5b:c4:8b:83:
                    58:f0:f8:e1:20:24:ee:ab:fe:ac:42:e0:48:a6:85:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:83:cb:76:00:c2:50:3c:f4:3a:f6:7e:17:41:e1:f4:
        9a:3e:d4:2c:61:09:3e:72:e9:f3:fa:32:d2:5f:14:e9:
        72:40:ba:75:e0:5f:62:28:c9:9d:96:98:3f:6b:69:fe:
        a6:4c:ec:79:8c:f4:3b:f6:d1:33:0e:3d:62:3b:9e:dd:
        0b:10:fa:41:2d:60:05:e6:a4:c2:1f:00:3d:03:f5:9d:
        c5:97:a3:73:79:3c:20:2b:cf:17:4c:e9:85:be:2d:ad:
        c0:d0:93:fe:ec:f6:50:49:d4:71:c4:b3:19:67:7d:c7:
        e3:0b:69:2c:27:a1:aa:0f:d3:2e:34:df:a9:3b:12:1c:
        4a:61:b7:75:c7:61:db:20:b7:a0:43:8d:13:f5:a0:00:
        f1:4f:a4:5e:d3:cb:49:50:ca:11:a4:ed:5a:0b:15:bb:
        f7:1a:05:65:d0:eb:8f:bc:26:b2:60:f0:f2:b5:1f:59:
        4b:95:00:de:c0:f2:34:95:2e:49:96:55:76:0b:21:35:
        d4:54:8d:08:72:c6:6d:56:9d:1a:93:e1:60:f1:9e:79:
        3e:a4:b7:79:c4:77:b8:f2:a8:ca:da:34:6e:05:26:0d:
        94:16:26:bd:8e:2d:9e:a9:a8:2a:2a:3a:63:1e:21:f9:
        5b:10:d6:0c:8f:3c:c9:f2:28:6e:d1:3d:df:43:27:98
    Fingerprint (SHA-256):
        48:A5:C9:38:96:9F:1C:09:47:3D:6F:7B:F4:27:82:A1:C3:BF:94:21:77:D7:2A:37:A7:4D:B1:6C:D5:04:76:29
    Fingerprint (SHA1):
        8C:C7:1E:CC:25:08:F5:D6:D9:C0:BF:73:63:E6:7E:AC:E3:61:33:46
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2707: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152935 (0x1dee3ee7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:29:38 2017
            Not After : Mon May 02 15:29:38 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:5b:e8:c2:4e:f4:9a:24:1b:b0:c1:5f:94:84:5e:16:
                    3e:27:17:2b:20:e6:5e:55:99:41:33:78:3b:a6:99:c6:
                    27:67:25:1c:90:66:b0:8d:f0:05:ff:d4:1a:70:2b:15:
                    61:47:bd:32:bc:b2:6a:a9:6a:54:d0:49:09:93:2a:7b:
                    22:cc:b0:c8:10:95:4b:4c:03:43:64:c9:d2:c2:e8:40:
                    af:79:8f:b6:8c:af:c2:52:fc:2c:1c:60:39:06:e3:73:
                    0d:52:29:f5:70:85:33:4d:e9:79:dc:44:ef:a8:d4:1f:
                    15:e6:8c:e3:f5:79:04:2b:eb:f2:fd:e7:0a:59:01:d0:
                    03:9a:de:25:c0:bd:ca:d1:ab:bc:f1:b3:e1:57:53:ab:
                    71:a0:77:9b:ff:95:05:1e:07:06:e1:8f:e5:1d:d5:f9:
                    e1:d5:37:f8:94:80:02:64:46:17:03:07:d4:82:88:94:
                    3c:d5:73:cb:f8:9b:52:55:45:6d:df:7c:4e:13:50:3f:
                    41:f7:4b:78:0a:83:e3:9b:ab:02:06:44:b2:a6:83:8b:
                    34:cf:81:d4:e0:55:5d:87:54:d5:06:2c:cd:9a:1d:3b:
                    9f:60:46:da:60:1a:4d:af:14:5b:b8:8f:a4:36:0f:a1:
                    c6:aa:ea:a9:5e:e3:c2:6a:4d:e6:8c:cb:2f:a8:d6:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:1d:ae:1f:70:59:09:0c:b2:9f:e0:80:fe:8f:17:b4:
        80:30:a2:26:4d:fc:eb:5b:6a:d0:9a:e3:26:b1:a2:d2:
        ea:19:2b:92:30:9f:f5:14:9f:a8:0f:56:bc:f2:b0:5c:
        72:87:e2:63:a6:6f:bb:e3:21:49:ac:14:b5:0e:cb:41:
        51:27:40:3c:cf:94:24:a2:86:b0:86:2b:fe:e8:7c:3e:
        cb:d1:3d:f6:32:74:3a:51:37:71:bb:a7:9c:3f:9a:8c:
        20:d2:18:6a:6b:4e:ef:2a:e8:c3:01:1a:6e:4d:a3:c3:
        b7:9c:55:29:ac:26:24:53:16:34:b8:ff:10:34:d2:f3:
        c0:50:c1:f6:3b:b7:d5:3e:1a:85:f2:25:44:a3:c0:25:
        09:f8:19:17:4e:3f:14:cc:e2:bb:30:91:a5:ab:5a:8d:
        ad:a6:2e:05:01:96:e3:ae:b9:3e:c5:98:6d:45:e4:03:
        c0:c7:fd:35:bb:07:71:0a:59:c5:e3:fe:11:60:f2:54:
        b0:60:6c:cf:ae:8e:9f:ae:ad:b4:c6:81:7a:2d:5c:12:
        88:76:23:fa:2a:1d:1b:d2:11:6e:25:8f:6a:88:87:3c:
        bd:83:26:1c:9a:c4:30:b6:36:9c:2f:ff:96:21:72:10:
        c1:22:fd:6c:a3:8f:38:a6:fa:64:19:3c:9b:ac:4a:da
    Fingerprint (SHA-256):
        53:22:5F:5B:EE:E0:44:C9:B4:F9:D2:BA:AA:2D:46:93:3B:52:36:95:8A:E7:E5:1A:C7:A3:63:17:E6:4B:7B:F9
    Fingerprint (SHA1):
        4D:C4:25:DB:6D:6C:D5:1E:78:3C:83:C3:9C:42:85:A3:A0:62:03:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2708: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152936 (0x1dee3ee8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:29:39 2017
            Not After : Mon May 02 15:29:39 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:ad:6f:6e:6d:87:e8:06:75:7b:21:34:53:9d:34:33:
                    df:16:0f:1a:7c:e4:0f:3d:02:f8:f6:f1:03:9a:45:fe:
                    80:16:d6:1a:3f:cd:42:7f:8a:56:3f:a2:46:21:5d:c4:
                    88:5e:00:b6:02:fb:30:d0:9f:d1:d2:92:59:00:3d:bd:
                    6e:e7:c5:39:b5:5f:e5:be:2c:e5:db:a1:48:e3:48:26:
                    1e:12:9d:26:ba:99:13:56:05:19:db:08:90:da:f5:2e:
                    ff:69:03:aa:18:72:aa:7f:b5:66:34:e8:94:c0:85:e1:
                    99:32:cd:d2:c2:7a:f5:d3:6f:25:c7:e2:f0:94:57:fb:
                    3d:6f:83:44:8e:07:64:c0:83:c4:b3:5a:d5:66:37:80:
                    aa:17:7d:fe:bb:92:e9:8d:0b:1f:c9:51:3d:9c:10:b2:
                    ab:32:19:81:74:4b:02:96:03:85:d2:57:ab:1b:07:d5:
                    77:dc:bf:b2:21:c5:66:35:9a:87:c2:69:f1:f6:79:3d:
                    b8:5e:ac:48:9d:7f:8a:e2:03:e3:df:f4:25:53:db:af:
                    82:fd:e7:38:8d:d0:f7:ef:c9:da:e3:e7:e2:58:4e:34:
                    a3:58:68:ee:7a:8e:99:fc:a1:8a:cf:c5:c2:15:5b:c4:
                    f8:a5:e6:b2:4b:54:af:f8:ec:70:af:41:ed:1c:8b:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:ea:52:4f:b1:74:c1:5f:96:f4:c2:b9:e5:e6:b7:1b:
        0c:cd:07:87:5a:d3:8c:2a:ff:a1:ae:1e:78:61:9f:b0:
        28:21:10:41:8e:32:f3:62:68:62:fd:d4:d8:23:63:f1:
        96:d2:f2:df:ab:b9:05:27:f4:41:4e:3a:c5:62:5a:22:
        b3:6b:3a:50:b1:36:35:ef:e5:cc:26:85:3e:b8:b4:3b:
        fb:ae:d9:19:7a:3b:8f:8e:5e:d9:a2:d7:63:7f:3c:ab:
        3f:ae:38:09:5e:71:78:87:d3:20:a0:63:f1:1e:50:a7:
        41:b7:f1:00:35:a1:dd:2b:82:5a:1e:e5:fb:41:89:e6:
        93:77:b6:56:72:24:83:8a:33:f2:7c:e6:cf:d6:be:23:
        68:83:f0:ff:fa:ab:e3:f6:e0:f3:6d:44:6c:47:a5:cd:
        28:4c:3a:01:18:94:4a:73:b7:d0:3d:5e:26:3d:57:8a:
        6c:8e:f1:3c:29:2a:b8:ea:b2:2f:f5:ad:51:e7:c2:c8:
        ae:c8:44:d5:19:53:bd:81:5b:ee:c8:4a:6c:eb:9b:bb:
        56:42:56:c7:16:32:e0:e6:09:20:36:aa:e4:31:99:db:
        8e:94:ba:be:2a:7c:99:8c:5f:71:60:73:74:55:95:e2:
        ed:bb:c5:62:c1:cd:6a:e6:40:fb:1c:c2:42:3a:42:1c
    Fingerprint (SHA-256):
        54:5D:82:D0:D1:71:91:EF:81:25:B9:F7:3B:52:4A:18:15:5D:8D:70:73:49:E6:B1:46:A8:7D:6E:95:F6:DF:5C
    Fingerprint (SHA1):
        B5:63:60:B5:B5:B9:FF:1C:54:2B:A0:C0:37:5A:F8:F3:6B:7D:38:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2709: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152937 (0x1dee3ee9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:29:39 2017
            Not After : Mon May 02 15:29:39 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:a2:a7:db:4e:fe:8f:b8:e6:e5:e5:a7:b2:59:13:bc:
                    5d:76:c7:2f:44:d8:0b:fa:7c:85:eb:6e:af:1d:c3:62:
                    c2:92:f6:51:04:84:a4:e7:12:b9:22:0f:50:fa:87:ed:
                    57:2d:0d:4c:c3:05:47:c1:d6:18:5b:f1:5e:06:cb:df:
                    5e:0d:04:c5:4a:63:c6:75:80:fc:fa:e8:f3:da:16:f7:
                    11:3d:e1:7c:12:67:f1:c4:00:5d:b2:fc:97:53:e3:9a:
                    ed:47:51:86:52:75:a8:b7:d9:ab:dc:08:02:f4:fa:9d:
                    f1:a5:53:1d:fc:28:b9:22:65:f6:7b:bb:a7:ca:fe:31:
                    c3:fc:66:4f:f4:bb:9a:db:37:0b:27:06:f1:df:b9:f9:
                    61:c0:ec:e3:0d:04:28:92:85:5f:43:c1:1f:1c:49:e5:
                    31:e1:3c:26:8e:1d:f6:31:00:ea:34:5f:1e:dc:96:c7:
                    0a:d1:37:95:e3:ee:57:73:a4:2d:6e:d5:d9:4a:a8:14:
                    3c:6d:29:87:68:2d:6a:82:12:24:ff:a7:d0:a5:c0:7b:
                    df:b3:34:f8:e1:8e:77:14:53:fc:a8:0f:b8:21:bd:21:
                    f6:b3:0f:d0:b0:0c:aa:4a:94:52:2f:ca:9c:9b:52:36:
                    d6:de:8f:e3:7a:55:c9:48:ee:50:04:39:f5:80:23:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:4d:f6:36:1e:cb:ab:da:12:1e:a1:70:6b:17:5e:13:
        ac:a1:57:b5:2f:0a:61:ee:69:29:91:89:d5:85:a7:41:
        3b:57:52:d5:fd:41:29:93:51:45:40:26:e0:70:23:da:
        85:7b:51:ee:68:20:f1:e2:3b:b3:a7:a7:c0:0f:26:58:
        68:e6:b8:c2:2c:c0:df:75:00:8c:a8:ad:c2:5d:19:aa:
        2b:30:95:c0:cf:35:5e:90:5e:0b:75:0f:fa:cb:57:57:
        ee:af:81:2b:50:95:10:b9:38:ae:9a:51:c1:f9:6b:88:
        24:c8:87:f1:a9:44:69:a1:7a:7e:4b:3d:a4:89:d3:41:
        b0:df:06:18:c6:63:87:ce:5f:27:4f:47:ff:eb:e8:94:
        40:87:12:4c:06:6c:fb:09:e3:bd:0e:fa:d2:c6:5b:f3:
        a6:22:da:a2:21:64:7b:90:2d:f9:0f:00:d9:d4:f1:bb:
        5d:bb:bc:c9:0f:c1:58:10:54:71:ef:b1:c4:92:67:0e:
        c9:5d:ef:0a:c9:cf:26:6a:11:b7:7b:b0:2e:5b:ba:92:
        99:87:9a:8e:68:59:15:95:91:dc:27:b5:76:62:25:8b:
        6a:75:ac:04:a0:c5:9e:c4:12:be:0d:ac:78:51:24:f1:
        42:a4:ec:ea:73:0a:f5:66:82:05:af:6a:34:50:c5:9c
    Fingerprint (SHA-256):
        9C:70:35:0E:CF:CD:D3:53:96:53:73:32:6C:4D:2D:07:36:A5:3A:F9:8C:59:28:77:15:E4:5A:BC:E0:AB:6F:AA
    Fingerprint (SHA1):
        03:AD:E9:5C:73:0D:F7:2E:20:30:3E:00:7C:78:FF:4A:CC:80:E8:2B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2710: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152938 (0x1dee3eea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:29:39 2017
            Not After : Mon May 02 15:29:39 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:5a:00:6f:d3:28:36:72:d8:b3:52:75:0f:f3:8f:ee:
                    9d:30:c0:45:e2:20:92:db:2d:d2:52:d0:25:39:a8:53:
                    8c:5e:8d:1a:1b:d2:b9:c5:5e:90:6b:57:2b:3e:9d:e5:
                    c9:fd:13:60:20:b3:c0:63:89:23:c9:09:34:39:bd:4a:
                    fc:2f:1a:b0:8a:5f:34:41:35:8c:a9:e8:4a:9b:07:bb:
                    44:31:66:6d:58:3a:97:8d:ad:66:3e:da:a4:40:49:3a:
                    e7:d1:74:19:ec:13:80:2a:22:37:14:84:13:ce:ef:62:
                    be:f9:e2:22:a3:ee:64:46:a1:a8:86:51:fa:e2:21:5c:
                    81:a5:6d:4a:df:0f:43:e0:2e:ef:b6:d4:76:bd:bc:f4:
                    77:83:6b:55:27:90:b8:b8:28:0b:b7:39:70:a5:e3:32:
                    39:5a:5c:6c:07:b3:70:47:b3:73:da:0c:fb:c8:cf:7e:
                    4b:ca:da:27:1e:03:94:a8:3a:58:2d:4f:92:b0:87:51:
                    c7:b9:4c:9d:23:af:e4:70:f6:d6:ba:d9:96:6e:3f:42:
                    6a:4a:f6:96:ef:6b:5e:31:59:5c:d8:f5:00:b0:e7:2e:
                    7c:0e:a4:46:ff:02:12:68:e4:ee:00:87:a2:45:de:6e:
                    f8:5b:29:35:1e:ad:fd:d8:f5:06:12:81:ca:c5:a8:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:30:f5:5a:33:33:b0:9d:75:88:fb:b1:45:4b:7e:4f:
        ca:ab:03:e1:5d:b2:3b:b5:84:0d:e6:6b:c3:4c:9a:7f:
        53:a6:50:ea:2c:a3:d8:32:b4:24:e3:d2:a1:4d:b4:f4:
        6a:78:55:70:8e:fd:92:d7:5a:31:d0:47:62:bb:85:35:
        ef:9d:5e:a1:ba:f8:95:b5:d5:a2:7f:8e:aa:60:2d:c3:
        1a:55:eb:a1:32:30:b1:a9:5c:da:4f:c1:07:9c:ea:e9:
        f4:11:0c:4b:01:df:57:6d:1c:da:e2:88:7a:8f:8f:b1:
        5e:80:c4:f0:e8:e8:43:f3:f2:3a:3c:af:8b:28:bc:55:
        28:0f:f3:5d:bb:01:9e:37:52:b2:e0:cb:01:80:29:c3:
        d2:e2:d9:21:4e:94:d5:cd:0a:83:ae:6f:67:2a:0e:00:
        fa:ee:1b:b4:c7:bf:40:64:d3:ee:0a:8c:39:e5:90:ff:
        a9:96:fb:5a:7f:7f:16:90:e4:37:29:9d:12:03:25:8d:
        15:cd:99:65:65:df:a9:17:3d:16:00:a7:f8:2c:2f:44:
        ce:57:ac:4d:11:d4:56:00:d1:23:a9:e1:07:fe:d0:9c:
        47:e3:8d:ea:1a:27:9b:c5:21:16:7f:b2:8f:ea:3c:7e:
        6b:73:19:17:0c:19:19:cf:f2:ea:6a:ec:eb:87:6c:08
    Fingerprint (SHA-256):
        A8:CC:F9:D5:14:45:62:31:EA:E4:62:95:FD:28:B1:58:67:E8:15:F4:44:47:86:E4:57:20:84:6A:0B:BF:51:0D
    Fingerprint (SHA1):
        6D:0D:B9:8B:D5:F1:D4:4D:20:CB:D6:15:3E:B7:72:A3:6C:90:F9:01
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2711: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2712: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152953 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2713: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2714: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2715: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2716: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502152954   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2717: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2718: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2719: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2720: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502152955   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2721: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2722: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2723: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2724: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502152956   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2725: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2726: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2727: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152953 (0x1dee3ef9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:42 2017
            Not After : Mon May 02 15:29:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:b3:c2:29:91:27:a4:86:1d:09:8b:1a:28:4e:9a:a9:
                    e3:5b:95:81:42:30:75:e7:f9:a6:7d:91:5a:00:e2:0f:
                    8a:0e:eb:f5:20:9f:c1:28:f4:40:0f:a7:e8:71:47:45:
                    b5:f0:47:9c:46:70:6c:33:32:4b:0f:0f:2b:9f:70:49:
                    40:61:40:74:45:21:b8:66:4f:7a:d4:67:e6:83:9b:19:
                    9e:2a:22:82:d1:7f:7a:30:ca:47:a5:78:97:8e:68:b7:
                    b1:0b:ea:f9:46:29:1a:2c:45:b3:59:2d:85:22:6f:41:
                    22:73:65:0e:8d:09:6a:e4:4e:c1:db:9a:8a:d6:95:e8:
                    b2:43:fa:07:8e:b1:98:80:9a:50:dd:a4:bd:f6:e8:86:
                    94:04:2c:75:5e:17:ee:d2:a1:2f:47:e9:20:4b:97:05:
                    e9:ac:5c:c7:ba:f5:3a:d6:ba:c0:96:8a:64:dc:c3:3c:
                    8b:9a:b6:12:99:a9:a8:70:84:e6:8e:3e:3e:ca:59:13:
                    6d:7d:cd:17:05:d9:cc:67:7b:87:3b:09:be:83:44:91:
                    e6:7b:a2:5b:e5:d0:a1:da:6b:91:a0:2e:a0:70:fd:20:
                    f0:39:d7:cc:8d:70:3b:76:50:b6:4b:aa:64:34:88:bd:
                    f2:b3:b4:0b:87:d2:78:1b:5c:ad:1d:c2:cd:ca:54:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f0:47:b9:d6:11:18:ed:65:6f:3a:28:80:a3:24:31:
        34:47:7f:bb:ad:3b:84:fd:3b:27:63:69:a6:8b:4c:11:
        d9:e5:6c:5b:11:b3:bc:bb:30:00:71:bc:58:7a:64:2d:
        68:b3:c0:3d:d2:c4:06:2d:8b:52:cb:67:e5:f5:97:b3:
        d8:88:a9:2b:47:48:63:04:39:30:e2:5d:71:c4:5e:97:
        5b:43:7e:d3:11:82:5e:78:9f:36:fd:8c:4c:cc:67:e2:
        0b:08:63:93:b7:de:16:40:a2:b5:14:e1:9c:5c:b8:f1:
        6e:76:ee:fc:42:a8:7a:31:2a:b8:94:ee:85:e4:a0:8a:
        44:d4:de:2d:c2:c0:77:37:ec:1a:60:8d:27:f3:ad:ae:
        67:c4:f8:7e:2c:2b:39:a5:1d:87:7f:de:57:1a:84:3f:
        b8:da:1e:dc:33:50:dc:b0:3f:e9:97:bf:bf:e6:63:2a:
        48:ca:71:3a:62:a1:a2:56:1e:b7:71:1a:34:d9:4c:98:
        7e:e2:6f:4f:7f:e8:61:a3:b4:c4:ce:16:02:7e:19:f7:
        6f:66:49:2f:4b:c6:7f:45:d9:ed:3f:15:8b:50:ae:8f:
        35:9e:f6:d8:2b:4a:ff:cb:bd:99:54:1d:13:91:16:bf:
        4b:48:09:b8:2e:18:12:a4:cb:2a:0f:bb:e6:93:aa:5d
    Fingerprint (SHA-256):
        26:0D:8C:1B:FA:D0:AC:09:C4:80:D8:CC:BF:49:2F:C7:45:67:93:86:7D:00:08:0C:44:59:71:32:0E:58:F3:6A
    Fingerprint (SHA1):
        1B:E6:0C:29:A9:28:01:91:4B:90:C3:75:F6:9B:AB:99:11:5F:F4:9D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2728: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2729: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152954 (0x1dee3efa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:42 2017
            Not After : Mon May 02 15:29:42 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:7b:16:24:b8:98:fd:53:2f:08:3d:06:fc:6b:81:5b:
                    e2:4e:b1:1f:b8:48:83:f2:e9:6e:ba:2c:c3:55:9d:8a:
                    f4:b9:59:66:69:87:dc:7c:56:20:4f:c7:4e:ab:23:d2:
                    ee:24:3a:35:0c:60:74:b2:47:34:f0:2d:42:fa:1b:3d:
                    8b:22:9b:74:5a:76:f0:c9:ab:8c:bf:3f:ca:28:ff:79:
                    fb:be:b0:67:f9:a3:ca:f0:40:a0:97:c3:1b:27:46:a7:
                    90:65:12:70:b0:d8:f0:bb:cf:60:da:62:5e:3f:71:1f:
                    b6:41:0d:5e:19:ae:02:d8:89:b4:30:1f:af:83:08:27:
                    f6:19:b1:4b:39:f0:4d:d3:9a:5f:44:c1:1d:03:73:94:
                    9b:d1:82:34:93:b8:13:46:36:a4:31:43:eb:51:c0:ae:
                    75:39:ff:5a:c3:74:c9:1f:c8:be:66:cb:58:66:5b:88:
                    3f:ef:94:e2:dd:60:04:83:53:83:8f:05:7d:95:0f:dd:
                    4c:1b:eb:4e:71:6c:9f:f4:4c:59:b8:a5:b5:df:0e:1e:
                    48:02:a1:12:ff:1a:25:d2:f9:9c:f0:9b:17:53:19:0c:
                    37:a5:95:6e:bc:78:ed:35:f2:05:a6:27:e8:cc:52:57:
                    c0:69:be:9c:9e:77:7e:36:62:4e:40:ac:43:cb:f5:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:67:13:21:74:3f:4c:8c:04:e3:dc:6c:de:67:72:72:
        18:86:33:c3:2e:79:72:a5:e7:7f:0c:76:61:3f:9e:b3:
        47:b4:b8:c5:f6:be:f0:c2:6a:98:99:17:04:3a:03:7f:
        7a:48:56:74:b0:e5:b5:d5:bd:45:8d:98:81:96:83:00:
        0e:32:30:a1:f8:eb:0f:04:be:77:c8:79:e8:7d:ff:f3:
        4b:97:ae:1d:9a:2b:55:74:86:d5:b8:8c:aa:6b:e2:b6:
        c3:0e:20:ba:a5:c5:33:ca:82:ea:1d:f8:ee:7e:a4:7d:
        8d:10:bf:c6:94:8b:9d:22:8c:5c:7d:86:fd:70:85:67:
        35:8b:7e:f6:c4:5d:fb:3b:1e:4c:f3:67:0e:59:c9:80:
        55:ad:d9:bf:f7:89:98:0d:59:e1:9d:4b:53:c0:a1:41:
        43:a0:73:1c:65:35:50:15:ba:f6:a8:8d:d6:2a:ca:a4:
        98:c6:4f:30:79:b0:92:53:88:f1:c1:2e:cf:b4:67:41:
        d2:e3:fb:b5:83:d1:c8:85:03:08:fe:d9:09:66:f8:4a:
        e7:90:b8:20:3b:98:c3:a9:4f:a8:eb:6c:f4:e0:b1:d5:
        1f:cf:5a:d4:3a:f6:ea:3f:53:8b:56:77:a1:f1:e6:4a:
        fa:bf:a5:2a:6f:40:3f:2b:9c:78:38:76:27:b2:da:8d
    Fingerprint (SHA-256):
        DE:2A:3F:86:EA:82:12:C0:E2:07:19:0B:85:F8:6B:63:57:A2:94:94:F8:34:7E:C6:CC:E0:3C:08:11:89:0C:97
    Fingerprint (SHA1):
        BB:0F:14:E2:85:0C:29:37:AE:FD:34:EF:26:57:16:28:0F:7B:32:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2730: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2731: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152955 (0x1dee3efb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:29:42 2017
            Not After : Mon May 02 15:29:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:37:fd:23:61:2d:bd:c0:b8:09:24:68:4b:fd:5f:5a:
                    b7:73:25:62:fa:7a:86:af:f5:f2:2c:a9:b0:00:2d:41:
                    dc:ae:99:4c:99:d1:d4:47:fc:fa:f4:41:49:a7:09:1d:
                    94:9b:57:b3:dd:9b:b3:3f:05:d5:ed:bf:fd:03:76:6d:
                    c1:79:de:36:3a:54:f0:df:20:ad:ca:fb:98:56:f4:e1:
                    74:a4:ea:7d:d3:3f:fd:8b:b4:91:6d:38:21:ab:22:76:
                    08:17:9b:a4:0e:e6:88:64:ab:4a:81:38:68:35:9a:d8:
                    26:2b:b7:53:e3:05:8f:69:7b:2b:f1:a4:2a:c1:d2:05:
                    95:5d:df:68:0c:dd:fa:3e:15:14:0f:22:7e:a7:41:3f:
                    cb:c9:c5:5c:e4:6c:fb:5a:83:26:04:fa:0c:37:b5:8f:
                    9c:29:c6:d7:9b:a3:72:b3:b4:ac:06:75:87:56:59:d7:
                    62:f0:ee:7d:43:fd:b7:4b:ee:51:64:5f:1a:9f:f0:64:
                    53:8e:f8:2b:09:8d:24:12:87:15:b6:ea:64:ce:55:35:
                    ba:e6:46:39:7a:5d:21:07:5d:78:12:bf:90:16:c8:33:
                    8d:56:9b:c1:1b:68:ee:1b:14:4a:43:09:e4:83:b1:87:
                    b7:4f:87:75:60:ab:3a:d8:dc:4b:8c:7c:a0:04:27:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:24:65:be:86:a8:f9:f7:9e:ae:9b:bc:08:ea:bf:4f:
        7b:3a:a8:00:d7:b6:bb:3f:ea:8e:16:48:ea:2d:42:c9:
        0c:1e:4f:8a:ee:50:b1:4a:bd:21:86:28:39:ed:d3:6d:
        13:f1:63:63:01:74:87:b6:e0:8f:61:42:4c:0e:58:62:
        55:dc:d0:75:ce:f4:ad:28:02:55:c8:d7:6d:c8:20:8f:
        38:0c:96:3d:e7:5c:39:ae:8b:2d:3f:4a:85:f8:e7:0f:
        2e:5b:f4:05:39:48:01:6d:12:39:e2:70:df:25:36:5d:
        33:fc:b9:8f:e7:71:d3:51:0d:b2:32:f8:a3:75:c8:bc:
        31:c8:ed:64:41:46:41:21:8c:85:59:6f:b0:de:5b:75:
        b7:8b:9b:8b:06:49:6e:b8:a0:6a:14:cf:25:52:7b:c1:
        d0:5a:a8:b2:b9:ba:77:ec:16:ff:c6:0c:da:b0:98:c4:
        72:e6:61:4a:89:40:40:80:7f:a9:7a:fe:82:8b:96:5d:
        52:99:e7:58:58:a8:2a:89:1d:5c:98:3e:f6:0e:57:e3:
        53:80:da:1d:70:8a:03:e1:d2:50:5b:4e:8e:7a:7c:b7:
        ed:4e:ff:f1:fd:aa:53:db:c2:2e:7a:06:fc:53:23:38:
        86:4d:45:90:ba:d8:5a:48:31:78:f5:77:a6:82:5c:3f
    Fingerprint (SHA-256):
        CE:06:A2:D2:12:67:85:70:FE:B2:17:64:E7:4D:1D:F7:DC:7A:E2:79:C5:16:3D:6E:7F:B7:DC:62:20:14:A8:A0
    Fingerprint (SHA1):
        91:EF:0C:4C:8C:78:91:47:45:14:63:B2:77:F0:B0:EA:D3:25:FA:D2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2732: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2733: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2734: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2735: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2736: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152953 (0x1dee3ef9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:42 2017
            Not After : Mon May 02 15:29:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:b3:c2:29:91:27:a4:86:1d:09:8b:1a:28:4e:9a:a9:
                    e3:5b:95:81:42:30:75:e7:f9:a6:7d:91:5a:00:e2:0f:
                    8a:0e:eb:f5:20:9f:c1:28:f4:40:0f:a7:e8:71:47:45:
                    b5:f0:47:9c:46:70:6c:33:32:4b:0f:0f:2b:9f:70:49:
                    40:61:40:74:45:21:b8:66:4f:7a:d4:67:e6:83:9b:19:
                    9e:2a:22:82:d1:7f:7a:30:ca:47:a5:78:97:8e:68:b7:
                    b1:0b:ea:f9:46:29:1a:2c:45:b3:59:2d:85:22:6f:41:
                    22:73:65:0e:8d:09:6a:e4:4e:c1:db:9a:8a:d6:95:e8:
                    b2:43:fa:07:8e:b1:98:80:9a:50:dd:a4:bd:f6:e8:86:
                    94:04:2c:75:5e:17:ee:d2:a1:2f:47:e9:20:4b:97:05:
                    e9:ac:5c:c7:ba:f5:3a:d6:ba:c0:96:8a:64:dc:c3:3c:
                    8b:9a:b6:12:99:a9:a8:70:84:e6:8e:3e:3e:ca:59:13:
                    6d:7d:cd:17:05:d9:cc:67:7b:87:3b:09:be:83:44:91:
                    e6:7b:a2:5b:e5:d0:a1:da:6b:91:a0:2e:a0:70:fd:20:
                    f0:39:d7:cc:8d:70:3b:76:50:b6:4b:aa:64:34:88:bd:
                    f2:b3:b4:0b:87:d2:78:1b:5c:ad:1d:c2:cd:ca:54:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f0:47:b9:d6:11:18:ed:65:6f:3a:28:80:a3:24:31:
        34:47:7f:bb:ad:3b:84:fd:3b:27:63:69:a6:8b:4c:11:
        d9:e5:6c:5b:11:b3:bc:bb:30:00:71:bc:58:7a:64:2d:
        68:b3:c0:3d:d2:c4:06:2d:8b:52:cb:67:e5:f5:97:b3:
        d8:88:a9:2b:47:48:63:04:39:30:e2:5d:71:c4:5e:97:
        5b:43:7e:d3:11:82:5e:78:9f:36:fd:8c:4c:cc:67:e2:
        0b:08:63:93:b7:de:16:40:a2:b5:14:e1:9c:5c:b8:f1:
        6e:76:ee:fc:42:a8:7a:31:2a:b8:94:ee:85:e4:a0:8a:
        44:d4:de:2d:c2:c0:77:37:ec:1a:60:8d:27:f3:ad:ae:
        67:c4:f8:7e:2c:2b:39:a5:1d:87:7f:de:57:1a:84:3f:
        b8:da:1e:dc:33:50:dc:b0:3f:e9:97:bf:bf:e6:63:2a:
        48:ca:71:3a:62:a1:a2:56:1e:b7:71:1a:34:d9:4c:98:
        7e:e2:6f:4f:7f:e8:61:a3:b4:c4:ce:16:02:7e:19:f7:
        6f:66:49:2f:4b:c6:7f:45:d9:ed:3f:15:8b:50:ae:8f:
        35:9e:f6:d8:2b:4a:ff:cb:bd:99:54:1d:13:91:16:bf:
        4b:48:09:b8:2e:18:12:a4:cb:2a:0f:bb:e6:93:aa:5d
    Fingerprint (SHA-256):
        26:0D:8C:1B:FA:D0:AC:09:C4:80:D8:CC:BF:49:2F:C7:45:67:93:86:7D:00:08:0C:44:59:71:32:0E:58:F3:6A
    Fingerprint (SHA1):
        1B:E6:0C:29:A9:28:01:91:4B:90:C3:75:F6:9B:AB:99:11:5F:F4:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2737: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2738: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152954 (0x1dee3efa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:42 2017
            Not After : Mon May 02 15:29:42 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:7b:16:24:b8:98:fd:53:2f:08:3d:06:fc:6b:81:5b:
                    e2:4e:b1:1f:b8:48:83:f2:e9:6e:ba:2c:c3:55:9d:8a:
                    f4:b9:59:66:69:87:dc:7c:56:20:4f:c7:4e:ab:23:d2:
                    ee:24:3a:35:0c:60:74:b2:47:34:f0:2d:42:fa:1b:3d:
                    8b:22:9b:74:5a:76:f0:c9:ab:8c:bf:3f:ca:28:ff:79:
                    fb:be:b0:67:f9:a3:ca:f0:40:a0:97:c3:1b:27:46:a7:
                    90:65:12:70:b0:d8:f0:bb:cf:60:da:62:5e:3f:71:1f:
                    b6:41:0d:5e:19:ae:02:d8:89:b4:30:1f:af:83:08:27:
                    f6:19:b1:4b:39:f0:4d:d3:9a:5f:44:c1:1d:03:73:94:
                    9b:d1:82:34:93:b8:13:46:36:a4:31:43:eb:51:c0:ae:
                    75:39:ff:5a:c3:74:c9:1f:c8:be:66:cb:58:66:5b:88:
                    3f:ef:94:e2:dd:60:04:83:53:83:8f:05:7d:95:0f:dd:
                    4c:1b:eb:4e:71:6c:9f:f4:4c:59:b8:a5:b5:df:0e:1e:
                    48:02:a1:12:ff:1a:25:d2:f9:9c:f0:9b:17:53:19:0c:
                    37:a5:95:6e:bc:78:ed:35:f2:05:a6:27:e8:cc:52:57:
                    c0:69:be:9c:9e:77:7e:36:62:4e:40:ac:43:cb:f5:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:67:13:21:74:3f:4c:8c:04:e3:dc:6c:de:67:72:72:
        18:86:33:c3:2e:79:72:a5:e7:7f:0c:76:61:3f:9e:b3:
        47:b4:b8:c5:f6:be:f0:c2:6a:98:99:17:04:3a:03:7f:
        7a:48:56:74:b0:e5:b5:d5:bd:45:8d:98:81:96:83:00:
        0e:32:30:a1:f8:eb:0f:04:be:77:c8:79:e8:7d:ff:f3:
        4b:97:ae:1d:9a:2b:55:74:86:d5:b8:8c:aa:6b:e2:b6:
        c3:0e:20:ba:a5:c5:33:ca:82:ea:1d:f8:ee:7e:a4:7d:
        8d:10:bf:c6:94:8b:9d:22:8c:5c:7d:86:fd:70:85:67:
        35:8b:7e:f6:c4:5d:fb:3b:1e:4c:f3:67:0e:59:c9:80:
        55:ad:d9:bf:f7:89:98:0d:59:e1:9d:4b:53:c0:a1:41:
        43:a0:73:1c:65:35:50:15:ba:f6:a8:8d:d6:2a:ca:a4:
        98:c6:4f:30:79:b0:92:53:88:f1:c1:2e:cf:b4:67:41:
        d2:e3:fb:b5:83:d1:c8:85:03:08:fe:d9:09:66:f8:4a:
        e7:90:b8:20:3b:98:c3:a9:4f:a8:eb:6c:f4:e0:b1:d5:
        1f:cf:5a:d4:3a:f6:ea:3f:53:8b:56:77:a1:f1:e6:4a:
        fa:bf:a5:2a:6f:40:3f:2b:9c:78:38:76:27:b2:da:8d
    Fingerprint (SHA-256):
        DE:2A:3F:86:EA:82:12:C0:E2:07:19:0B:85:F8:6B:63:57:A2:94:94:F8:34:7E:C6:CC:E0:3C:08:11:89:0C:97
    Fingerprint (SHA1):
        BB:0F:14:E2:85:0C:29:37:AE:FD:34:EF:26:57:16:28:0F:7B:32:20
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2739: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2740: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152955 (0x1dee3efb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:29:42 2017
            Not After : Mon May 02 15:29:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:37:fd:23:61:2d:bd:c0:b8:09:24:68:4b:fd:5f:5a:
                    b7:73:25:62:fa:7a:86:af:f5:f2:2c:a9:b0:00:2d:41:
                    dc:ae:99:4c:99:d1:d4:47:fc:fa:f4:41:49:a7:09:1d:
                    94:9b:57:b3:dd:9b:b3:3f:05:d5:ed:bf:fd:03:76:6d:
                    c1:79:de:36:3a:54:f0:df:20:ad:ca:fb:98:56:f4:e1:
                    74:a4:ea:7d:d3:3f:fd:8b:b4:91:6d:38:21:ab:22:76:
                    08:17:9b:a4:0e:e6:88:64:ab:4a:81:38:68:35:9a:d8:
                    26:2b:b7:53:e3:05:8f:69:7b:2b:f1:a4:2a:c1:d2:05:
                    95:5d:df:68:0c:dd:fa:3e:15:14:0f:22:7e:a7:41:3f:
                    cb:c9:c5:5c:e4:6c:fb:5a:83:26:04:fa:0c:37:b5:8f:
                    9c:29:c6:d7:9b:a3:72:b3:b4:ac:06:75:87:56:59:d7:
                    62:f0:ee:7d:43:fd:b7:4b:ee:51:64:5f:1a:9f:f0:64:
                    53:8e:f8:2b:09:8d:24:12:87:15:b6:ea:64:ce:55:35:
                    ba:e6:46:39:7a:5d:21:07:5d:78:12:bf:90:16:c8:33:
                    8d:56:9b:c1:1b:68:ee:1b:14:4a:43:09:e4:83:b1:87:
                    b7:4f:87:75:60:ab:3a:d8:dc:4b:8c:7c:a0:04:27:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:24:65:be:86:a8:f9:f7:9e:ae:9b:bc:08:ea:bf:4f:
        7b:3a:a8:00:d7:b6:bb:3f:ea:8e:16:48:ea:2d:42:c9:
        0c:1e:4f:8a:ee:50:b1:4a:bd:21:86:28:39:ed:d3:6d:
        13:f1:63:63:01:74:87:b6:e0:8f:61:42:4c:0e:58:62:
        55:dc:d0:75:ce:f4:ad:28:02:55:c8:d7:6d:c8:20:8f:
        38:0c:96:3d:e7:5c:39:ae:8b:2d:3f:4a:85:f8:e7:0f:
        2e:5b:f4:05:39:48:01:6d:12:39:e2:70:df:25:36:5d:
        33:fc:b9:8f:e7:71:d3:51:0d:b2:32:f8:a3:75:c8:bc:
        31:c8:ed:64:41:46:41:21:8c:85:59:6f:b0:de:5b:75:
        b7:8b:9b:8b:06:49:6e:b8:a0:6a:14:cf:25:52:7b:c1:
        d0:5a:a8:b2:b9:ba:77:ec:16:ff:c6:0c:da:b0:98:c4:
        72:e6:61:4a:89:40:40:80:7f:a9:7a:fe:82:8b:96:5d:
        52:99:e7:58:58:a8:2a:89:1d:5c:98:3e:f6:0e:57:e3:
        53:80:da:1d:70:8a:03:e1:d2:50:5b:4e:8e:7a:7c:b7:
        ed:4e:ff:f1:fd:aa:53:db:c2:2e:7a:06:fc:53:23:38:
        86:4d:45:90:ba:d8:5a:48:31:78:f5:77:a6:82:5c:3f
    Fingerprint (SHA-256):
        CE:06:A2:D2:12:67:85:70:FE:B2:17:64:E7:4D:1D:F7:DC:7A:E2:79:C5:16:3D:6E:7F:B7:DC:62:20:14:A8:A0
    Fingerprint (SHA1):
        91:EF:0C:4C:8C:78:91:47:45:14:63:B2:77:F0:B0:EA:D3:25:FA:D2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2741: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2742: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2743: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152957 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2744: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2745: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2746: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2747: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502152958   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2748: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2749: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2750: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2751: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502152959   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2752: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2753: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2754: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2755: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502152960   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2756: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2757: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2758: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2759: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502152961   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2760: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2761: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2762: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152957 (0x1dee3efd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:97:c7:3d:9b:59:e1:e4:53:39:36:27:8f:0e:4e:f5:
                    a3:1f:25:54:47:82:a2:9b:2d:c3:45:d6:57:0a:46:57:
                    3d:ec:5c:df:5e:ab:07:b2:79:4a:4e:d9:b5:00:89:d1:
                    5c:c9:66:7a:c1:44:96:dc:61:27:7d:a2:93:46:2d:ae:
                    d9:2d:34:4a:78:2d:7e:a5:2c:af:fa:4b:4d:49:e1:56:
                    44:a3:18:48:e9:bf:54:69:24:62:28:73:d2:e3:60:ca:
                    9a:79:a7:87:c3:e5:7f:04:ac:eb:92:d3:26:fb:60:2f:
                    b4:97:22:8b:e8:c4:02:b7:86:96:ff:74:93:2e:57:f0:
                    67:e3:11:d1:36:37:35:42:8f:d4:9a:ab:6f:7f:ba:c3:
                    4a:8f:0c:8e:59:22:a2:46:18:d3:e9:9d:e1:c6:ad:50:
                    76:e1:28:38:29:25:52:70:e2:b9:0b:f9:60:dd:b4:2d:
                    9e:10:76:da:03:fb:29:67:95:3b:02:39:9b:f5:57:11:
                    18:ec:3c:30:14:e6:51:67:28:03:03:d4:a4:54:74:74:
                    23:78:79:5a:fd:75:6a:c7:13:f5:55:1a:ed:8f:74:14:
                    73:75:8b:9b:2e:9c:f5:f6:4b:1c:67:ee:95:55:3d:64:
                    e9:56:ab:d3:c1:0d:87:82:07:66:6e:c4:13:31:f8:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:c1:70:66:ca:45:c3:53:83:30:15:a6:4e:e1:3e:8b:
        f4:30:87:3d:f2:12:fe:da:5f:af:af:8a:33:ca:20:f7:
        31:0b:c5:15:67:33:2f:ab:a2:56:b1:9c:09:fa:73:7a:
        4f:ba:6b:0b:20:de:8c:b8:b8:ab:cc:e4:74:06:f4:66:
        a0:0e:17:ba:e3:4a:dd:65:eb:7e:ab:cc:1e:c0:0a:1d:
        a1:8d:e1:90:e5:d3:56:d7:7b:bd:b8:20:76:d7:cb:e5:
        cb:10:3f:27:0c:95:6b:d8:55:8a:ed:4d:5b:df:10:57:
        22:39:78:64:6d:a2:bb:33:90:07:86:9c:88:1e:2d:09:
        13:78:43:e3:e6:53:4e:84:a3:c7:0f:66:99:9d:11:f7:
        9d:25:71:cf:0c:c2:cb:83:04:a7:26:c9:25:19:6c:e8:
        f3:78:cd:6d:e6:e3:4a:05:14:7e:36:c8:d0:c6:f0:f8:
        97:d6:12:7a:24:e5:dc:f2:f1:d3:cf:22:3e:1f:4a:3d:
        d3:9d:f5:60:18:48:a8:20:02:87:11:30:6f:5d:9d:fd:
        31:65:c3:86:2e:24:d2:a3:80:3b:1b:9c:63:5e:fa:e5:
        35:c5:13:a8:32:bd:9b:69:73:ba:20:ef:83:c3:d5:80:
        32:e9:ac:d9:92:15:37:ba:0e:30:ff:e1:3a:d3:ae:65
    Fingerprint (SHA-256):
        2C:B4:38:E5:F6:B6:FB:3D:A3:3F:41:B0:55:48:61:C7:A1:43:E9:16:9F:52:18:9F:5E:1A:1C:84:56:70:2D:D1
    Fingerprint (SHA1):
        A3:E6:E9:03:EB:28:7A:F6:91:23:7E:F8:BA:E1:3F:7B:4F:71:B4:F4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2763: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2764: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152958 (0x1dee3efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:5f:2b:b6:2e:cf:98:17:29:3b:d9:61:f9:03:a0:5a:
                    6b:c2:ab:05:4f:84:a0:28:df:df:b0:8f:60:fd:84:77:
                    61:8a:7a:63:6e:df:ce:30:66:c1:fa:21:b0:df:60:5f:
                    e8:4e:2c:a7:86:9a:1d:16:01:70:42:b0:75:17:c6:52:
                    e9:cb:85:0f:02:fc:ca:47:80:84:01:3d:5d:46:62:b7:
                    b9:14:af:81:92:26:f4:d7:5d:29:86:9c:53:5f:79:10:
                    ee:07:a6:e6:cf:98:96:5c:67:ef:5c:7d:a2:65:4d:8e:
                    d6:96:0f:9f:e1:48:92:be:82:58:e6:54:58:e6:5e:08:
                    94:c9:0e:26:31:e3:c2:25:fb:7f:0c:e9:f8:cb:06:e5:
                    2e:e3:d7:50:07:8f:ec:b9:55:e8:e2:40:aa:16:a4:bc:
                    36:91:ae:18:49:b8:32:75:d1:8c:58:b2:7c:24:b3:97:
                    4e:ce:97:6f:5f:7c:04:ed:e9:de:4d:40:60:58:d2:4b:
                    a9:9b:22:f9:33:44:01:a8:26:5a:32:8e:bd:6e:00:81:
                    51:49:b8:f8:c3:59:2d:9a:5a:ef:ef:0d:fc:b3:f4:f7:
                    aa:a2:4a:38:9f:36:20:b5:06:7c:67:01:ad:d6:e9:0a:
                    e2:b4:c2:c6:83:7e:93:24:fc:b5:82:11:a9:ff:22:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ed:8f:cb:75:98:58:c9:a1:d6:0a:02:5c:69:50:0f:
        28:22:9b:b6:5a:a7:29:c1:4a:74:52:f6:d0:97:a6:cb:
        88:b1:4e:42:94:89:90:16:5a:8f:d2:42:4c:f2:1d:28:
        1d:4e:7b:bf:f3:2e:57:46:e6:ca:e7:fe:12:14:73:84:
        c8:9e:bc:9a:65:7b:a2:5a:89:9f:1b:90:0d:f7:62:dc:
        1e:03:cc:93:4e:90:22:9e:81:88:9a:d0:04:7e:d0:d0:
        ea:4e:42:1d:7d:bb:c4:60:b9:1e:a2:f2:d0:aa:74:db:
        4f:e0:ee:fd:dd:e5:84:58:9e:dd:c3:29:50:4f:6d:e1:
        e1:b3:b2:e4:bd:53:7b:bc:13:a0:ee:45:53:b4:0c:d5:
        a6:da:aa:4f:fe:51:7d:cc:83:a3:f0:ea:b6:95:3f:c7:
        3f:48:fb:52:15:ec:a5:e9:79:60:bc:af:98:73:ea:bb:
        bb:b8:5b:72:3b:a1:6b:4a:92:31:5a:3b:d2:bb:6c:b8:
        25:56:d4:5d:35:59:16:92:40:ce:db:5a:98:0d:3d:65:
        f4:bc:af:88:87:32:94:84:c5:21:40:6a:e9:6d:31:29:
        01:11:f0:1a:b9:1d:e1:c2:63:4d:fa:49:08:68:ed:8c:
        bc:97:0c:ca:67:70:49:25:c8:f0:e7:2e:03:e6:e1:3c
    Fingerprint (SHA-256):
        D0:E6:DE:6C:14:79:0A:C3:F2:AE:B1:62:2F:C7:1A:52:BD:D3:FA:0B:15:96:1B:E6:00:7A:3B:8E:9D:94:C4:59
    Fingerprint (SHA1):
        CC:91:1F:FA:58:96:F9:9F:CF:86:91:C5:D0:F4:E4:AE:F5:A7:73:18
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2765: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2766: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152959 (0x1dee3eff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b4:e9:59:42:fa:4f:44:75:8a:34:d8:47:e1:60:02:
                    32:15:19:60:ed:bc:c8:a8:be:19:da:b5:1c:37:1e:44:
                    2a:64:dc:45:3e:71:ac:e1:be:79:bf:ac:65:88:4a:88:
                    22:b3:80:1b:8d:b3:2f:52:7a:08:2f:08:10:69:3c:d4:
                    aa:23:1b:9d:78:e4:b9:1b:98:8b:fc:83:e1:f5:79:61:
                    aa:ba:cb:01:bb:78:07:13:bb:3c:19:27:3b:a3:21:f3:
                    7a:5d:54:16:aa:88:7c:cc:8b:19:8a:02:30:03:ff:42:
                    41:67:93:ce:4d:51:a4:1a:c1:5c:09:cd:62:67:bb:ec:
                    fd:eb:ec:9a:ba:53:b6:f8:79:ce:66:63:9a:f6:9a:f9:
                    c9:56:da:4b:d5:04:5d:31:12:ab:eb:19:f6:80:d3:ad:
                    51:c4:4c:3c:c8:74:3e:67:df:c4:24:db:df:a3:9c:36:
                    8c:e7:f4:ef:ea:b1:f0:01:1e:b5:0e:4d:90:fa:b2:77:
                    66:8d:0f:32:16:cf:08:d8:57:82:10:87:8f:0f:a4:84:
                    bf:cc:2a:2e:49:c3:fe:d3:aa:e5:d4:97:0d:87:0b:cb:
                    8c:c4:1b:dd:1b:a6:47:fb:e7:7c:c7:ca:1e:6e:0c:4b:
                    66:e0:5d:a5:a0:e1:44:4e:73:c1:34:cd:69:a1:09:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:87:7d:8c:ef:6d:03:a9:d2:83:02:6e:7b:90:58:5f:
        67:30:21:ff:46:1c:8c:8c:a6:93:ef:24:87:db:15:1d:
        cf:8f:a1:6e:32:1f:db:b1:cd:af:14:87:33:13:0e:8a:
        bd:77:0d:eb:0a:14:3a:ff:4f:47:78:b4:e4:eb:65:79:
        64:d5:9c:68:90:18:28:8f:08:ef:6f:16:d4:0f:89:9d:
        69:f0:3b:9b:42:b9:90:fe:49:1b:0c:e9:19:27:d2:fb:
        d6:c4:5f:70:5c:66:23:8e:96:6d:30:fc:19:74:0e:ba:
        e5:95:3a:6c:67:3b:be:0d:1b:33:3d:91:64:fe:4a:99:
        cc:f2:4b:6a:fc:96:41:f5:78:4e:ac:35:2d:73:c9:1f:
        c5:8b:ab:f8:17:8e:47:1f:0a:3e:4c:0d:87:2e:07:2f:
        53:7d:55:08:70:f5:09:5d:28:c9:0e:7b:21:dc:f0:0e:
        c0:dc:e7:59:b8:57:f9:58:a9:e7:53:d0:a7:e0:48:39:
        19:84:15:2e:31:75:86:93:ba:3a:e4:a2:d8:db:0c:62:
        a0:04:ec:75:88:dc:5e:4e:74:80:35:87:7d:9e:d0:52:
        a5:c2:c4:c7:7e:6c:f0:26:f7:d0:b3:25:1f:56:67:ea:
        26:46:e4:8c:56:76:91:24:9e:6c:c8:80:dd:83:48:38
    Fingerprint (SHA-256):
        59:CE:16:5D:0D:1A:DE:7F:2E:32:D5:FF:2C:85:1E:ED:2E:73:DF:F2:F7:02:02:14:F3:7B:6B:49:D0:EA:1C:F8
    Fingerprint (SHA1):
        27:79:8E:86:E8:7E:52:CF:2F:BB:0C:6B:7E:E6:AB:CA:37:F5:11:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2767: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2768: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2769: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2770: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2771: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152957 (0x1dee3efd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:97:c7:3d:9b:59:e1:e4:53:39:36:27:8f:0e:4e:f5:
                    a3:1f:25:54:47:82:a2:9b:2d:c3:45:d6:57:0a:46:57:
                    3d:ec:5c:df:5e:ab:07:b2:79:4a:4e:d9:b5:00:89:d1:
                    5c:c9:66:7a:c1:44:96:dc:61:27:7d:a2:93:46:2d:ae:
                    d9:2d:34:4a:78:2d:7e:a5:2c:af:fa:4b:4d:49:e1:56:
                    44:a3:18:48:e9:bf:54:69:24:62:28:73:d2:e3:60:ca:
                    9a:79:a7:87:c3:e5:7f:04:ac:eb:92:d3:26:fb:60:2f:
                    b4:97:22:8b:e8:c4:02:b7:86:96:ff:74:93:2e:57:f0:
                    67:e3:11:d1:36:37:35:42:8f:d4:9a:ab:6f:7f:ba:c3:
                    4a:8f:0c:8e:59:22:a2:46:18:d3:e9:9d:e1:c6:ad:50:
                    76:e1:28:38:29:25:52:70:e2:b9:0b:f9:60:dd:b4:2d:
                    9e:10:76:da:03:fb:29:67:95:3b:02:39:9b:f5:57:11:
                    18:ec:3c:30:14:e6:51:67:28:03:03:d4:a4:54:74:74:
                    23:78:79:5a:fd:75:6a:c7:13:f5:55:1a:ed:8f:74:14:
                    73:75:8b:9b:2e:9c:f5:f6:4b:1c:67:ee:95:55:3d:64:
                    e9:56:ab:d3:c1:0d:87:82:07:66:6e:c4:13:31:f8:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:c1:70:66:ca:45:c3:53:83:30:15:a6:4e:e1:3e:8b:
        f4:30:87:3d:f2:12:fe:da:5f:af:af:8a:33:ca:20:f7:
        31:0b:c5:15:67:33:2f:ab:a2:56:b1:9c:09:fa:73:7a:
        4f:ba:6b:0b:20:de:8c:b8:b8:ab:cc:e4:74:06:f4:66:
        a0:0e:17:ba:e3:4a:dd:65:eb:7e:ab:cc:1e:c0:0a:1d:
        a1:8d:e1:90:e5:d3:56:d7:7b:bd:b8:20:76:d7:cb:e5:
        cb:10:3f:27:0c:95:6b:d8:55:8a:ed:4d:5b:df:10:57:
        22:39:78:64:6d:a2:bb:33:90:07:86:9c:88:1e:2d:09:
        13:78:43:e3:e6:53:4e:84:a3:c7:0f:66:99:9d:11:f7:
        9d:25:71:cf:0c:c2:cb:83:04:a7:26:c9:25:19:6c:e8:
        f3:78:cd:6d:e6:e3:4a:05:14:7e:36:c8:d0:c6:f0:f8:
        97:d6:12:7a:24:e5:dc:f2:f1:d3:cf:22:3e:1f:4a:3d:
        d3:9d:f5:60:18:48:a8:20:02:87:11:30:6f:5d:9d:fd:
        31:65:c3:86:2e:24:d2:a3:80:3b:1b:9c:63:5e:fa:e5:
        35:c5:13:a8:32:bd:9b:69:73:ba:20:ef:83:c3:d5:80:
        32:e9:ac:d9:92:15:37:ba:0e:30:ff:e1:3a:d3:ae:65
    Fingerprint (SHA-256):
        2C:B4:38:E5:F6:B6:FB:3D:A3:3F:41:B0:55:48:61:C7:A1:43:E9:16:9F:52:18:9F:5E:1A:1C:84:56:70:2D:D1
    Fingerprint (SHA1):
        A3:E6:E9:03:EB:28:7A:F6:91:23:7E:F8:BA:E1:3F:7B:4F:71:B4:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2772: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2773: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152958 (0x1dee3efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:5f:2b:b6:2e:cf:98:17:29:3b:d9:61:f9:03:a0:5a:
                    6b:c2:ab:05:4f:84:a0:28:df:df:b0:8f:60:fd:84:77:
                    61:8a:7a:63:6e:df:ce:30:66:c1:fa:21:b0:df:60:5f:
                    e8:4e:2c:a7:86:9a:1d:16:01:70:42:b0:75:17:c6:52:
                    e9:cb:85:0f:02:fc:ca:47:80:84:01:3d:5d:46:62:b7:
                    b9:14:af:81:92:26:f4:d7:5d:29:86:9c:53:5f:79:10:
                    ee:07:a6:e6:cf:98:96:5c:67:ef:5c:7d:a2:65:4d:8e:
                    d6:96:0f:9f:e1:48:92:be:82:58:e6:54:58:e6:5e:08:
                    94:c9:0e:26:31:e3:c2:25:fb:7f:0c:e9:f8:cb:06:e5:
                    2e:e3:d7:50:07:8f:ec:b9:55:e8:e2:40:aa:16:a4:bc:
                    36:91:ae:18:49:b8:32:75:d1:8c:58:b2:7c:24:b3:97:
                    4e:ce:97:6f:5f:7c:04:ed:e9:de:4d:40:60:58:d2:4b:
                    a9:9b:22:f9:33:44:01:a8:26:5a:32:8e:bd:6e:00:81:
                    51:49:b8:f8:c3:59:2d:9a:5a:ef:ef:0d:fc:b3:f4:f7:
                    aa:a2:4a:38:9f:36:20:b5:06:7c:67:01:ad:d6:e9:0a:
                    e2:b4:c2:c6:83:7e:93:24:fc:b5:82:11:a9:ff:22:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ed:8f:cb:75:98:58:c9:a1:d6:0a:02:5c:69:50:0f:
        28:22:9b:b6:5a:a7:29:c1:4a:74:52:f6:d0:97:a6:cb:
        88:b1:4e:42:94:89:90:16:5a:8f:d2:42:4c:f2:1d:28:
        1d:4e:7b:bf:f3:2e:57:46:e6:ca:e7:fe:12:14:73:84:
        c8:9e:bc:9a:65:7b:a2:5a:89:9f:1b:90:0d:f7:62:dc:
        1e:03:cc:93:4e:90:22:9e:81:88:9a:d0:04:7e:d0:d0:
        ea:4e:42:1d:7d:bb:c4:60:b9:1e:a2:f2:d0:aa:74:db:
        4f:e0:ee:fd:dd:e5:84:58:9e:dd:c3:29:50:4f:6d:e1:
        e1:b3:b2:e4:bd:53:7b:bc:13:a0:ee:45:53:b4:0c:d5:
        a6:da:aa:4f:fe:51:7d:cc:83:a3:f0:ea:b6:95:3f:c7:
        3f:48:fb:52:15:ec:a5:e9:79:60:bc:af:98:73:ea:bb:
        bb:b8:5b:72:3b:a1:6b:4a:92:31:5a:3b:d2:bb:6c:b8:
        25:56:d4:5d:35:59:16:92:40:ce:db:5a:98:0d:3d:65:
        f4:bc:af:88:87:32:94:84:c5:21:40:6a:e9:6d:31:29:
        01:11:f0:1a:b9:1d:e1:c2:63:4d:fa:49:08:68:ed:8c:
        bc:97:0c:ca:67:70:49:25:c8:f0:e7:2e:03:e6:e1:3c
    Fingerprint (SHA-256):
        D0:E6:DE:6C:14:79:0A:C3:F2:AE:B1:62:2F:C7:1A:52:BD:D3:FA:0B:15:96:1B:E6:00:7A:3B:8E:9D:94:C4:59
    Fingerprint (SHA1):
        CC:91:1F:FA:58:96:F9:9F:CF:86:91:C5:D0:F4:E4:AE:F5:A7:73:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2774: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2775: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152959 (0x1dee3eff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b4:e9:59:42:fa:4f:44:75:8a:34:d8:47:e1:60:02:
                    32:15:19:60:ed:bc:c8:a8:be:19:da:b5:1c:37:1e:44:
                    2a:64:dc:45:3e:71:ac:e1:be:79:bf:ac:65:88:4a:88:
                    22:b3:80:1b:8d:b3:2f:52:7a:08:2f:08:10:69:3c:d4:
                    aa:23:1b:9d:78:e4:b9:1b:98:8b:fc:83:e1:f5:79:61:
                    aa:ba:cb:01:bb:78:07:13:bb:3c:19:27:3b:a3:21:f3:
                    7a:5d:54:16:aa:88:7c:cc:8b:19:8a:02:30:03:ff:42:
                    41:67:93:ce:4d:51:a4:1a:c1:5c:09:cd:62:67:bb:ec:
                    fd:eb:ec:9a:ba:53:b6:f8:79:ce:66:63:9a:f6:9a:f9:
                    c9:56:da:4b:d5:04:5d:31:12:ab:eb:19:f6:80:d3:ad:
                    51:c4:4c:3c:c8:74:3e:67:df:c4:24:db:df:a3:9c:36:
                    8c:e7:f4:ef:ea:b1:f0:01:1e:b5:0e:4d:90:fa:b2:77:
                    66:8d:0f:32:16:cf:08:d8:57:82:10:87:8f:0f:a4:84:
                    bf:cc:2a:2e:49:c3:fe:d3:aa:e5:d4:97:0d:87:0b:cb:
                    8c:c4:1b:dd:1b:a6:47:fb:e7:7c:c7:ca:1e:6e:0c:4b:
                    66:e0:5d:a5:a0:e1:44:4e:73:c1:34:cd:69:a1:09:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:87:7d:8c:ef:6d:03:a9:d2:83:02:6e:7b:90:58:5f:
        67:30:21:ff:46:1c:8c:8c:a6:93:ef:24:87:db:15:1d:
        cf:8f:a1:6e:32:1f:db:b1:cd:af:14:87:33:13:0e:8a:
        bd:77:0d:eb:0a:14:3a:ff:4f:47:78:b4:e4:eb:65:79:
        64:d5:9c:68:90:18:28:8f:08:ef:6f:16:d4:0f:89:9d:
        69:f0:3b:9b:42:b9:90:fe:49:1b:0c:e9:19:27:d2:fb:
        d6:c4:5f:70:5c:66:23:8e:96:6d:30:fc:19:74:0e:ba:
        e5:95:3a:6c:67:3b:be:0d:1b:33:3d:91:64:fe:4a:99:
        cc:f2:4b:6a:fc:96:41:f5:78:4e:ac:35:2d:73:c9:1f:
        c5:8b:ab:f8:17:8e:47:1f:0a:3e:4c:0d:87:2e:07:2f:
        53:7d:55:08:70:f5:09:5d:28:c9:0e:7b:21:dc:f0:0e:
        c0:dc:e7:59:b8:57:f9:58:a9:e7:53:d0:a7:e0:48:39:
        19:84:15:2e:31:75:86:93:ba:3a:e4:a2:d8:db:0c:62:
        a0:04:ec:75:88:dc:5e:4e:74:80:35:87:7d:9e:d0:52:
        a5:c2:c4:c7:7e:6c:f0:26:f7:d0:b3:25:1f:56:67:ea:
        26:46:e4:8c:56:76:91:24:9e:6c:c8:80:dd:83:48:38
    Fingerprint (SHA-256):
        59:CE:16:5D:0D:1A:DE:7F:2E:32:D5:FF:2C:85:1E:ED:2E:73:DF:F2:F7:02:02:14:F3:7B:6B:49:D0:EA:1C:F8
    Fingerprint (SHA1):
        27:79:8E:86:E8:7E:52:CF:2F:BB:0C:6B:7E:E6:AB:CA:37:F5:11:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2776: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2777: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152957 (0x1dee3efd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:97:c7:3d:9b:59:e1:e4:53:39:36:27:8f:0e:4e:f5:
                    a3:1f:25:54:47:82:a2:9b:2d:c3:45:d6:57:0a:46:57:
                    3d:ec:5c:df:5e:ab:07:b2:79:4a:4e:d9:b5:00:89:d1:
                    5c:c9:66:7a:c1:44:96:dc:61:27:7d:a2:93:46:2d:ae:
                    d9:2d:34:4a:78:2d:7e:a5:2c:af:fa:4b:4d:49:e1:56:
                    44:a3:18:48:e9:bf:54:69:24:62:28:73:d2:e3:60:ca:
                    9a:79:a7:87:c3:e5:7f:04:ac:eb:92:d3:26:fb:60:2f:
                    b4:97:22:8b:e8:c4:02:b7:86:96:ff:74:93:2e:57:f0:
                    67:e3:11:d1:36:37:35:42:8f:d4:9a:ab:6f:7f:ba:c3:
                    4a:8f:0c:8e:59:22:a2:46:18:d3:e9:9d:e1:c6:ad:50:
                    76:e1:28:38:29:25:52:70:e2:b9:0b:f9:60:dd:b4:2d:
                    9e:10:76:da:03:fb:29:67:95:3b:02:39:9b:f5:57:11:
                    18:ec:3c:30:14:e6:51:67:28:03:03:d4:a4:54:74:74:
                    23:78:79:5a:fd:75:6a:c7:13:f5:55:1a:ed:8f:74:14:
                    73:75:8b:9b:2e:9c:f5:f6:4b:1c:67:ee:95:55:3d:64:
                    e9:56:ab:d3:c1:0d:87:82:07:66:6e:c4:13:31:f8:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:c1:70:66:ca:45:c3:53:83:30:15:a6:4e:e1:3e:8b:
        f4:30:87:3d:f2:12:fe:da:5f:af:af:8a:33:ca:20:f7:
        31:0b:c5:15:67:33:2f:ab:a2:56:b1:9c:09:fa:73:7a:
        4f:ba:6b:0b:20:de:8c:b8:b8:ab:cc:e4:74:06:f4:66:
        a0:0e:17:ba:e3:4a:dd:65:eb:7e:ab:cc:1e:c0:0a:1d:
        a1:8d:e1:90:e5:d3:56:d7:7b:bd:b8:20:76:d7:cb:e5:
        cb:10:3f:27:0c:95:6b:d8:55:8a:ed:4d:5b:df:10:57:
        22:39:78:64:6d:a2:bb:33:90:07:86:9c:88:1e:2d:09:
        13:78:43:e3:e6:53:4e:84:a3:c7:0f:66:99:9d:11:f7:
        9d:25:71:cf:0c:c2:cb:83:04:a7:26:c9:25:19:6c:e8:
        f3:78:cd:6d:e6:e3:4a:05:14:7e:36:c8:d0:c6:f0:f8:
        97:d6:12:7a:24:e5:dc:f2:f1:d3:cf:22:3e:1f:4a:3d:
        d3:9d:f5:60:18:48:a8:20:02:87:11:30:6f:5d:9d:fd:
        31:65:c3:86:2e:24:d2:a3:80:3b:1b:9c:63:5e:fa:e5:
        35:c5:13:a8:32:bd:9b:69:73:ba:20:ef:83:c3:d5:80:
        32:e9:ac:d9:92:15:37:ba:0e:30:ff:e1:3a:d3:ae:65
    Fingerprint (SHA-256):
        2C:B4:38:E5:F6:B6:FB:3D:A3:3F:41:B0:55:48:61:C7:A1:43:E9:16:9F:52:18:9F:5E:1A:1C:84:56:70:2D:D1
    Fingerprint (SHA1):
        A3:E6:E9:03:EB:28:7A:F6:91:23:7E:F8:BA:E1:3F:7B:4F:71:B4:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2778: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152957 (0x1dee3efd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:97:c7:3d:9b:59:e1:e4:53:39:36:27:8f:0e:4e:f5:
                    a3:1f:25:54:47:82:a2:9b:2d:c3:45:d6:57:0a:46:57:
                    3d:ec:5c:df:5e:ab:07:b2:79:4a:4e:d9:b5:00:89:d1:
                    5c:c9:66:7a:c1:44:96:dc:61:27:7d:a2:93:46:2d:ae:
                    d9:2d:34:4a:78:2d:7e:a5:2c:af:fa:4b:4d:49:e1:56:
                    44:a3:18:48:e9:bf:54:69:24:62:28:73:d2:e3:60:ca:
                    9a:79:a7:87:c3:e5:7f:04:ac:eb:92:d3:26:fb:60:2f:
                    b4:97:22:8b:e8:c4:02:b7:86:96:ff:74:93:2e:57:f0:
                    67:e3:11:d1:36:37:35:42:8f:d4:9a:ab:6f:7f:ba:c3:
                    4a:8f:0c:8e:59:22:a2:46:18:d3:e9:9d:e1:c6:ad:50:
                    76:e1:28:38:29:25:52:70:e2:b9:0b:f9:60:dd:b4:2d:
                    9e:10:76:da:03:fb:29:67:95:3b:02:39:9b:f5:57:11:
                    18:ec:3c:30:14:e6:51:67:28:03:03:d4:a4:54:74:74:
                    23:78:79:5a:fd:75:6a:c7:13:f5:55:1a:ed:8f:74:14:
                    73:75:8b:9b:2e:9c:f5:f6:4b:1c:67:ee:95:55:3d:64:
                    e9:56:ab:d3:c1:0d:87:82:07:66:6e:c4:13:31:f8:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:c1:70:66:ca:45:c3:53:83:30:15:a6:4e:e1:3e:8b:
        f4:30:87:3d:f2:12:fe:da:5f:af:af:8a:33:ca:20:f7:
        31:0b:c5:15:67:33:2f:ab:a2:56:b1:9c:09:fa:73:7a:
        4f:ba:6b:0b:20:de:8c:b8:b8:ab:cc:e4:74:06:f4:66:
        a0:0e:17:ba:e3:4a:dd:65:eb:7e:ab:cc:1e:c0:0a:1d:
        a1:8d:e1:90:e5:d3:56:d7:7b:bd:b8:20:76:d7:cb:e5:
        cb:10:3f:27:0c:95:6b:d8:55:8a:ed:4d:5b:df:10:57:
        22:39:78:64:6d:a2:bb:33:90:07:86:9c:88:1e:2d:09:
        13:78:43:e3:e6:53:4e:84:a3:c7:0f:66:99:9d:11:f7:
        9d:25:71:cf:0c:c2:cb:83:04:a7:26:c9:25:19:6c:e8:
        f3:78:cd:6d:e6:e3:4a:05:14:7e:36:c8:d0:c6:f0:f8:
        97:d6:12:7a:24:e5:dc:f2:f1:d3:cf:22:3e:1f:4a:3d:
        d3:9d:f5:60:18:48:a8:20:02:87:11:30:6f:5d:9d:fd:
        31:65:c3:86:2e:24:d2:a3:80:3b:1b:9c:63:5e:fa:e5:
        35:c5:13:a8:32:bd:9b:69:73:ba:20:ef:83:c3:d5:80:
        32:e9:ac:d9:92:15:37:ba:0e:30:ff:e1:3a:d3:ae:65
    Fingerprint (SHA-256):
        2C:B4:38:E5:F6:B6:FB:3D:A3:3F:41:B0:55:48:61:C7:A1:43:E9:16:9F:52:18:9F:5E:1A:1C:84:56:70:2D:D1
    Fingerprint (SHA1):
        A3:E6:E9:03:EB:28:7A:F6:91:23:7E:F8:BA:E1:3F:7B:4F:71:B4:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2779: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152958 (0x1dee3efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:5f:2b:b6:2e:cf:98:17:29:3b:d9:61:f9:03:a0:5a:
                    6b:c2:ab:05:4f:84:a0:28:df:df:b0:8f:60:fd:84:77:
                    61:8a:7a:63:6e:df:ce:30:66:c1:fa:21:b0:df:60:5f:
                    e8:4e:2c:a7:86:9a:1d:16:01:70:42:b0:75:17:c6:52:
                    e9:cb:85:0f:02:fc:ca:47:80:84:01:3d:5d:46:62:b7:
                    b9:14:af:81:92:26:f4:d7:5d:29:86:9c:53:5f:79:10:
                    ee:07:a6:e6:cf:98:96:5c:67:ef:5c:7d:a2:65:4d:8e:
                    d6:96:0f:9f:e1:48:92:be:82:58:e6:54:58:e6:5e:08:
                    94:c9:0e:26:31:e3:c2:25:fb:7f:0c:e9:f8:cb:06:e5:
                    2e:e3:d7:50:07:8f:ec:b9:55:e8:e2:40:aa:16:a4:bc:
                    36:91:ae:18:49:b8:32:75:d1:8c:58:b2:7c:24:b3:97:
                    4e:ce:97:6f:5f:7c:04:ed:e9:de:4d:40:60:58:d2:4b:
                    a9:9b:22:f9:33:44:01:a8:26:5a:32:8e:bd:6e:00:81:
                    51:49:b8:f8:c3:59:2d:9a:5a:ef:ef:0d:fc:b3:f4:f7:
                    aa:a2:4a:38:9f:36:20:b5:06:7c:67:01:ad:d6:e9:0a:
                    e2:b4:c2:c6:83:7e:93:24:fc:b5:82:11:a9:ff:22:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ed:8f:cb:75:98:58:c9:a1:d6:0a:02:5c:69:50:0f:
        28:22:9b:b6:5a:a7:29:c1:4a:74:52:f6:d0:97:a6:cb:
        88:b1:4e:42:94:89:90:16:5a:8f:d2:42:4c:f2:1d:28:
        1d:4e:7b:bf:f3:2e:57:46:e6:ca:e7:fe:12:14:73:84:
        c8:9e:bc:9a:65:7b:a2:5a:89:9f:1b:90:0d:f7:62:dc:
        1e:03:cc:93:4e:90:22:9e:81:88:9a:d0:04:7e:d0:d0:
        ea:4e:42:1d:7d:bb:c4:60:b9:1e:a2:f2:d0:aa:74:db:
        4f:e0:ee:fd:dd:e5:84:58:9e:dd:c3:29:50:4f:6d:e1:
        e1:b3:b2:e4:bd:53:7b:bc:13:a0:ee:45:53:b4:0c:d5:
        a6:da:aa:4f:fe:51:7d:cc:83:a3:f0:ea:b6:95:3f:c7:
        3f:48:fb:52:15:ec:a5:e9:79:60:bc:af:98:73:ea:bb:
        bb:b8:5b:72:3b:a1:6b:4a:92:31:5a:3b:d2:bb:6c:b8:
        25:56:d4:5d:35:59:16:92:40:ce:db:5a:98:0d:3d:65:
        f4:bc:af:88:87:32:94:84:c5:21:40:6a:e9:6d:31:29:
        01:11:f0:1a:b9:1d:e1:c2:63:4d:fa:49:08:68:ed:8c:
        bc:97:0c:ca:67:70:49:25:c8:f0:e7:2e:03:e6:e1:3c
    Fingerprint (SHA-256):
        D0:E6:DE:6C:14:79:0A:C3:F2:AE:B1:62:2F:C7:1A:52:BD:D3:FA:0B:15:96:1B:E6:00:7A:3B:8E:9D:94:C4:59
    Fingerprint (SHA1):
        CC:91:1F:FA:58:96:F9:9F:CF:86:91:C5:D0:F4:E4:AE:F5:A7:73:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2780: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152958 (0x1dee3efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:5f:2b:b6:2e:cf:98:17:29:3b:d9:61:f9:03:a0:5a:
                    6b:c2:ab:05:4f:84:a0:28:df:df:b0:8f:60:fd:84:77:
                    61:8a:7a:63:6e:df:ce:30:66:c1:fa:21:b0:df:60:5f:
                    e8:4e:2c:a7:86:9a:1d:16:01:70:42:b0:75:17:c6:52:
                    e9:cb:85:0f:02:fc:ca:47:80:84:01:3d:5d:46:62:b7:
                    b9:14:af:81:92:26:f4:d7:5d:29:86:9c:53:5f:79:10:
                    ee:07:a6:e6:cf:98:96:5c:67:ef:5c:7d:a2:65:4d:8e:
                    d6:96:0f:9f:e1:48:92:be:82:58:e6:54:58:e6:5e:08:
                    94:c9:0e:26:31:e3:c2:25:fb:7f:0c:e9:f8:cb:06:e5:
                    2e:e3:d7:50:07:8f:ec:b9:55:e8:e2:40:aa:16:a4:bc:
                    36:91:ae:18:49:b8:32:75:d1:8c:58:b2:7c:24:b3:97:
                    4e:ce:97:6f:5f:7c:04:ed:e9:de:4d:40:60:58:d2:4b:
                    a9:9b:22:f9:33:44:01:a8:26:5a:32:8e:bd:6e:00:81:
                    51:49:b8:f8:c3:59:2d:9a:5a:ef:ef:0d:fc:b3:f4:f7:
                    aa:a2:4a:38:9f:36:20:b5:06:7c:67:01:ad:d6:e9:0a:
                    e2:b4:c2:c6:83:7e:93:24:fc:b5:82:11:a9:ff:22:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ed:8f:cb:75:98:58:c9:a1:d6:0a:02:5c:69:50:0f:
        28:22:9b:b6:5a:a7:29:c1:4a:74:52:f6:d0:97:a6:cb:
        88:b1:4e:42:94:89:90:16:5a:8f:d2:42:4c:f2:1d:28:
        1d:4e:7b:bf:f3:2e:57:46:e6:ca:e7:fe:12:14:73:84:
        c8:9e:bc:9a:65:7b:a2:5a:89:9f:1b:90:0d:f7:62:dc:
        1e:03:cc:93:4e:90:22:9e:81:88:9a:d0:04:7e:d0:d0:
        ea:4e:42:1d:7d:bb:c4:60:b9:1e:a2:f2:d0:aa:74:db:
        4f:e0:ee:fd:dd:e5:84:58:9e:dd:c3:29:50:4f:6d:e1:
        e1:b3:b2:e4:bd:53:7b:bc:13:a0:ee:45:53:b4:0c:d5:
        a6:da:aa:4f:fe:51:7d:cc:83:a3:f0:ea:b6:95:3f:c7:
        3f:48:fb:52:15:ec:a5:e9:79:60:bc:af:98:73:ea:bb:
        bb:b8:5b:72:3b:a1:6b:4a:92:31:5a:3b:d2:bb:6c:b8:
        25:56:d4:5d:35:59:16:92:40:ce:db:5a:98:0d:3d:65:
        f4:bc:af:88:87:32:94:84:c5:21:40:6a:e9:6d:31:29:
        01:11:f0:1a:b9:1d:e1:c2:63:4d:fa:49:08:68:ed:8c:
        bc:97:0c:ca:67:70:49:25:c8:f0:e7:2e:03:e6:e1:3c
    Fingerprint (SHA-256):
        D0:E6:DE:6C:14:79:0A:C3:F2:AE:B1:62:2F:C7:1A:52:BD:D3:FA:0B:15:96:1B:E6:00:7A:3B:8E:9D:94:C4:59
    Fingerprint (SHA1):
        CC:91:1F:FA:58:96:F9:9F:CF:86:91:C5:D0:F4:E4:AE:F5:A7:73:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2781: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152959 (0x1dee3eff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b4:e9:59:42:fa:4f:44:75:8a:34:d8:47:e1:60:02:
                    32:15:19:60:ed:bc:c8:a8:be:19:da:b5:1c:37:1e:44:
                    2a:64:dc:45:3e:71:ac:e1:be:79:bf:ac:65:88:4a:88:
                    22:b3:80:1b:8d:b3:2f:52:7a:08:2f:08:10:69:3c:d4:
                    aa:23:1b:9d:78:e4:b9:1b:98:8b:fc:83:e1:f5:79:61:
                    aa:ba:cb:01:bb:78:07:13:bb:3c:19:27:3b:a3:21:f3:
                    7a:5d:54:16:aa:88:7c:cc:8b:19:8a:02:30:03:ff:42:
                    41:67:93:ce:4d:51:a4:1a:c1:5c:09:cd:62:67:bb:ec:
                    fd:eb:ec:9a:ba:53:b6:f8:79:ce:66:63:9a:f6:9a:f9:
                    c9:56:da:4b:d5:04:5d:31:12:ab:eb:19:f6:80:d3:ad:
                    51:c4:4c:3c:c8:74:3e:67:df:c4:24:db:df:a3:9c:36:
                    8c:e7:f4:ef:ea:b1:f0:01:1e:b5:0e:4d:90:fa:b2:77:
                    66:8d:0f:32:16:cf:08:d8:57:82:10:87:8f:0f:a4:84:
                    bf:cc:2a:2e:49:c3:fe:d3:aa:e5:d4:97:0d:87:0b:cb:
                    8c:c4:1b:dd:1b:a6:47:fb:e7:7c:c7:ca:1e:6e:0c:4b:
                    66:e0:5d:a5:a0:e1:44:4e:73:c1:34:cd:69:a1:09:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:87:7d:8c:ef:6d:03:a9:d2:83:02:6e:7b:90:58:5f:
        67:30:21:ff:46:1c:8c:8c:a6:93:ef:24:87:db:15:1d:
        cf:8f:a1:6e:32:1f:db:b1:cd:af:14:87:33:13:0e:8a:
        bd:77:0d:eb:0a:14:3a:ff:4f:47:78:b4:e4:eb:65:79:
        64:d5:9c:68:90:18:28:8f:08:ef:6f:16:d4:0f:89:9d:
        69:f0:3b:9b:42:b9:90:fe:49:1b:0c:e9:19:27:d2:fb:
        d6:c4:5f:70:5c:66:23:8e:96:6d:30:fc:19:74:0e:ba:
        e5:95:3a:6c:67:3b:be:0d:1b:33:3d:91:64:fe:4a:99:
        cc:f2:4b:6a:fc:96:41:f5:78:4e:ac:35:2d:73:c9:1f:
        c5:8b:ab:f8:17:8e:47:1f:0a:3e:4c:0d:87:2e:07:2f:
        53:7d:55:08:70:f5:09:5d:28:c9:0e:7b:21:dc:f0:0e:
        c0:dc:e7:59:b8:57:f9:58:a9:e7:53:d0:a7:e0:48:39:
        19:84:15:2e:31:75:86:93:ba:3a:e4:a2:d8:db:0c:62:
        a0:04:ec:75:88:dc:5e:4e:74:80:35:87:7d:9e:d0:52:
        a5:c2:c4:c7:7e:6c:f0:26:f7:d0:b3:25:1f:56:67:ea:
        26:46:e4:8c:56:76:91:24:9e:6c:c8:80:dd:83:48:38
    Fingerprint (SHA-256):
        59:CE:16:5D:0D:1A:DE:7F:2E:32:D5:FF:2C:85:1E:ED:2E:73:DF:F2:F7:02:02:14:F3:7B:6B:49:D0:EA:1C:F8
    Fingerprint (SHA1):
        27:79:8E:86:E8:7E:52:CF:2F:BB:0C:6B:7E:E6:AB:CA:37:F5:11:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2782: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152959 (0x1dee3eff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:29:44 2017
            Not After : Mon May 02 15:29:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b4:e9:59:42:fa:4f:44:75:8a:34:d8:47:e1:60:02:
                    32:15:19:60:ed:bc:c8:a8:be:19:da:b5:1c:37:1e:44:
                    2a:64:dc:45:3e:71:ac:e1:be:79:bf:ac:65:88:4a:88:
                    22:b3:80:1b:8d:b3:2f:52:7a:08:2f:08:10:69:3c:d4:
                    aa:23:1b:9d:78:e4:b9:1b:98:8b:fc:83:e1:f5:79:61:
                    aa:ba:cb:01:bb:78:07:13:bb:3c:19:27:3b:a3:21:f3:
                    7a:5d:54:16:aa:88:7c:cc:8b:19:8a:02:30:03:ff:42:
                    41:67:93:ce:4d:51:a4:1a:c1:5c:09:cd:62:67:bb:ec:
                    fd:eb:ec:9a:ba:53:b6:f8:79:ce:66:63:9a:f6:9a:f9:
                    c9:56:da:4b:d5:04:5d:31:12:ab:eb:19:f6:80:d3:ad:
                    51:c4:4c:3c:c8:74:3e:67:df:c4:24:db:df:a3:9c:36:
                    8c:e7:f4:ef:ea:b1:f0:01:1e:b5:0e:4d:90:fa:b2:77:
                    66:8d:0f:32:16:cf:08:d8:57:82:10:87:8f:0f:a4:84:
                    bf:cc:2a:2e:49:c3:fe:d3:aa:e5:d4:97:0d:87:0b:cb:
                    8c:c4:1b:dd:1b:a6:47:fb:e7:7c:c7:ca:1e:6e:0c:4b:
                    66:e0:5d:a5:a0:e1:44:4e:73:c1:34:cd:69:a1:09:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:87:7d:8c:ef:6d:03:a9:d2:83:02:6e:7b:90:58:5f:
        67:30:21:ff:46:1c:8c:8c:a6:93:ef:24:87:db:15:1d:
        cf:8f:a1:6e:32:1f:db:b1:cd:af:14:87:33:13:0e:8a:
        bd:77:0d:eb:0a:14:3a:ff:4f:47:78:b4:e4:eb:65:79:
        64:d5:9c:68:90:18:28:8f:08:ef:6f:16:d4:0f:89:9d:
        69:f0:3b:9b:42:b9:90:fe:49:1b:0c:e9:19:27:d2:fb:
        d6:c4:5f:70:5c:66:23:8e:96:6d:30:fc:19:74:0e:ba:
        e5:95:3a:6c:67:3b:be:0d:1b:33:3d:91:64:fe:4a:99:
        cc:f2:4b:6a:fc:96:41:f5:78:4e:ac:35:2d:73:c9:1f:
        c5:8b:ab:f8:17:8e:47:1f:0a:3e:4c:0d:87:2e:07:2f:
        53:7d:55:08:70:f5:09:5d:28:c9:0e:7b:21:dc:f0:0e:
        c0:dc:e7:59:b8:57:f9:58:a9:e7:53:d0:a7:e0:48:39:
        19:84:15:2e:31:75:86:93:ba:3a:e4:a2:d8:db:0c:62:
        a0:04:ec:75:88:dc:5e:4e:74:80:35:87:7d:9e:d0:52:
        a5:c2:c4:c7:7e:6c:f0:26:f7:d0:b3:25:1f:56:67:ea:
        26:46:e4:8c:56:76:91:24:9e:6c:c8:80:dd:83:48:38
    Fingerprint (SHA-256):
        59:CE:16:5D:0D:1A:DE:7F:2E:32:D5:FF:2C:85:1E:ED:2E:73:DF:F2:F7:02:02:14:F3:7B:6B:49:D0:EA:1C:F8
    Fingerprint (SHA1):
        27:79:8E:86:E8:7E:52:CF:2F:BB:0C:6B:7E:E6:AB:CA:37:F5:11:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2783: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2784: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152962 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2785: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2786: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2787: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2788: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502152963   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2789: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2790: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2791: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2792: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502152964   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2793: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2794: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #2795: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2796: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502152965   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2797: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2798: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2799: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2800: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502152966   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2801: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2802: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2803: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2804: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502152967   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2805: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2806: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #2807: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2808: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502152968   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2809: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2810: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2811: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #2812: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #2813: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2814: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #2815: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152962 (0x1dee3f02)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:46 2017
            Not After : Mon May 02 15:29:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:6b:67:93:9d:f4:43:0e:0b:bc:9b:4d:8c:ac:7a:59:
                    66:00:0c:2c:79:25:88:88:b4:6e:d2:80:e7:12:93:a1:
                    0f:15:75:ff:40:c3:2c:aa:59:e7:5d:3c:71:f8:fd:c6:
                    c9:1d:0b:e3:51:e5:05:fe:43:67:ae:85:09:3a:f9:03:
                    bd:25:26:14:99:1b:32:fc:0e:04:17:1e:06:e0:ac:2d:
                    d9:8a:89:79:ee:2f:da:51:2b:dd:69:2a:b7:50:93:df:
                    0b:ac:75:a7:9a:60:6b:88:3c:a3:fe:9e:fb:69:0c:07:
                    c6:43:19:f8:9c:e4:6e:24:e9:e9:92:e9:12:93:74:fd:
                    9b:17:00:e3:7c:58:ea:0d:9e:2f:c4:45:a5:88:1f:cc:
                    cc:db:ec:8f:e5:ac:d6:c2:eb:fb:b0:64:b9:cb:93:7d:
                    3f:63:c3:5a:5e:97:b4:2d:e8:e4:a7:25:b4:e5:81:d1:
                    c5:ae:2d:09:c8:a5:a4:8d:ed:32:f1:a0:74:97:70:6e:
                    99:b6:f2:b5:c7:f8:6c:81:3f:8f:24:32:11:ac:09:92:
                    82:37:1f:76:d8:0a:a1:04:a1:17:38:86:7e:a1:d6:7e:
                    6e:e9:79:ac:7d:13:fe:ee:62:68:e9:ae:98:6f:10:b1:
                    dd:3b:39:0b:b3:a9:42:98:20:65:ed:99:ca:67:ba:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:e0:ab:39:83:39:4c:d4:d9:3d:b2:d7:64:b7:06:62:
        e4:ea:67:93:1b:08:77:a0:b9:41:16:67:c1:38:fa:90:
        58:f3:ea:cf:bf:5e:36:ea:bd:f8:60:07:0f:d3:50:38:
        6b:bb:4f:a9:36:45:0f:c2:ff:41:33:77:28:fb:29:fd:
        7c:9c:16:d1:c0:07:c0:5e:54:bb:c1:bf:fe:89:ab:2d:
        74:05:d5:37:9e:6c:ac:78:64:a3:54:d7:7b:9f:12:b8:
        24:c7:55:8f:8e:a2:f1:15:97:5c:4f:6d:85:a1:ba:62:
        32:57:41:e8:10:71:62:ad:c4:f4:96:b5:4a:12:17:80:
        df:bc:00:42:44:a3:e1:86:00:2b:6a:c7:91:04:56:d9:
        ab:cd:3b:d6:63:fc:c2:bb:4d:81:51:b8:5c:e4:79:36:
        40:89:d9:62:fb:dc:80:53:67:f6:9f:8e:4f:2d:35:0e:
        1d:ae:1e:5f:49:f9:5e:5b:2f:6f:4d:98:7b:47:0f:2d:
        9b:16:d0:ad:32:02:dc:b3:90:fb:d6:f3:eb:e5:4f:10:
        20:e0:46:fe:73:aa:a5:1b:8e:4f:1b:d8:d5:fc:bf:41:
        1b:5d:52:97:22:05:db:93:67:37:31:84:26:8a:e8:e3:
        f9:7e:47:77:04:09:9d:4c:b2:2d:7a:e0:49:30:b6:a0
    Fingerprint (SHA-256):
        24:0B:D6:16:21:1A:70:F2:76:AF:BA:DC:4A:9A:75:50:F3:23:00:6F:CF:14:C9:E9:DF:29:DF:30:D0:4F:32:42
    Fingerprint (SHA1):
        71:7D:56:D4:96:87:E2:7E:64:80:93:38:C3:33:C1:BE:5C:13:92:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2816: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2817: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2818: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2819: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152962 (0x1dee3f02)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:46 2017
            Not After : Mon May 02 15:29:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:6b:67:93:9d:f4:43:0e:0b:bc:9b:4d:8c:ac:7a:59:
                    66:00:0c:2c:79:25:88:88:b4:6e:d2:80:e7:12:93:a1:
                    0f:15:75:ff:40:c3:2c:aa:59:e7:5d:3c:71:f8:fd:c6:
                    c9:1d:0b:e3:51:e5:05:fe:43:67:ae:85:09:3a:f9:03:
                    bd:25:26:14:99:1b:32:fc:0e:04:17:1e:06:e0:ac:2d:
                    d9:8a:89:79:ee:2f:da:51:2b:dd:69:2a:b7:50:93:df:
                    0b:ac:75:a7:9a:60:6b:88:3c:a3:fe:9e:fb:69:0c:07:
                    c6:43:19:f8:9c:e4:6e:24:e9:e9:92:e9:12:93:74:fd:
                    9b:17:00:e3:7c:58:ea:0d:9e:2f:c4:45:a5:88:1f:cc:
                    cc:db:ec:8f:e5:ac:d6:c2:eb:fb:b0:64:b9:cb:93:7d:
                    3f:63:c3:5a:5e:97:b4:2d:e8:e4:a7:25:b4:e5:81:d1:
                    c5:ae:2d:09:c8:a5:a4:8d:ed:32:f1:a0:74:97:70:6e:
                    99:b6:f2:b5:c7:f8:6c:81:3f:8f:24:32:11:ac:09:92:
                    82:37:1f:76:d8:0a:a1:04:a1:17:38:86:7e:a1:d6:7e:
                    6e:e9:79:ac:7d:13:fe:ee:62:68:e9:ae:98:6f:10:b1:
                    dd:3b:39:0b:b3:a9:42:98:20:65:ed:99:ca:67:ba:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:e0:ab:39:83:39:4c:d4:d9:3d:b2:d7:64:b7:06:62:
        e4:ea:67:93:1b:08:77:a0:b9:41:16:67:c1:38:fa:90:
        58:f3:ea:cf:bf:5e:36:ea:bd:f8:60:07:0f:d3:50:38:
        6b:bb:4f:a9:36:45:0f:c2:ff:41:33:77:28:fb:29:fd:
        7c:9c:16:d1:c0:07:c0:5e:54:bb:c1:bf:fe:89:ab:2d:
        74:05:d5:37:9e:6c:ac:78:64:a3:54:d7:7b:9f:12:b8:
        24:c7:55:8f:8e:a2:f1:15:97:5c:4f:6d:85:a1:ba:62:
        32:57:41:e8:10:71:62:ad:c4:f4:96:b5:4a:12:17:80:
        df:bc:00:42:44:a3:e1:86:00:2b:6a:c7:91:04:56:d9:
        ab:cd:3b:d6:63:fc:c2:bb:4d:81:51:b8:5c:e4:79:36:
        40:89:d9:62:fb:dc:80:53:67:f6:9f:8e:4f:2d:35:0e:
        1d:ae:1e:5f:49:f9:5e:5b:2f:6f:4d:98:7b:47:0f:2d:
        9b:16:d0:ad:32:02:dc:b3:90:fb:d6:f3:eb:e5:4f:10:
        20:e0:46:fe:73:aa:a5:1b:8e:4f:1b:d8:d5:fc:bf:41:
        1b:5d:52:97:22:05:db:93:67:37:31:84:26:8a:e8:e3:
        f9:7e:47:77:04:09:9d:4c:b2:2d:7a:e0:49:30:b6:a0
    Fingerprint (SHA-256):
        24:0B:D6:16:21:1A:70:F2:76:AF:BA:DC:4A:9A:75:50:F3:23:00:6F:CF:14:C9:E9:DF:29:DF:30:D0:4F:32:42
    Fingerprint (SHA1):
        71:7D:56:D4:96:87:E2:7E:64:80:93:38:C3:33:C1:BE:5C:13:92:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2820: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2821: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2822: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152969 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2823: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2824: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2825: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2826: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502152970   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2827: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2828: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #2829: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2830: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502152971   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2831: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2832: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #2833: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2834: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502152972   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2835: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2836: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2837: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2838: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502152973   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2839: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2840: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #2841: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2842: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502152974   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2843: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2844: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #2845: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2846: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502152975   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2847: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2848: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #2849: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2850: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502152976   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2851: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2852: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #2853: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2854: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502152977   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2855: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2856: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #2857: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2858: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502152978   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2859: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2860: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #2861: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2862: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502152979   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2863: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2864: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #2865: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2866: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502152980   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2867: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2868: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #2869: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2870: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502152981   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2871: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2872: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #2873: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2874: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502152982   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2875: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2876: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #2877: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2878: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502152983   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2879: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2880: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #2881: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2882: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502152984   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2883: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2884: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #2885: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2886: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502152985   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2887: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2888: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #2889: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2890: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502152986   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2891: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2892: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #2893: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2894: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502152987   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2895: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2896: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #2897: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2898: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502152988   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2899: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2900: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #2901: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2902: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502152989   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2903: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2904: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #2905: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2906: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502152990   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2907: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2908: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #2909: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2910: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502152991   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2911: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2912: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #2913: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2914: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502152992   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2915: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2916: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #2917: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2918: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502152993   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2919: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2920: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #2921: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2922: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502152994   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2923: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2924: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #2925: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2926: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502152995   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2927: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2928: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #2929: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2930: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502152996   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2931: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2932: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #2933: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2934: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502152997   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2935: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2936: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #2937: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2938: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502152998   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2939: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2940: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2941: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2942: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2943: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2944: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2945: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2946: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2947: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2948: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2949: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2950: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2951: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2952: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2953: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2954: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2955: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2956: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2957: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2958: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2959: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2960: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2961: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2962: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2963: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152969 (0x1dee3f09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:29:48 2017
            Not After : Mon May 02 15:29:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ae:27:66:c6:ff:f8:bc:b7:9c:91:51:7d:ef:22:8d:
                    f3:dd:f6:20:d1:2a:3b:84:be:dd:49:be:90:e2:82:d7:
                    0c:5e:1b:81:ae:28:07:50:8a:67:7c:82:37:70:ef:0e:
                    ff:17:e9:40:c0:51:8b:ad:e7:85:c5:05:9c:75:b6:a1:
                    19:20:80:30:7e:39:ea:94:a7:f1:e2:9b:79:91:ae:79:
                    de:6d:6f:6a:bf:7b:4e:db:88:ff:c0:62:74:a9:e7:5e:
                    89:9d:fc:30:17:48:21:bd:9a:63:a4:03:61:d8:65:f0:
                    a5:ea:d4:d6:e1:c3:b2:96:af:f9:a2:0f:3c:f2:37:4d:
                    b6:3c:af:cf:c3:ff:c4:37:e6:4b:e2:b1:2a:a8:27:c5:
                    64:7e:64:0f:87:9c:57:01:fe:b5:a7:4a:5b:ed:0d:bc:
                    01:2c:dc:4e:7c:e6:0c:89:ae:9c:a4:f0:10:05:c6:ce:
                    a1:cf:80:73:2c:c0:b7:7e:1a:d5:28:79:b4:ca:ba:5a:
                    ea:77:a0:11:06:dd:48:16:97:10:e4:43:b4:22:1a:2e:
                    46:10:f7:72:b6:28:53:64:8f:9c:9a:ef:6b:0a:92:d5:
                    1e:19:9c:28:36:39:40:33:f8:a7:c2:8a:c6:1a:14:95:
                    71:a7:4c:7d:d0:46:dd:ee:95:df:d6:4a:76:27:1d:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b0:98:84:fa:3e:16:6a:75:b5:ca:72:63:8d:6b:46:
        df:40:40:ec:5f:3f:7e:2a:48:bc:33:fd:23:09:76:1b:
        80:24:96:17:e2:36:b6:3d:07:25:6f:50:b9:fc:38:85:
        ee:82:57:9f:cb:3a:3f:d3:00:05:dc:ca:fd:1e:d4:9a:
        c3:15:a5:8b:16:bb:5c:f6:88:37:b3:33:81:b2:7a:be:
        52:56:5a:66:47:8a:7c:7e:b5:fb:30:56:e4:6b:e9:6a:
        1a:28:68:92:81:5e:d9:a7:2d:3e:c2:89:62:ea:3e:6d:
        e3:08:a7:f6:49:aa:30:62:90:1d:a9:1b:6b:4b:e9:79:
        c9:cd:49:53:9e:a5:e5:c4:02:66:e3:dd:cf:f4:91:92:
        f0:ff:94:d5:6e:5d:79:fe:2b:29:b1:a4:0c:c8:ca:48:
        57:0e:f8:83:d2:9c:cc:cf:9a:b5:f8:7e:07:92:21:12:
        48:e6:36:ec:06:c1:6f:08:1e:d2:6c:9b:43:b5:f8:0b:
        7c:db:4c:45:df:b3:68:31:77:a4:d0:a4:92:b5:e2:6b:
        3b:2a:ab:f2:e5:f2:70:cb:ee:28:99:88:62:df:25:ad:
        e4:a8:f5:a0:f6:d0:91:63:4e:37:0b:47:e3:b9:02:f5:
        0e:84:cd:c9:d5:7f:c1:89:08:67:f7:7c:1b:90:45:a7
    Fingerprint (SHA-256):
        09:9D:FE:34:EE:13:4A:24:5F:47:67:07:25:62:BA:BA:4A:D8:82:CF:49:3C:8E:90:70:36:BA:8C:62:5C:84:15
    Fingerprint (SHA1):
        AD:44:87:A0:EF:54:FD:80:D8:F0:61:BB:D8:A5:98:42:FF:1E:A4:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2964: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2965: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2966: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502152999 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2967: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2968: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #2969: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2970: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502153000   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2971: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2972: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #2973: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2974: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502153001   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2975: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2976: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #2977: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2978: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502153002   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2979: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2980: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #2981: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2982: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502153003   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2983: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2984: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #2985: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2986: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502153004   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2987: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2988: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #2989: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2990: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502153005   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2991: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2992: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2993: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152999 (0x1dee3f27)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:57 2017
            Not After : Mon May 02 15:29:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:32:3e:49:d5:3a:fb:df:ff:37:a2:04:20:82:e6:b8:
                    c1:4b:23:43:d0:18:62:6b:e9:f0:b5:e8:6e:61:3b:bc:
                    0e:fa:29:98:62:74:8a:01:ef:0a:9a:06:2f:fc:ee:3c:
                    f3:ed:8a:53:93:76:04:3b:10:3a:e1:54:ac:6a:c1:63:
                    e0:bf:af:ee:fc:60:35:fc:25:b6:47:33:24:e8:f3:f3:
                    03:f3:ed:48:f5:08:65:c5:39:db:e6:3c:86:b5:14:57:
                    28:ca:08:ae:5b:83:be:d7:a8:a2:35:23:45:bd:a9:b2:
                    3e:c4:fc:e7:7c:3b:87:17:81:24:4a:40:12:75:f4:f6:
                    8a:f4:99:c2:9d:af:43:f0:38:3b:de:c0:72:08:0e:0a:
                    e5:36:72:20:71:73:71:63:06:65:bf:6d:52:fb:c6:d7:
                    a5:90:40:7a:84:18:b5:ce:3a:d1:68:e1:3e:47:b8:2a:
                    d1:78:f8:ad:1b:26:ae:cc:01:78:c8:13:81:f7:81:e5:
                    31:f4:50:b6:09:71:4e:22:06:43:37:50:03:26:cd:30:
                    40:45:a0:ea:c2:fd:20:25:6e:6f:3c:7f:74:a2:3d:ed:
                    77:be:94:96:26:0b:95:c2:e2:5e:4c:09:8b:bc:95:6e:
                    f0:cf:58:2c:82:f0:70:87:a9:00:18:11:c3:b2:55:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:32:ce:6f:bc:04:44:73:a1:e9:d8:75:9d:ad:d7:59:
        db:25:1c:80:45:39:e1:fd:3a:33:d9:72:d2:0d:e3:a4:
        0b:49:73:05:87:0f:9f:4a:fa:bc:16:7f:71:43:f2:4b:
        08:65:9a:5c:a9:31:b0:86:8b:9e:96:3d:ac:8d:06:a3:
        48:fd:5e:f3:04:02:d9:4c:29:20:ee:b6:e5:58:91:35:
        c9:d4:91:2a:db:be:ae:85:3b:f1:58:75:22:0a:1c:16:
        0e:f8:cf:c7:84:b0:68:e1:88:41:cb:67:02:91:33:0c:
        fc:9a:0d:fe:e0:31:14:8d:1e:59:84:db:04:f4:58:66:
        c1:10:c9:9b:b1:65:ea:36:17:20:9e:62:02:5d:3b:67:
        49:a2:bb:cd:9b:ec:6c:27:dc:82:18:99:c3:7d:31:b5:
        3d:db:30:61:64:bd:6f:5c:f8:86:60:6b:8e:e9:7f:99:
        f4:3c:6b:e5:50:2d:f2:14:5c:6a:c8:73:1a:1c:cd:e2:
        40:91:3f:a5:6e:d9:bf:21:ed:23:f1:66:f6:01:f1:33:
        b9:86:3b:c5:a4:fc:37:dc:1c:d2:f8:65:79:46:d3:9b:
        82:57:4d:16:24:f6:4c:f7:5f:a6:ab:4c:2c:c9:52:ca:
        b0:4f:ad:cf:68:d9:08:c5:df:b6:ef:35:9f:1a:e9:11
    Fingerprint (SHA-256):
        AF:2E:AB:7F:8D:BF:7C:82:63:4F:96:49:78:E1:8A:DB:FC:57:F3:89:6B:23:98:25:F5:6C:C0:B1:2E:7D:05:C7
    Fingerprint (SHA1):
        B1:57:83:88:88:93:5C:B4:34:26:B1:C5:AF:5C:08:90:19:2F:4E:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #2994: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2995: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2996: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2997: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502152999 (0x1dee3f27)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:29:57 2017
            Not After : Mon May 02 15:29:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:32:3e:49:d5:3a:fb:df:ff:37:a2:04:20:82:e6:b8:
                    c1:4b:23:43:d0:18:62:6b:e9:f0:b5:e8:6e:61:3b:bc:
                    0e:fa:29:98:62:74:8a:01:ef:0a:9a:06:2f:fc:ee:3c:
                    f3:ed:8a:53:93:76:04:3b:10:3a:e1:54:ac:6a:c1:63:
                    e0:bf:af:ee:fc:60:35:fc:25:b6:47:33:24:e8:f3:f3:
                    03:f3:ed:48:f5:08:65:c5:39:db:e6:3c:86:b5:14:57:
                    28:ca:08:ae:5b:83:be:d7:a8:a2:35:23:45:bd:a9:b2:
                    3e:c4:fc:e7:7c:3b:87:17:81:24:4a:40:12:75:f4:f6:
                    8a:f4:99:c2:9d:af:43:f0:38:3b:de:c0:72:08:0e:0a:
                    e5:36:72:20:71:73:71:63:06:65:bf:6d:52:fb:c6:d7:
                    a5:90:40:7a:84:18:b5:ce:3a:d1:68:e1:3e:47:b8:2a:
                    d1:78:f8:ad:1b:26:ae:cc:01:78:c8:13:81:f7:81:e5:
                    31:f4:50:b6:09:71:4e:22:06:43:37:50:03:26:cd:30:
                    40:45:a0:ea:c2:fd:20:25:6e:6f:3c:7f:74:a2:3d:ed:
                    77:be:94:96:26:0b:95:c2:e2:5e:4c:09:8b:bc:95:6e:
                    f0:cf:58:2c:82:f0:70:87:a9:00:18:11:c3:b2:55:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:32:ce:6f:bc:04:44:73:a1:e9:d8:75:9d:ad:d7:59:
        db:25:1c:80:45:39:e1:fd:3a:33:d9:72:d2:0d:e3:a4:
        0b:49:73:05:87:0f:9f:4a:fa:bc:16:7f:71:43:f2:4b:
        08:65:9a:5c:a9:31:b0:86:8b:9e:96:3d:ac:8d:06:a3:
        48:fd:5e:f3:04:02:d9:4c:29:20:ee:b6:e5:58:91:35:
        c9:d4:91:2a:db:be:ae:85:3b:f1:58:75:22:0a:1c:16:
        0e:f8:cf:c7:84:b0:68:e1:88:41:cb:67:02:91:33:0c:
        fc:9a:0d:fe:e0:31:14:8d:1e:59:84:db:04:f4:58:66:
        c1:10:c9:9b:b1:65:ea:36:17:20:9e:62:02:5d:3b:67:
        49:a2:bb:cd:9b:ec:6c:27:dc:82:18:99:c3:7d:31:b5:
        3d:db:30:61:64:bd:6f:5c:f8:86:60:6b:8e:e9:7f:99:
        f4:3c:6b:e5:50:2d:f2:14:5c:6a:c8:73:1a:1c:cd:e2:
        40:91:3f:a5:6e:d9:bf:21:ed:23:f1:66:f6:01:f1:33:
        b9:86:3b:c5:a4:fc:37:dc:1c:d2:f8:65:79:46:d3:9b:
        82:57:4d:16:24:f6:4c:f7:5f:a6:ab:4c:2c:c9:52:ca:
        b0:4f:ad:cf:68:d9:08:c5:df:b6:ef:35:9f:1a:e9:11
    Fingerprint (SHA-256):
        AF:2E:AB:7F:8D:BF:7C:82:63:4F:96:49:78:E1:8A:DB:FC:57:F3:89:6B:23:98:25:F5:6C:C0:B1:2E:7D:05:C7
    Fingerprint (SHA1):
        B1:57:83:88:88:93:5C:B4:34:26:B1:C5:AF:5C:08:90:19:2F:4E:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #2998: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2999: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3000: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3001: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153006 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3002: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3003: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3004: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3005: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153007   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3006: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3007: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3008: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3009: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153008   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3010: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3011: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3012: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3013: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153009   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3014: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3015: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3016: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3017: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3018: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3019: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153006 (0x1dee3f2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:00 2017
            Not After : Mon May 02 15:30:00 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:a3:37:6b:46:17:e4:72:86:d0:a7:bc:e9:31:7c:ef:
                    7a:e1:6e:07:0d:a5:fc:99:6d:51:af:fe:9c:e3:43:4f:
                    57:04:ea:5f:c7:a3:83:1b:4d:d4:c8:30:1f:08:67:cd:
                    aa:07:2d:c3:8b:85:bd:9f:a8:39:6f:48:d7:4b:e1:73:
                    29:7c:44:b0:a4:ed:1f:d8:92:ed:0b:25:d4:65:0d:13:
                    36:3b:60:0b:d3:b9:e8:78:d6:38:d3:0a:c3:7b:77:2b:
                    7b:d1:26:aa:5a:1f:c2:c0:fe:fd:0e:4a:ea:aa:29:1f:
                    7b:da:80:68:1c:7e:14:86:17:f3:15:88:67:fa:07:9d:
                    b0:34:49:58:f1:8a:d5:32:a7:af:c5:5b:7d:6d:83:bf:
                    6b:d2:21:e9:d3:53:c3:59:14:48:c9:0b:5f:60:05:aa:
                    12:39:45:c8:09:d4:24:7d:d6:14:5c:02:3d:c5:9c:57:
                    32:b1:27:42:38:a9:3c:ad:48:d8:db:f6:db:66:1b:eb:
                    78:77:9e:ee:3d:9d:ac:81:a6:7b:cc:d5:8f:8f:d9:ee:
                    e4:fc:15:1f:2d:37:b7:16:95:5c:56:38:f4:3d:10:76:
                    fa:e4:21:d0:f1:a0:79:3f:e3:07:f8:08:35:8e:cc:c4:
                    c0:08:13:2f:2d:ad:4b:d8:9c:d9:25:81:f5:75:3f:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:66:ea:9e:5a:8e:be:d9:45:20:21:9f:31:19:96:07:
        d0:36:d7:b5:a5:d9:ba:04:81:24:b1:58:c5:c3:bc:dd:
        29:fa:32:68:9e:a1:1c:31:00:e0:18:8a:a4:46:b2:e7:
        8e:cd:ea:f0:ad:a5:7e:ec:12:08:6a:3e:e9:bd:61:1e:
        f5:84:02:ab:5d:84:4d:69:4b:f7:f3:e0:89:48:a9:93:
        fc:ba:17:71:b0:78:10:0f:1f:a7:fb:c6:95:7e:22:3f:
        f8:65:98:ee:02:44:c7:b8:3b:28:8c:a7:92:ad:6f:8a:
        8e:a6:cc:d5:2c:ce:95:fc:95:c6:61:fd:97:c9:9a:2d:
        5f:d6:53:12:7f:ad:7e:f0:77:65:34:89:24:9b:dd:d0:
        6b:ae:05:cc:34:86:35:1b:b5:be:32:6f:e2:ff:0a:7f:
        cb:d3:44:76:39:cb:7f:e4:07:ea:e2:32:bf:75:51:3f:
        34:c3:3d:97:65:50:25:0e:e0:7a:2f:06:f5:38:03:9a:
        5a:7d:69:7f:25:4f:d5:23:83:91:df:98:76:de:13:2e:
        99:a7:9a:5f:fc:03:04:07:d7:d7:69:3c:84:f8:52:5c:
        9e:b5:0e:18:da:99:f9:07:8d:79:91:38:1d:2b:d2:ad:
        6a:ee:20:2c:78:30:79:71:62:7a:c9:e3:d8:96:31:9c
    Fingerprint (SHA-256):
        F6:74:2D:8C:61:F6:54:94:77:A6:F2:BC:FB:26:37:CD:30:C6:47:FC:3E:E3:A0:6E:2E:F6:7B:65:37:96:D0:9C
    Fingerprint (SHA1):
        FA:DE:1B:9D:CC:92:32:7D:7E:3D:9E:A0:6C:76:05:C8:B4:F1:B7:44
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3020: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3021: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3022: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153007 (0x1dee3f2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:00 2017
            Not After : Mon May 02 15:30:00 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:35:31:52:e8:94:43:45:35:68:4b:10:42:9c:53:fc:
                    ac:0d:f5:57:0d:74:6e:7f:f7:e1:09:95:c1:08:81:4d:
                    c2:36:f8:29:4b:aa:aa:01:be:32:17:6f:a2:0c:e8:06:
                    a2:c6:58:86:9a:9b:81:31:94:0d:95:91:04:68:20:66:
                    5d:2f:34:9a:df:2a:76:36:7a:b3:18:e2:36:81:6b:05:
                    67:4a:3e:86:c6:8b:47:a8:de:44:9d:d3:80:36:41:4f:
                    e8:e6:06:05:b1:90:27:a9:2e:a6:81:ba:34:68:7e:7e:
                    03:01:e9:b6:5e:4f:f2:24:db:1a:02:7b:49:2e:3e:20:
                    e7:d1:13:95:d3:b2:cc:60:d2:d7:b1:bd:3f:a2:57:73:
                    12:1e:db:f5:9a:0c:a6:fd:99:0e:87:43:70:c8:ac:3e:
                    92:a6:33:cf:6b:60:12:1e:9f:e5:aa:e0:59:e0:a7:91:
                    b7:d5:02:be:63:56:4b:ad:13:18:9c:a3:3a:35:da:ea:
                    ce:75:2c:2c:f5:a3:33:4d:27:ba:fd:f4:f1:0f:c6:71:
                    e6:cd:50:e5:8e:90:57:41:8a:b1:9d:31:22:dd:21:77:
                    ae:ab:b5:00:27:84:0f:86:97:65:aa:23:a2:b3:af:33:
                    f2:5a:ea:cd:9f:6d:df:45:e0:72:86:a8:62:fd:48:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:2d:de:a2:8a:25:95:63:5a:7b:58:e6:61:a8:b6:fa:
        e7:44:85:ce:90:a9:4e:8b:42:d2:86:f1:e8:01:29:84:
        f2:a6:59:7f:25:3e:2d:d2:c5:26:a6:79:3e:8f:ce:1b:
        63:fb:64:53:c5:38:10:01:45:a6:7a:08:a8:39:78:b0:
        83:25:7f:1b:4d:c5:27:ce:4a:23:94:93:4c:6e:cd:c7:
        d3:1c:ec:d4:69:28:dd:e7:5c:0b:fa:11:bb:81:07:93:
        73:3c:77:5f:e6:f0:b6:59:e9:94:68:1a:8b:d0:55:91:
        42:b4:18:1a:6e:2a:d1:d6:2e:38:83:fb:30:48:e7:47:
        6d:bb:f5:ab:d1:d0:dc:e5:df:18:c8:14:b6:ae:15:f4:
        d6:63:2e:2c:e0:15:fb:3a:11:c7:a8:bd:10:17:d5:be:
        75:de:89:76:dc:bc:81:a8:aa:c5:65:e4:d6:77:0a:69:
        12:1c:b4:e3:c1:f6:7d:cf:8f:fe:c4:3f:32:ef:61:d9:
        75:ad:2b:b4:5e:95:80:cc:b2:11:1c:f5:66:0d:e8:26:
        03:57:6a:30:75:6c:77:41:fe:f1:88:b4:a5:74:21:9f:
        35:3b:6f:be:f4:a7:b3:9a:ff:c1:54:04:1a:62:aa:25:
        19:24:92:de:86:f6:de:ab:38:cb:d7:70:d7:40:86:1c
    Fingerprint (SHA-256):
        94:73:5C:AD:04:B2:7B:20:1D:6E:13:AD:CA:28:86:B9:FC:B8:91:2D:38:6D:CA:57:4B:DF:F1:7B:3F:9C:85:52
    Fingerprint (SHA1):
        07:28:F2:10:A0:BE:9B:2A:4E:A6:60:68:0B:73:4F:4A:05:2C:8E:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3023: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3024: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153008 (0x1dee3f30)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:00 2017
            Not After : Mon May 02 15:30:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:73:81:52:e4:8d:0a:f2:4f:39:3b:33:8b:2f:29:12:
                    73:ef:90:06:01:4d:52:41:b7:6b:67:26:64:ec:6e:86:
                    d6:04:45:60:ce:7e:60:de:25:94:3f:41:cf:cb:07:0a:
                    b7:15:8a:64:48:4c:d8:38:5c:cf:f9:14:17:79:86:a5:
                    88:49:d5:78:71:19:9c:de:95:26:ff:bd:8a:47:14:75:
                    70:5b:00:37:67:df:fc:5e:87:82:99:61:1a:98:8c:1c:
                    0a:25:cd:bb:ac:a6:22:66:4b:a7:27:10:14:ca:f1:3c:
                    1f:49:e6:86:35:97:a4:f6:92:42:e9:e4:54:2b:69:53:
                    59:c8:15:e1:26:72:e0:51:7e:e1:e1:8b:5e:0b:c3:ab:
                    1c:fd:a8:7d:c6:50:b6:63:1b:fb:71:cc:fc:fd:54:e2:
                    ce:5f:87:58:47:09:78:73:0a:8c:56:c1:4b:73:ea:74:
                    e7:06:1e:c7:08:1f:d5:69:0d:b8:de:64:fe:c7:c3:f9:
                    08:cc:c7:3f:7c:84:a2:1d:46:2c:fb:d7:8c:e7:9f:55:
                    be:3b:a3:81:f2:3a:a6:74:2c:ef:5c:94:c7:c6:4a:9d:
                    b3:dd:f2:f2:a0:e7:f3:15:03:98:7e:8d:c9:ef:e9:25:
                    e1:94:96:3c:fc:ac:47:ab:77:c7:b7:b0:82:ea:43:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:a5:3c:f1:85:f5:5d:1f:28:dc:0e:c1:e7:9c:84:0e:
        f7:83:34:96:ca:85:18:89:67:45:8e:e4:38:08:5e:2f:
        e1:7b:50:ed:ac:ff:50:d6:08:b6:9c:7f:1b:20:24:30:
        39:46:4a:7e:06:99:be:84:0f:32:3a:8a:f6:48:a7:15:
        1b:12:37:48:13:6a:12:02:a3:de:c6:ea:75:e9:95:c4:
        81:19:7f:44:6d:f2:a7:ed:f6:63:b7:ec:00:a0:a8:f4:
        6d:af:d5:6a:24:11:7d:8d:82:0c:93:cc:76:a1:b6:bb:
        59:86:e6:72:0d:f1:76:63:26:02:a8:9c:85:a3:0e:0e:
        cd:5e:76:aa:be:f2:2d:fa:c4:c3:a6:91:1f:57:e5:38:
        a2:3a:f9:15:24:5d:0c:16:00:81:3d:8a:76:66:80:f4:
        9f:f3:18:fc:69:45:13:89:10:a8:28:15:a5:fe:0c:fb:
        8d:ba:79:91:7e:61:57:eb:6b:ac:3e:62:f9:81:38:ae:
        4c:a9:84:c1:79:04:2a:fd:f5:15:0b:62:da:34:fa:d5:
        59:05:d5:de:d8:0a:e6:61:ef:5a:75:50:b4:ad:13:cc:
        e3:75:98:be:6f:2f:a1:49:cb:75:30:f4:00:5d:6c:08:
        2d:98:80:df:cf:45:78:db:1d:1d:3c:5c:34:19:9e:30
    Fingerprint (SHA-256):
        7E:6B:F5:9C:87:8E:EB:CF:0F:88:9D:3E:AB:21:81:15:4D:0D:38:07:E1:4B:6A:A9:16:88:09:40:CB:AE:44:F8
    Fingerprint (SHA1):
        BB:57:06:AB:67:E0:93:81:ED:5D:BE:F0:9C:E3:98:8B:99:CE:8C:E3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3025: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3026: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153010 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3027: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3028: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3029: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3030: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153011   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3031: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3032: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3033: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3034: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153012   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3035: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3036: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3037: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3038: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502153013   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3039: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3040: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3041: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3042: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502153014   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3043: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3044: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3045: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3046: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3047: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3048: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3049: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153010 (0x1dee3f32)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:01 2017
            Not After : Mon May 02 15:30:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:a1:5e:b5:d1:73:dd:c3:df:d4:d3:12:db:12:16:76:
                    9e:96:1f:fd:b1:75:c3:54:60:6f:d3:8d:74:77:4a:e0:
                    d5:e2:f2:74:7e:f4:8b:6f:a1:0f:38:dd:15:33:04:f0:
                    44:81:05:1b:01:c8:a4:e6:fa:24:54:fb:a0:43:b8:b3:
                    c6:8d:e3:bc:4f:e9:7c:fa:72:93:a2:ea:62:ba:55:69:
                    48:9a:30:e9:e6:fb:44:57:13:22:79:c2:29:5b:90:c6:
                    e6:aa:38:8b:62:fc:64:83:3d:84:23:3d:66:ce:c0:3e:
                    41:e2:69:39:e9:12:57:8b:ff:a5:1c:76:98:5d:f9:16:
                    99:ef:63:8d:3a:22:16:71:2e:47:16:c3:9a:b9:6a:bd:
                    e6:34:12:6e:4f:80:ef:83:e2:6b:5e:3a:ba:1b:bd:e4:
                    ac:ef:ea:b3:b6:c1:9a:d4:f6:e7:ee:96:8a:04:c6:b7:
                    71:4d:ac:23:71:ab:b1:6e:56:b8:43:b0:d6:06:43:69:
                    17:98:b3:7b:bd:b9:06:19:3a:d4:31:1e:81:f6:94:c2:
                    16:97:31:3f:58:4e:04:f8:08:41:f6:71:89:1d:a2:a6:
                    dd:31:7f:98:d9:90:eb:fd:1b:4a:52:a7:3e:8c:2f:18:
                    8c:93:aa:26:25:4c:d7:ce:df:63:be:be:78:5a:e7:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:f7:de:ea:6c:97:45:cf:fa:18:27:01:a6:94:9b:c1:
        f2:85:e4:46:5c:db:cb:61:13:7c:5e:1f:e4:4e:76:14:
        c5:51:45:7d:ce:7f:e3:92:0f:54:4e:1b:ba:ce:03:ec:
        7b:82:19:15:66:0b:db:4b:eb:e9:72:2c:61:9c:fc:95:
        d8:66:39:58:d8:06:9d:9d:26:1e:41:ea:31:96:33:8c:
        94:68:51:48:ac:dc:d2:bc:ff:e9:25:bf:a3:ed:41:95:
        37:a0:f5:6f:e9:68:9f:b1:71:36:38:76:8e:ed:a7:44:
        ae:71:d8:73:a8:9e:8d:8f:16:d7:a5:c7:be:9a:f7:2c:
        0b:03:36:3c:dc:2d:af:99:50:c2:4f:3e:3d:8d:ce:1e:
        d0:96:58:9f:c6:54:24:7d:b7:6f:20:2f:55:7a:a3:2b:
        24:df:0a:d1:2b:17:ff:2f:c3:ca:1f:81:de:52:8d:1e:
        4f:b0:44:a0:7c:c3:f9:52:84:8b:52:f3:90:45:5b:47:
        1c:50:6d:ca:eb:6e:34:3a:c5:a5:7b:37:b5:74:ca:b3:
        28:b0:b9:ae:b1:f1:4d:ea:cf:fb:d5:26:43:5b:bc:4f:
        8a:ca:93:6a:25:1f:c2:7a:d0:5a:08:be:a6:38:84:56:
        ed:0c:b3:38:5d:32:6c:2c:a1:6a:91:9c:42:47:e1:9d
    Fingerprint (SHA-256):
        9C:1E:62:E9:61:6C:0F:B8:72:7E:98:5A:7C:AD:EA:7D:BA:7C:D3:30:9D:2C:7F:3E:7E:7C:01:43:7E:36:6C:E3
    Fingerprint (SHA1):
        AB:44:7C:DF:98:BD:45:A3:0F:83:86:C9:4E:B5:B1:12:5F:F5:D3:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3050: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3051: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153011 (0x1dee3f33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:02 2017
            Not After : Mon May 02 15:30:02 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:be:99:62:0b:8c:2c:ab:3f:2d:b2:1c:e7:c3:6d:7c:
                    f1:48:a4:b4:33:3f:64:dd:4a:b4:01:dc:46:61:5c:87:
                    73:13:d3:74:de:c2:b8:94:71:39:93:09:d9:32:b9:66:
                    16:a8:e7:c5:b8:97:1e:ab:f8:d9:86:4d:44:e0:17:2f:
                    23:f0:7d:0d:38:fb:61:4f:98:40:e7:41:9b:7a:d8:dd:
                    17:23:c5:3a:a0:cd:25:50:74:8c:8b:8f:3b:37:9b:3f:
                    1d:9a:46:de:c3:10:00:04:17:f7:6b:e5:cc:2e:9c:c2:
                    90:fc:5a:8e:4f:7e:ac:93:74:cd:ed:80:25:ca:9f:63:
                    e2:45:d5:ed:6e:ad:7c:03:71:9d:d1:50:13:18:b1:d6:
                    2f:3d:b2:84:78:af:12:6e:93:f6:63:9f:37:5c:03:3b:
                    a7:76:ff:6e:c3:f9:ee:81:c5:9b:a0:76:57:d5:6e:7d:
                    5e:2e:ce:3d:55:d4:4b:1f:3c:11:5e:4a:26:0b:3b:bb:
                    62:68:71:35:b0:2c:b6:99:86:8c:dc:ae:a9:ee:17:2c:
                    8b:0c:85:65:0b:51:31:7b:7f:ea:09:6f:94:2c:ad:3a:
                    ce:08:ab:5f:8c:78:ab:98:8c:ce:06:56:e1:aa:e4:a0:
                    f5:a9:be:a5:54:3b:54:ee:5e:b9:a2:c1:e1:1b:88:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:75:7f:6c:30:98:72:b7:3f:d5:2e:70:49:55:dc:cd:
        d5:5f:c6:30:59:82:f0:01:f3:5c:32:f2:ec:b8:ef:ff:
        c9:1e:e9:46:e7:5b:07:37:7c:27:3f:6b:16:b1:9b:08:
        1b:5a:37:a0:cd:cd:e7:78:ba:be:02:de:42:24:bc:90:
        ba:39:ab:c2:36:53:d4:61:f0:33:0d:44:ea:fb:00:e1:
        e1:7f:af:50:5d:eb:b3:36:8b:74:40:2e:44:29:28:50:
        eb:e5:76:76:a7:05:4e:91:d4:5a:fc:1c:1f:92:ab:9b:
        c2:72:e7:72:91:29:f9:0e:93:ff:9a:9f:1d:7e:3b:d4:
        31:ff:97:d8:e6:25:0f:34:3a:91:10:61:0b:89:2b:48:
        ea:eb:b0:2a:3a:dd:0f:83:66:30:37:d6:81:cf:9d:f7:
        bc:bf:e7:f6:c7:4d:fb:c6:39:4d:ad:dc:cd:d0:01:a5:
        80:7c:56:59:36:58:c0:1e:14:72:17:98:4d:c4:3b:f3:
        9d:62:cf:c6:0e:6c:5c:41:eb:cb:51:33:0c:57:ca:49:
        3f:f3:df:6f:ea:27:71:37:bf:ae:f9:8b:cb:ea:82:e3:
        45:d6:77:2c:0b:40:77:d8:3f:cf:9f:1b:10:f1:95:0f:
        c4:55:4b:1b:9d:6b:ed:48:09:b0:39:59:f1:0d:5b:8d
    Fingerprint (SHA-256):
        EC:A2:49:EA:C7:06:FA:04:14:EF:E9:71:B8:F0:58:1C:5B:C1:01:6D:00:73:A8:30:A8:A5:36:F7:E0:AC:C1:EF
    Fingerprint (SHA1):
        80:DD:65:B4:54:32:CD:42:DD:17:35:B8:25:80:41:03:34:24:BD:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3052: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3053: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3054: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153012 (0x1dee3f34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:02 2017
            Not After : Mon May 02 15:30:02 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:aa:98:9d:9b:a2:ae:0d:07:c1:b6:1a:b5:2f:2e:12:
                    06:d6:44:7a:1a:f8:33:53:89:b6:21:4b:ad:cf:aa:c8:
                    53:3a:c2:86:73:41:84:d5:37:37:69:79:58:32:94:fe:
                    34:c9:0b:d5:96:ca:a1:c7:cf:33:40:76:30:3d:9f:9f:
                    58:69:2b:ba:eb:fa:1c:37:58:d0:39:99:29:7e:76:86:
                    55:21:03:da:2b:2a:6a:45:9a:7a:5d:e4:3d:fe:31:3e:
                    0f:64:26:c4:8e:ce:89:b6:6b:9a:25:c8:97:ff:d6:4a:
                    e4:52:ba:4b:5d:eb:c9:e9:0f:29:47:be:84:d9:00:a0:
                    ad:4c:2a:a4:7f:99:9a:50:4b:bf:06:9d:1f:16:e2:cf:
                    53:c7:97:57:34:99:1b:c5:0e:20:99:bc:8b:3e:f9:4a:
                    d6:8b:31:9e:b3:76:00:aa:0e:fc:b0:1a:bf:69:2b:11:
                    15:cb:d4:36:65:f5:d0:c5:91:ac:a7:d4:0a:f0:f7:91:
                    b9:6a:d6:be:f9:35:35:0c:0a:38:db:3d:e5:90:59:88:
                    a4:44:8f:63:eb:f4:71:f6:09:8f:51:18:8d:3c:8e:0b:
                    d4:f1:23:d9:26:35:af:44:82:95:b7:b6:6a:ac:e9:4a:
                    93:28:e3:9c:05:7a:aa:bc:87:d6:7c:99:99:94:62:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:dd:4f:f1:25:2d:6c:b7:9e:30:b1:d9:a2:79:95:a0:
        28:e0:1c:48:86:73:4d:bb:c7:a6:3f:b6:12:a0:96:2f:
        8d:ed:62:00:d5:97:c2:d9:ae:75:64:e2:58:4e:e1:fc:
        06:44:83:18:b3:1b:5c:f8:86:9c:df:8a:f2:52:f5:4b:
        0b:c0:7b:c1:74:c6:10:87:94:42:03:f3:8c:21:36:7b:
        fa:f4:a3:e0:41:ce:d5:cb:fd:e9:cb:b4:b5:d4:7d:9b:
        4c:d6:31:c7:86:08:ba:fb:2e:3a:94:af:7a:36:da:b1:
        4a:26:52:97:21:fb:24:7d:02:3d:39:95:eb:51:12:4a:
        10:6d:33:aa:fe:54:98:3a:ca:9e:d5:d0:f0:41:e3:64:
        27:79:59:83:d5:44:8e:13:db:a9:ac:63:ae:93:98:15:
        14:bd:f9:8f:e3:85:a7:8a:71:6b:6e:b0:ce:75:ba:a0:
        ff:ac:a2:6a:a5:1a:4f:a4:7b:ff:78:34:90:f0:f1:2a:
        18:2f:ef:3d:a2:94:7e:3f:e4:39:38:4a:48:ab:3e:e8:
        82:44:2d:74:47:06:76:3e:36:e8:c3:8f:5f:2d:c5:ef:
        1a:bb:2c:ed:64:c0:54:1e:31:b0:8c:84:d5:fb:30:11:
        45:28:ba:93:b7:1d:23:e6:2f:dd:c1:51:19:ec:65:12
    Fingerprint (SHA-256):
        23:AE:99:61:DE:41:56:C2:19:B4:B9:00:E9:4D:42:86:BD:D6:5C:4A:45:46:36:C5:E4:19:DF:96:93:0C:04:01
    Fingerprint (SHA1):
        2D:52:4C:BB:11:F8:05:ED:F0:C0:58:0B:47:AA:0E:49:CA:BE:A5:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3055: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3056: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153015 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3057: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3058: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3059: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3060: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153016   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3061: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3062: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3063: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3064: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153017   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA1Root-502152924.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3065: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3066: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3067: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3068: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153018   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3069: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3070: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3071: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153015 (0x1dee3f37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:03 2017
            Not After : Mon May 02 15:30:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:00:cb:6c:ef:fc:28:bb:51:c2:70:c0:a9:86:cf:76:
                    12:8b:a7:73:c9:9f:b7:3a:0e:6a:7f:7d:65:43:0e:89:
                    17:ca:dc:42:7e:c9:d5:38:ec:19:31:12:9d:22:d5:30:
                    20:7b:4c:30:ca:52:25:f3:a3:29:59:d0:4f:4a:6b:f9:
                    93:02:72:26:ca:bc:c6:67:5d:24:0b:d2:2e:69:f9:da:
                    29:36:24:5f:3f:4e:7d:3e:a0:64:f7:88:e6:1f:09:c1:
                    23:05:36:bf:87:72:a1:dc:b3:a6:fb:f6:9d:31:5c:42:
                    2d:93:1d:fe:f6:33:ff:f9:6c:f0:bc:46:34:4b:f9:6e:
                    ba:cd:65:bd:b7:99:59:73:d7:25:2f:f9:c9:74:1d:04:
                    ef:d1:79:1a:12:ce:ad:20:a6:6d:3d:4b:16:83:9e:1e:
                    42:2e:6d:e1:f4:44:76:89:f6:bb:d0:0d:15:80:ce:eb:
                    59:47:8d:40:42:a5:4e:b1:dd:1d:51:04:e6:fc:ba:94:
                    86:2c:94:cf:89:7a:8e:ed:fc:4b:7e:3c:1f:e4:28:3f:
                    1a:73:4f:06:9a:6f:7f:b2:a8:e2:1a:fd:17:14:8f:17:
                    1a:dd:dc:5d:2d:bd:ec:bb:4b:5d:79:db:70:b3:ae:61:
                    a9:09:6a:66:b9:da:fa:98:a0:3d:7b:69:e7:10:85:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:92:ac:bb:fc:7f:a5:ef:2e:5c:55:fa:cc:80:a6:33:
        d2:a0:98:b0:e8:5f:99:9b:02:7b:06:66:1e:d9:ea:75:
        63:72:ce:9c:8c:f4:66:50:75:85:cf:de:c1:20:22:38:
        6e:c7:2a:06:1e:35:d5:3c:6c:91:19:3a:f2:44:74:89:
        ae:b2:dd:ea:4d:51:1f:ca:75:f4:5c:1f:fd:e1:fe:6d:
        d3:ab:ff:a7:74:7c:e7:f6:56:32:5c:09:99:4f:83:9b:
        42:bf:be:2a:37:3d:86:a7:a6:d8:62:1c:43:66:59:3e:
        30:6f:b7:ac:8b:17:8e:c4:88:7a:bd:d4:f8:17:5c:4a:
        5e:ca:42:d4:1e:ee:56:9d:19:ee:04:06:08:d2:60:30:
        42:7e:65:15:a6:d1:e4:aa:1f:0c:88:4c:bb:f9:3e:ba:
        53:8c:54:d0:1a:db:9d:bf:aa:c4:f6:34:be:d4:27:3c:
        f6:b0:6f:91:9d:f9:1d:dd:dc:00:9e:7e:a2:94:76:a4:
        82:c9:d0:1f:16:f2:7e:d0:93:ca:f3:b4:3b:1e:6a:47:
        fb:ff:86:38:2c:c6:05:06:00:8b:3b:29:26:ed:33:e3:
        3a:fa:94:e8:b3:fb:a6:da:3e:f4:2e:8b:60:d8:63:2c:
        49:e5:c5:f6:ce:b7:97:77:7d:b9:25:27:a7:3c:c6:86
    Fingerprint (SHA-256):
        4C:6E:64:42:96:76:6D:A9:81:10:60:B5:1A:DF:09:8D:B7:E0:0B:A1:6D:AB:F3:FB:5B:2B:D2:BC:C7:D7:6C:A4
    Fingerprint (SHA1):
        5B:A4:0F:5C:F8:48:01:7C:13:47:70:37:DA:0A:60:1A:4B:FC:C1:9F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3072: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3073: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153019 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3074: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3075: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3076: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153020 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3077: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3078: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3079: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3080: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153021 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3081: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3082: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153022 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3083: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3084: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3085: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3086: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3087: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153023   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502152925.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3088: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3089: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3090: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3091: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153024   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3092: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3093: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3094: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3095: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153020 (0x1dee3f3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:04 2017
            Not After : Mon May 02 15:30:04 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:b1:8c:d6:82:b7:2f:10:6a:f8:52:6b:c4:52:32:af:
                    cd:92:f3:d4:2e:40:7b:70:3b:5d:77:7a:f4:81:05:b3:
                    62:23:7f:ca:f5:d9:c9:0e:8c:16:88:df:cb:52:e5:52:
                    68:5b:ec:e6:52:cc:70:21:6f:13:24:cb:df:89:9c:b3:
                    e8:68:40:4d:b8:41:8f:ea:4c:02:76:42:85:87:3a:a0:
                    60:46:03:07:20:b1:e3:83:82:7e:49:23:6d:38:90:90:
                    ac:3f:5f:41:fd:dc:a2:68:42:1d:32:52:dd:f8:79:00:
                    f5:0b:75:b8:7f:73:28:6a:a9:04:3c:5a:fb:16:5d:83:
                    39:05:25:3f:10:f1:f5:4c:d9:c8:2e:4e:e2:57:e1:1f:
                    34:3c:28:ae:b6:36:00:bc:17:70:7f:e0:e9:74:77:07:
                    e3:79:dd:d4:e8:75:ca:26:78:1a:2d:6c:0b:f8:7f:8b:
                    40:47:2b:de:4e:f9:84:6a:1f:e4:59:52:ed:e6:22:21:
                    88:a3:fd:ea:ce:9f:05:1d:a1:dc:ff:50:2a:c0:11:1a:
                    a5:e5:b2:b4:b7:ee:02:67:0a:3c:cc:2f:60:0f:d2:78:
                    03:ab:93:98:da:1a:8e:48:76:cc:c4:d5:3d:ac:6c:f7:
                    a6:8d:2b:fe:05:68:3e:19:76:93:56:de:f4:53:05:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:7a:84:cd:1a:f7:18:ff:19:1b:9c:c3:de:6b:64:3f:
        bf:b0:46:fc:45:10:90:6e:67:ea:7b:98:2e:f3:da:7d:
        16:96:b5:d4:8e:c7:89:c1:b6:a5:a8:bc:fe:7f:25:1e:
        46:eb:b8:13:7c:80:d1:95:62:47:db:63:c1:af:d4:06:
        a2:62:4b:e8:94:02:7e:81:67:4b:43:f8:7b:bf:b1:c4:
        b0:de:e7:2a:5d:02:cd:36:a1:9b:01:f7:4d:ed:ea:9f:
        6d:6e:55:f9:1e:2a:fd:6c:ca:66:56:f4:f1:aa:8c:09:
        99:8e:b4:45:f4:6e:5b:c4:e7:98:ce:12:6f:2e:14:42:
        e8:66:64:ed:75:84:13:35:7d:bb:f7:a5:4a:1d:9a:b6:
        76:c2:1a:fc:d5:ac:c8:d0:8b:88:88:24:54:49:f7:a0:
        5e:f2:31:49:af:8f:2a:95:cf:0b:1c:07:6f:5b:19:25:
        a8:27:ce:0b:00:25:eb:9d:5c:ca:9a:8a:d4:65:35:c8:
        72:75:9c:83:3f:b1:10:ac:36:76:d1:12:73:e9:52:04:
        c9:67:8e:9c:65:27:f5:b5:89:6f:72:20:c6:5b:b4:2d:
        5a:b2:b6:b3:6f:f6:12:1f:64:1f:b7:3f:58:cc:63:2f:
        2f:de:f3:98:1a:58:cb:89:33:87:1e:72:ff:3a:5b:56
    Fingerprint (SHA-256):
        E9:C6:4B:BD:92:B0:96:ED:7C:6E:AB:ED:C6:F4:4A:6A:63:38:6D:45:52:EC:8C:FD:8F:B3:28:6C:61:86:99:04
    Fingerprint (SHA1):
        C1:57:C7:50:C9:55:88:EA:F9:AE:C3:D0:0B:D0:72:67:E9:F2:6B:87
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3096: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153020 (0x1dee3f3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:04 2017
            Not After : Mon May 02 15:30:04 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:b1:8c:d6:82:b7:2f:10:6a:f8:52:6b:c4:52:32:af:
                    cd:92:f3:d4:2e:40:7b:70:3b:5d:77:7a:f4:81:05:b3:
                    62:23:7f:ca:f5:d9:c9:0e:8c:16:88:df:cb:52:e5:52:
                    68:5b:ec:e6:52:cc:70:21:6f:13:24:cb:df:89:9c:b3:
                    e8:68:40:4d:b8:41:8f:ea:4c:02:76:42:85:87:3a:a0:
                    60:46:03:07:20:b1:e3:83:82:7e:49:23:6d:38:90:90:
                    ac:3f:5f:41:fd:dc:a2:68:42:1d:32:52:dd:f8:79:00:
                    f5:0b:75:b8:7f:73:28:6a:a9:04:3c:5a:fb:16:5d:83:
                    39:05:25:3f:10:f1:f5:4c:d9:c8:2e:4e:e2:57:e1:1f:
                    34:3c:28:ae:b6:36:00:bc:17:70:7f:e0:e9:74:77:07:
                    e3:79:dd:d4:e8:75:ca:26:78:1a:2d:6c:0b:f8:7f:8b:
                    40:47:2b:de:4e:f9:84:6a:1f:e4:59:52:ed:e6:22:21:
                    88:a3:fd:ea:ce:9f:05:1d:a1:dc:ff:50:2a:c0:11:1a:
                    a5:e5:b2:b4:b7:ee:02:67:0a:3c:cc:2f:60:0f:d2:78:
                    03:ab:93:98:da:1a:8e:48:76:cc:c4:d5:3d:ac:6c:f7:
                    a6:8d:2b:fe:05:68:3e:19:76:93:56:de:f4:53:05:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:7a:84:cd:1a:f7:18:ff:19:1b:9c:c3:de:6b:64:3f:
        bf:b0:46:fc:45:10:90:6e:67:ea:7b:98:2e:f3:da:7d:
        16:96:b5:d4:8e:c7:89:c1:b6:a5:a8:bc:fe:7f:25:1e:
        46:eb:b8:13:7c:80:d1:95:62:47:db:63:c1:af:d4:06:
        a2:62:4b:e8:94:02:7e:81:67:4b:43:f8:7b:bf:b1:c4:
        b0:de:e7:2a:5d:02:cd:36:a1:9b:01:f7:4d:ed:ea:9f:
        6d:6e:55:f9:1e:2a:fd:6c:ca:66:56:f4:f1:aa:8c:09:
        99:8e:b4:45:f4:6e:5b:c4:e7:98:ce:12:6f:2e:14:42:
        e8:66:64:ed:75:84:13:35:7d:bb:f7:a5:4a:1d:9a:b6:
        76:c2:1a:fc:d5:ac:c8:d0:8b:88:88:24:54:49:f7:a0:
        5e:f2:31:49:af:8f:2a:95:cf:0b:1c:07:6f:5b:19:25:
        a8:27:ce:0b:00:25:eb:9d:5c:ca:9a:8a:d4:65:35:c8:
        72:75:9c:83:3f:b1:10:ac:36:76:d1:12:73:e9:52:04:
        c9:67:8e:9c:65:27:f5:b5:89:6f:72:20:c6:5b:b4:2d:
        5a:b2:b6:b3:6f:f6:12:1f:64:1f:b7:3f:58:cc:63:2f:
        2f:de:f3:98:1a:58:cb:89:33:87:1e:72:ff:3a:5b:56
    Fingerprint (SHA-256):
        E9:C6:4B:BD:92:B0:96:ED:7C:6E:AB:ED:C6:F4:4A:6A:63:38:6D:45:52:EC:8C:FD:8F:B3:28:6C:61:86:99:04
    Fingerprint (SHA1):
        C1:57:C7:50:C9:55:88:EA:F9:AE:C3:D0:0B:D0:72:67:E9:F2:6B:87
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3097: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3098: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153025 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3099: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3100: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3101: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153026 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3102: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3103: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3104: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3105: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153027 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3106: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3107: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153028 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3108: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3109: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3110: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3111: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3112: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153029   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502152926.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3113: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3114: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3115: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3116: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153030   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3117: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3118: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3119: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3120: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153031   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-BridgeNavy-502152927.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3121: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3122: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3123: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3124: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153032   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3125: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3126: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3127: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3128: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153026 (0x1dee3f42)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:06 2017
            Not After : Mon May 02 15:30:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:e0:06:3e:4b:cb:8b:50:b5:da:7b:c3:17:2e:19:b5:
                    0c:04:95:45:b2:da:ca:b6:04:1a:a3:64:9a:af:5a:ad:
                    e6:8b:e4:80:ca:9f:d8:fb:32:34:1f:6b:10:09:5e:c5:
                    21:f9:fc:f7:0c:34:00:43:06:e2:9a:91:2d:19:92:a6:
                    2e:04:94:a3:a5:07:11:25:7e:9c:b3:9c:54:6d:05:1a:
                    42:26:eb:bf:4a:82:7a:ce:9c:cc:5b:ea:e5:ea:58:e5:
                    db:36:45:cb:db:3c:9b:37:f0:53:88:b2:9f:09:82:9e:
                    a5:c3:65:c9:fb:b4:c5:a6:45:0d:d6:8f:ea:2c:1f:99:
                    14:b0:56:5c:4a:0e:7f:60:41:61:f3:09:65:03:dc:b8:
                    40:e9:8c:4d:10:79:25:d2:b6:90:9d:dd:d2:dd:eb:4f:
                    23:d5:cf:bc:38:d3:9b:22:1a:63:0f:fc:44:6f:4a:44:
                    f0:46:1e:76:6f:97:f8:a4:2b:c5:97:55:97:13:5d:31:
                    10:a0:dd:fc:e6:09:2d:24:0e:fc:d8:25:9d:b6:c8:95:
                    af:b0:a7:ec:c3:28:29:a3:60:9a:ee:cc:db:e3:47:ce:
                    71:7d:7a:15:39:6f:bb:77:12:48:b3:aa:96:11:d1:d2:
                    8a:10:3f:bf:d0:29:18:f0:40:09:9c:02:a5:21:ea:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:d9:ea:c1:d9:e1:ce:1e:ea:5a:56:21:af:c0:ba:10:
        cb:e3:eb:28:e5:96:23:00:e7:4c:47:02:dc:99:df:c4:
        44:ee:ac:a7:01:d8:83:47:2d:13:9b:90:a3:84:81:6f:
        4f:8d:c7:a5:a8:5c:0b:30:90:77:c1:f6:39:39:d0:b2:
        c9:37:64:74:85:52:cf:75:27:47:43:81:32:d8:73:f2:
        ee:c9:49:37:36:02:22:24:55:fb:34:d9:bc:99:fd:ef:
        aa:2e:69:30:16:67:86:39:01:15:f0:5c:0a:0b:14:1c:
        20:82:89:30:df:5f:88:6f:87:71:07:70:46:72:1c:a8:
        58:24:7b:7b:e6:e1:d5:1c:eb:1b:c2:84:19:76:83:58:
        5e:08:96:ca:56:b8:6a:00:cc:a4:2b:3d:e3:06:d3:64:
        53:37:6b:2d:f7:48:23:e3:f2:9b:fe:a0:c2:d1:94:bc:
        cf:68:5f:1d:8c:83:25:45:51:d5:78:f4:ea:ec:d2:b1:
        3a:a1:93:8b:1e:28:21:94:16:99:16:f5:c1:cd:6f:60:
        da:c3:b2:66:51:26:36:90:09:75:23:14:c0:05:11:82:
        b2:06:31:f7:db:ea:29:c0:ee:0f:7a:36:24:7d:84:a6:
        3e:a2:3e:a5:ca:e9:bb:dd:a3:2b:f9:0c:50:26:e2:9a
    Fingerprint (SHA-256):
        1B:78:CC:C1:6D:F0:77:96:42:F1:D9:B8:5C:41:1E:F9:99:E8:62:71:1B:41:9A:D9:5D:A9:6B:0B:4C:A2:06:7B
    Fingerprint (SHA1):
        4B:78:C4:73:6B:B8:80:E5:10:34:E9:D0:B4:BC:78:9F:9F:4E:08:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3129: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153026 (0x1dee3f42)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:06 2017
            Not After : Mon May 02 15:30:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:e0:06:3e:4b:cb:8b:50:b5:da:7b:c3:17:2e:19:b5:
                    0c:04:95:45:b2:da:ca:b6:04:1a:a3:64:9a:af:5a:ad:
                    e6:8b:e4:80:ca:9f:d8:fb:32:34:1f:6b:10:09:5e:c5:
                    21:f9:fc:f7:0c:34:00:43:06:e2:9a:91:2d:19:92:a6:
                    2e:04:94:a3:a5:07:11:25:7e:9c:b3:9c:54:6d:05:1a:
                    42:26:eb:bf:4a:82:7a:ce:9c:cc:5b:ea:e5:ea:58:e5:
                    db:36:45:cb:db:3c:9b:37:f0:53:88:b2:9f:09:82:9e:
                    a5:c3:65:c9:fb:b4:c5:a6:45:0d:d6:8f:ea:2c:1f:99:
                    14:b0:56:5c:4a:0e:7f:60:41:61:f3:09:65:03:dc:b8:
                    40:e9:8c:4d:10:79:25:d2:b6:90:9d:dd:d2:dd:eb:4f:
                    23:d5:cf:bc:38:d3:9b:22:1a:63:0f:fc:44:6f:4a:44:
                    f0:46:1e:76:6f:97:f8:a4:2b:c5:97:55:97:13:5d:31:
                    10:a0:dd:fc:e6:09:2d:24:0e:fc:d8:25:9d:b6:c8:95:
                    af:b0:a7:ec:c3:28:29:a3:60:9a:ee:cc:db:e3:47:ce:
                    71:7d:7a:15:39:6f:bb:77:12:48:b3:aa:96:11:d1:d2:
                    8a:10:3f:bf:d0:29:18:f0:40:09:9c:02:a5:21:ea:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:d9:ea:c1:d9:e1:ce:1e:ea:5a:56:21:af:c0:ba:10:
        cb:e3:eb:28:e5:96:23:00:e7:4c:47:02:dc:99:df:c4:
        44:ee:ac:a7:01:d8:83:47:2d:13:9b:90:a3:84:81:6f:
        4f:8d:c7:a5:a8:5c:0b:30:90:77:c1:f6:39:39:d0:b2:
        c9:37:64:74:85:52:cf:75:27:47:43:81:32:d8:73:f2:
        ee:c9:49:37:36:02:22:24:55:fb:34:d9:bc:99:fd:ef:
        aa:2e:69:30:16:67:86:39:01:15:f0:5c:0a:0b:14:1c:
        20:82:89:30:df:5f:88:6f:87:71:07:70:46:72:1c:a8:
        58:24:7b:7b:e6:e1:d5:1c:eb:1b:c2:84:19:76:83:58:
        5e:08:96:ca:56:b8:6a:00:cc:a4:2b:3d:e3:06:d3:64:
        53:37:6b:2d:f7:48:23:e3:f2:9b:fe:a0:c2:d1:94:bc:
        cf:68:5f:1d:8c:83:25:45:51:d5:78:f4:ea:ec:d2:b1:
        3a:a1:93:8b:1e:28:21:94:16:99:16:f5:c1:cd:6f:60:
        da:c3:b2:66:51:26:36:90:09:75:23:14:c0:05:11:82:
        b2:06:31:f7:db:ea:29:c0:ee:0f:7a:36:24:7d:84:a6:
        3e:a2:3e:a5:ca:e9:bb:dd:a3:2b:f9:0c:50:26:e2:9a
    Fingerprint (SHA-256):
        1B:78:CC:C1:6D:F0:77:96:42:F1:D9:B8:5C:41:1E:F9:99:E8:62:71:1B:41:9A:D9:5D:A9:6B:0B:4C:A2:06:7B
    Fingerprint (SHA1):
        4B:78:C4:73:6B:B8:80:E5:10:34:E9:D0:B4:BC:78:9F:9F:4E:08:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3130: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3131: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153025 (0x1dee3f41)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:30:06 2017
            Not After : Mon May 02 15:30:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:76:ee:3f:f2:05:ba:24:fb:c7:02:58:09:6b:2b:36:
                    10:9b:c5:4a:40:7b:43:a1:99:2d:35:e9:3b:0e:71:a7:
                    3e:80:89:54:05:a4:0e:4c:10:58:39:14:b8:75:8c:2d:
                    47:9c:5b:ae:9d:a0:23:bf:6b:a8:74:b5:cb:fd:e7:da:
                    e4:97:d1:1e:dd:33:6f:de:2a:7f:ff:ed:73:d8:64:3f:
                    4c:73:c2:2c:1b:c0:0f:b7:4b:f5:12:4b:2e:c9:9d:57:
                    ae:6f:ea:69:16:c4:59:f3:79:57:06:e4:28:54:36:98:
                    cd:14:e8:78:62:04:1b:f8:72:8d:ba:eb:f6:9d:4b:0f:
                    4e:d0:f3:29:22:cb:de:e9:f0:30:dd:7e:77:f4:90:45:
                    f4:f4:bb:85:cd:89:f9:5f:e4:ab:17:29:d3:c9:76:e9:
                    dc:f1:4a:56:a2:25:14:d3:a0:9f:c8:c1:ed:b5:a0:9c:
                    8c:9d:21:26:49:69:8d:bd:52:69:0b:33:54:42:df:14:
                    c7:a6:cb:d7:c0:b4:cc:71:2d:1f:4d:47:e1:39:05:73:
                    ee:10:be:fe:04:a0:dd:d7:65:e1:29:96:ef:9a:75:52:
                    7a:2d:7d:3b:65:ce:20:b4:a4:d0:44:54:d3:56:3f:10:
                    a1:64:45:6b:b2:9f:34:0e:80:65:66:67:61:62:8e:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:c0:bf:11:d6:3f:de:27:70:c1:3b:2b:e1:c4:fc:eb:
        a7:af:7e:43:db:02:07:56:26:f7:d1:ba:23:9f:d9:f6:
        8d:11:07:7e:92:c6:2e:72:b6:9e:aa:42:8e:69:3d:7e:
        8d:1f:bb:09:1f:ce:c5:e6:da:d0:17:21:b2:68:2f:73:
        1f:d3:0d:ec:f3:0c:a0:3f:c2:1a:79:36:be:e3:21:02:
        bc:49:36:dd:a6:51:e6:c9:8f:4e:f3:c9:2a:ec:56:21:
        3f:bf:37:7d:12:6d:7e:84:bd:3d:e5:2d:1d:1e:9f:0a:
        39:49:58:50:1d:0f:4b:41:31:8c:06:27:0c:ce:72:c8:
        b3:d4:e3:14:b8:6d:24:a5:2f:91:8c:19:07:b5:d2:ff:
        8a:aa:f5:f6:cb:b0:21:ea:dc:1f:9c:d6:fc:c7:c5:70:
        52:72:38:6f:52:fc:20:06:43:bb:3d:bf:68:33:7b:62:
        40:39:ab:97:be:f1:7f:e4:5b:51:76:62:6d:ab:7a:47:
        97:5e:32:70:fd:67:86:af:d9:99:68:74:b8:e2:e6:6f:
        c6:f3:12:76:22:71:32:6c:d7:e6:c1:79:27:23:2b:53:
        d9:23:63:8a:c4:e3:06:0e:0b:2e:07:6d:6a:34:3b:15:
        80:08:52:47:8c:ac:d3:96:75:26:4f:9d:bb:ff:b9:e1
    Fingerprint (SHA-256):
        83:03:85:8C:7F:F4:17:94:4E:BC:5C:75:21:1E:68:09:63:36:39:13:2C:8F:8E:6B:57:D6:60:19:0D:12:FE:CB
    Fingerprint (SHA1):
        8A:B0:83:43:BF:9D:5F:33:88:FF:8A:D7:0E:87:24:92:77:D5:98:7F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3132: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153026 (0x1dee3f42)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:06 2017
            Not After : Mon May 02 15:30:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:e0:06:3e:4b:cb:8b:50:b5:da:7b:c3:17:2e:19:b5:
                    0c:04:95:45:b2:da:ca:b6:04:1a:a3:64:9a:af:5a:ad:
                    e6:8b:e4:80:ca:9f:d8:fb:32:34:1f:6b:10:09:5e:c5:
                    21:f9:fc:f7:0c:34:00:43:06:e2:9a:91:2d:19:92:a6:
                    2e:04:94:a3:a5:07:11:25:7e:9c:b3:9c:54:6d:05:1a:
                    42:26:eb:bf:4a:82:7a:ce:9c:cc:5b:ea:e5:ea:58:e5:
                    db:36:45:cb:db:3c:9b:37:f0:53:88:b2:9f:09:82:9e:
                    a5:c3:65:c9:fb:b4:c5:a6:45:0d:d6:8f:ea:2c:1f:99:
                    14:b0:56:5c:4a:0e:7f:60:41:61:f3:09:65:03:dc:b8:
                    40:e9:8c:4d:10:79:25:d2:b6:90:9d:dd:d2:dd:eb:4f:
                    23:d5:cf:bc:38:d3:9b:22:1a:63:0f:fc:44:6f:4a:44:
                    f0:46:1e:76:6f:97:f8:a4:2b:c5:97:55:97:13:5d:31:
                    10:a0:dd:fc:e6:09:2d:24:0e:fc:d8:25:9d:b6:c8:95:
                    af:b0:a7:ec:c3:28:29:a3:60:9a:ee:cc:db:e3:47:ce:
                    71:7d:7a:15:39:6f:bb:77:12:48:b3:aa:96:11:d1:d2:
                    8a:10:3f:bf:d0:29:18:f0:40:09:9c:02:a5:21:ea:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:d9:ea:c1:d9:e1:ce:1e:ea:5a:56:21:af:c0:ba:10:
        cb:e3:eb:28:e5:96:23:00:e7:4c:47:02:dc:99:df:c4:
        44:ee:ac:a7:01:d8:83:47:2d:13:9b:90:a3:84:81:6f:
        4f:8d:c7:a5:a8:5c:0b:30:90:77:c1:f6:39:39:d0:b2:
        c9:37:64:74:85:52:cf:75:27:47:43:81:32:d8:73:f2:
        ee:c9:49:37:36:02:22:24:55:fb:34:d9:bc:99:fd:ef:
        aa:2e:69:30:16:67:86:39:01:15:f0:5c:0a:0b:14:1c:
        20:82:89:30:df:5f:88:6f:87:71:07:70:46:72:1c:a8:
        58:24:7b:7b:e6:e1:d5:1c:eb:1b:c2:84:19:76:83:58:
        5e:08:96:ca:56:b8:6a:00:cc:a4:2b:3d:e3:06:d3:64:
        53:37:6b:2d:f7:48:23:e3:f2:9b:fe:a0:c2:d1:94:bc:
        cf:68:5f:1d:8c:83:25:45:51:d5:78:f4:ea:ec:d2:b1:
        3a:a1:93:8b:1e:28:21:94:16:99:16:f5:c1:cd:6f:60:
        da:c3:b2:66:51:26:36:90:09:75:23:14:c0:05:11:82:
        b2:06:31:f7:db:ea:29:c0:ee:0f:7a:36:24:7d:84:a6:
        3e:a2:3e:a5:ca:e9:bb:dd:a3:2b:f9:0c:50:26:e2:9a
    Fingerprint (SHA-256):
        1B:78:CC:C1:6D:F0:77:96:42:F1:D9:B8:5C:41:1E:F9:99:E8:62:71:1B:41:9A:D9:5D:A9:6B:0B:4C:A2:06:7B
    Fingerprint (SHA1):
        4B:78:C4:73:6B:B8:80:E5:10:34:E9:D0:B4:BC:78:9F:9F:4E:08:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3133: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153026 (0x1dee3f42)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:06 2017
            Not After : Mon May 02 15:30:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:e0:06:3e:4b:cb:8b:50:b5:da:7b:c3:17:2e:19:b5:
                    0c:04:95:45:b2:da:ca:b6:04:1a:a3:64:9a:af:5a:ad:
                    e6:8b:e4:80:ca:9f:d8:fb:32:34:1f:6b:10:09:5e:c5:
                    21:f9:fc:f7:0c:34:00:43:06:e2:9a:91:2d:19:92:a6:
                    2e:04:94:a3:a5:07:11:25:7e:9c:b3:9c:54:6d:05:1a:
                    42:26:eb:bf:4a:82:7a:ce:9c:cc:5b:ea:e5:ea:58:e5:
                    db:36:45:cb:db:3c:9b:37:f0:53:88:b2:9f:09:82:9e:
                    a5:c3:65:c9:fb:b4:c5:a6:45:0d:d6:8f:ea:2c:1f:99:
                    14:b0:56:5c:4a:0e:7f:60:41:61:f3:09:65:03:dc:b8:
                    40:e9:8c:4d:10:79:25:d2:b6:90:9d:dd:d2:dd:eb:4f:
                    23:d5:cf:bc:38:d3:9b:22:1a:63:0f:fc:44:6f:4a:44:
                    f0:46:1e:76:6f:97:f8:a4:2b:c5:97:55:97:13:5d:31:
                    10:a0:dd:fc:e6:09:2d:24:0e:fc:d8:25:9d:b6:c8:95:
                    af:b0:a7:ec:c3:28:29:a3:60:9a:ee:cc:db:e3:47:ce:
                    71:7d:7a:15:39:6f:bb:77:12:48:b3:aa:96:11:d1:d2:
                    8a:10:3f:bf:d0:29:18:f0:40:09:9c:02:a5:21:ea:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:d9:ea:c1:d9:e1:ce:1e:ea:5a:56:21:af:c0:ba:10:
        cb:e3:eb:28:e5:96:23:00:e7:4c:47:02:dc:99:df:c4:
        44:ee:ac:a7:01:d8:83:47:2d:13:9b:90:a3:84:81:6f:
        4f:8d:c7:a5:a8:5c:0b:30:90:77:c1:f6:39:39:d0:b2:
        c9:37:64:74:85:52:cf:75:27:47:43:81:32:d8:73:f2:
        ee:c9:49:37:36:02:22:24:55:fb:34:d9:bc:99:fd:ef:
        aa:2e:69:30:16:67:86:39:01:15:f0:5c:0a:0b:14:1c:
        20:82:89:30:df:5f:88:6f:87:71:07:70:46:72:1c:a8:
        58:24:7b:7b:e6:e1:d5:1c:eb:1b:c2:84:19:76:83:58:
        5e:08:96:ca:56:b8:6a:00:cc:a4:2b:3d:e3:06:d3:64:
        53:37:6b:2d:f7:48:23:e3:f2:9b:fe:a0:c2:d1:94:bc:
        cf:68:5f:1d:8c:83:25:45:51:d5:78:f4:ea:ec:d2:b1:
        3a:a1:93:8b:1e:28:21:94:16:99:16:f5:c1:cd:6f:60:
        da:c3:b2:66:51:26:36:90:09:75:23:14:c0:05:11:82:
        b2:06:31:f7:db:ea:29:c0:ee:0f:7a:36:24:7d:84:a6:
        3e:a2:3e:a5:ca:e9:bb:dd:a3:2b:f9:0c:50:26:e2:9a
    Fingerprint (SHA-256):
        1B:78:CC:C1:6D:F0:77:96:42:F1:D9:B8:5C:41:1E:F9:99:E8:62:71:1B:41:9A:D9:5D:A9:6B:0B:4C:A2:06:7B
    Fingerprint (SHA1):
        4B:78:C4:73:6B:B8:80:E5:10:34:E9:D0:B4:BC:78:9F:9F:4E:08:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3134: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3135: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153033 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3136: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3137: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3138: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153034 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3139: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3140: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3141: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3142: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502153035   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3143: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3144: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3145: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3146: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502153036   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3147: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3148: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3149: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3150: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502153037 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3151: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3152: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502153038 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3153: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3154: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3155: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3156: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3157: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153039   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3158: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3159: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3160: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3161: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153040   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3162: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3163: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3164: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3165: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153041   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3166: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3167: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3168: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3169: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153042   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3170: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3171: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3172: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153033 (0x1dee3f49)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:30:08 2017
            Not After : Mon May 02 15:30:08 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:0c:fa:e0:74:9e:4d:ab:ab:e7:91:59:44:5d:b1:8f:
                    e5:f6:05:78:3a:17:99:66:63:fa:e7:b1:0c:04:3d:0c:
                    b5:b2:f4:fe:66:fe:f4:52:1a:6e:67:e4:7f:82:b7:25:
                    08:5d:fa:a0:7f:c5:31:d2:af:03:e0:a5:c0:0d:a6:ce:
                    ef:d1:9c:78:12:45:92:e9:17:49:59:c6:07:5c:7c:14:
                    ff:90:a2:fb:89:f9:99:8b:fd:da:67:7d:da:ea:b5:45:
                    52:0d:e1:2b:9b:f3:08:fc:2b:d2:2e:38:72:b3:c4:3c:
                    99:75:93:63:92:11:27:9b:03:72:c8:d2:4e:96:58:b8:
                    c1:93:fe:02:99:d9:90:1a:3c:dc:41:57:7a:00:ba:e1:
                    1f:80:b4:88:c9:53:87:84:81:e4:63:b8:75:30:10:00:
                    e3:ee:95:4d:77:86:89:f6:af:18:82:5d:7b:52:a6:c3:
                    04:04:67:0f:44:0b:7b:5f:6a:2c:6a:ba:46:46:d0:aa:
                    9b:0a:13:35:c0:39:41:d1:b2:25:49:67:03:96:f3:6f:
                    fa:44:8c:a7:24:c1:64:a2:3c:de:1c:24:a4:75:09:8f:
                    33:fe:26:8e:29:65:67:f8:b9:2c:d5:01:db:4b:0e:f6:
                    b0:83:8c:3f:11:ba:58:8d:cd:29:9c:2b:ec:07:84:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:0b:46:77:ac:22:e5:d2:14:89:7e:43:49:20:d6:36:
        d3:94:27:ed:d9:3e:9c:08:9f:3d:d2:43:32:54:d6:a8:
        87:0e:3e:6d:be:f6:e4:74:35:02:7d:9c:ab:44:c5:63:
        c0:a7:80:10:f0:17:73:e0:ad:d4:f2:85:f7:f7:c0:d0:
        83:bb:f0:91:a1:9b:df:fc:b5:24:a5:94:c1:33:df:89:
        4f:8e:56:59:8f:1f:2f:ee:39:bb:9c:09:db:fe:a5:8d:
        6b:67:60:e7:4f:f4:dd:33:e5:09:11:29:30:91:fa:cb:
        cb:b8:a9:91:6c:ad:c1:67:32:d4:d4:5f:69:97:fd:10:
        bf:8c:26:7e:e5:4c:15:e7:bd:3d:6b:b9:a4:b1:af:67:
        7e:e4:35:76:1f:e6:46:3a:66:f3:23:52:f0:50:24:82:
        ed:ed:d9:48:62:b0:d8:c9:96:a1:68:61:f3:64:e9:d5:
        a2:49:cd:86:42:c1:76:66:68:c2:a0:61:6b:67:9b:a1:
        37:5d:42:d3:53:58:6d:22:b3:ae:30:c0:4a:65:71:7b:
        6d:35:e6:73:0b:79:59:f8:20:49:f5:34:e8:0d:12:65:
        ac:9a:a9:88:7f:6b:26:ec:37:c2:03:d0:c0:ad:bc:ed:
        1c:a5:e5:e5:25:d3:06:7b:41:b7:b5:3a:d2:ec:8b:ed
    Fingerprint (SHA-256):
        E2:5D:CC:3F:F7:E7:43:C3:32:1E:FD:CB:58:8D:F8:B3:E1:61:CB:5D:5A:19:CD:59:25:14:AF:27:6C:84:C8:A6
    Fingerprint (SHA1):
        6B:0E:1D:D2:18:A4:A7:2A:77:21:C1:EB:63:F4:E5:B0:9F:40:2E:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3173: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3174: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3175: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3176: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3177: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3178: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3179: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3180: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3181: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153034 (0x1dee3f4a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:08 2017
            Not After : Mon May 02 15:30:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:e5:75:78:3d:2b:b1:d1:df:a0:66:ec:5b:60:f0:6a:
                    53:58:b1:98:d3:11:3b:ae:ae:4e:68:a5:a5:d6:04:4e:
                    3d:22:57:c6:bb:c1:98:bd:cc:32:88:c3:f0:24:1c:59:
                    cb:30:01:37:5f:74:bd:0d:6a:fd:95:29:f7:17:ef:1a:
                    4a:1e:25:83:97:64:be:28:b3:64:fe:c6:a0:c3:f1:11:
                    7a:f2:97:10:62:cf:70:98:b7:ee:a2:3c:ab:e3:ce:36:
                    ec:3f:09:a1:df:e6:85:af:8d:58:b2:2e:41:e7:a3:db:
                    b2:17:13:72:81:dd:22:8a:80:67:0a:ba:84:4e:b3:7f:
                    d1:f8:8e:24:09:70:a1:51:34:ab:f6:6a:3e:be:55:f1:
                    77:d7:32:5f:d8:30:5c:c7:cf:7a:54:a7:23:0c:69:d0:
                    c1:a7:13:e3:5b:19:2b:a0:0d:2d:cc:8d:86:dc:d8:a2:
                    7b:52:d3:da:f8:a1:5a:87:2e:60:01:62:a0:44:a2:54:
                    38:86:0b:d3:ef:e7:97:4e:a6:7a:83:18:e1:23:82:39:
                    28:b5:e0:ba:40:e7:0a:e6:1c:52:e3:56:9a:40:8d:9f:
                    76:e4:0c:2b:b2:3e:fe:ee:00:3d:81:aa:0f:58:bb:bb:
                    9c:5d:51:e9:9c:00:cc:9d:14:09:23:53:42:e4:1e:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:34:31:0c:60:83:d9:59:06:2b:4a:8e:62:10:26:52:
        f1:3d:2d:96:0c:8d:34:7e:35:71:58:e3:1a:0b:c5:b9:
        1c:f5:ae:bd:21:91:d8:15:87:27:62:b9:ff:35:8c:03:
        89:10:e1:5d:a7:a9:8b:69:18:65:5e:28:bb:0f:5a:a4:
        cb:a2:e2:1e:49:d7:dd:c9:22:d0:2a:c6:94:47:8e:f8:
        8b:d4:cc:4e:8e:46:0e:d5:8f:a0:ba:3b:9b:de:02:b2:
        3d:31:a7:1f:5c:98:3c:57:7a:ae:e3:f6:ef:d4:44:bc:
        54:39:e7:37:79:4c:72:d9:81:ef:a7:e4:75:12:60:f9:
        6a:39:be:a4:52:8b:c1:98:86:88:8b:98:fd:21:73:cd:
        fc:2e:6f:b8:a0:eb:07:ed:e8:b2:ca:fc:e2:5a:a9:76:
        3b:04:38:1f:e3:54:fc:8b:18:5c:ee:6b:05:15:68:df:
        47:a5:ce:93:da:76:e8:6a:a3:80:8d:87:83:4d:d2:1f:
        0f:24:5c:55:9b:d9:83:19:30:05:60:70:a2:4f:3f:ef:
        2b:84:f6:8f:3c:9f:4c:7d:7b:af:ba:69:f0:90:13:d2:
        84:a8:2c:88:e0:ec:fc:8a:78:0d:6a:1a:04:78:57:dc:
        1d:af:fe:62:a2:32:ca:49:48:6d:77:4c:86:5c:95:80
    Fingerprint (SHA-256):
        93:4B:FC:66:C5:06:57:DE:0F:A4:04:58:1E:05:39:74:9C:44:17:13:22:98:33:A7:61:64:9C:54:3A:96:10:25
    Fingerprint (SHA1):
        6E:36:5E:8E:EF:0F:F4:65:C6:CF:60:20:74:9D:9E:60:3B:98:E2:B3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3182: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3183: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3184: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3185: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3186: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3187: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3188: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3189: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3190: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #3191: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #3192: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #3193: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #3194: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #3195: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3196: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3197: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #3198: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #3199: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3200: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153043 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3201: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3202: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3203: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3204: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153044   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3205: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3206: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3207: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3208: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153045   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3209: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3210: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3211: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3212: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502153046   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3213: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3214: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3215: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3216: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153047   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3217: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3218: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3219: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3220: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502153048   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3221: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3222: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3223: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3224: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502153049   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3225: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3226: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #3227: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3228: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502153050   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3229: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3230: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3231: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3232: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502153051   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3233: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3234: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3235: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153043 (0x1dee3f53)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:12 2017
            Not After : Mon May 02 15:30:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    b3:82:6d:c4:62:63:7f:02:e6:62:ed:88:21:1c:af:c3:
                    11:0a:a0:2d:34:5c:8c:f5:0c:6b:f9:fb:66:08:6e:9d:
                    33:59:86:db:9a:ce:5b:5a:b8:99:eb:af:0c:e5:c6:fd:
                    27:9b:f4:4c:0c:09:92:25:d9:04:12:cc:71:55:04:ba:
                    aa:7d:8c:55:ca:f0:58:76:60:82:88:c8:32:4d:4b:a7:
                    52:e3:bd:42:79:da:54:e6:50:e6:2e:5a:af:5e:11:53:
                    03:c2:a4:0e:63:e4:76:71:c1:25:bd:45:bc:e2:ec:e6:
                    59:0a:97:f5:2b:7d:70:4e:61:f6:fc:e6:b6:3d:5a:2d:
                    c7:6b:0a:2e:a4:a5:b5:18:55:7e:91:f4:8d:d4:07:f5:
                    06:ba:fb:06:b3:79:8c:dc:08:84:6c:c5:fd:ec:96:dc:
                    12:c2:a9:ff:df:1d:26:3e:33:b5:91:4f:2e:53:e6:94:
                    45:97:c8:c9:98:c5:08:c6:cb:81:f1:54:b9:c9:53:a2:
                    3e:fe:22:38:14:6b:6f:1b:e6:0c:8a:6e:c6:cb:99:1b:
                    1d:55:f0:5f:2d:27:eb:6c:0e:58:47:09:f8:4d:f8:36:
                    6d:7f:18:53:4f:01:f6:ed:a3:2b:f2:99:28:37:73:5a:
                    60:e9:dd:f8:c4:02:d5:f7:5c:27:3a:71:94:32:a1:12
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:8f:45:0c:3f:1c:7f:d0:bf:e5:b9:07:
        c1:a9:e0:ca:5f:4d:a2:a7:c6:5a:db:1d:a5:10:12:0e:
        c6:02:1d:00:bd:47:82:59:75:d0:b2:00:47:a0:2a:9d:
        94:0c:64:be:92:71:40:ed:fb:0d:ab:5f:82:d7:74:63
    Fingerprint (SHA-256):
        5C:26:54:47:46:89:D6:C7:67:89:C7:AB:D2:2F:48:62:4C:5F:9D:D2:76:CA:90:E5:24:BF:09:7B:A1:FB:8A:30
    Fingerprint (SHA1):
        83:40:40:74:A5:3A:52:62:61:42:A5:1A:9A:EF:85:B4:35:71:F9:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3236: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153043 (0x1dee3f53)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:12 2017
            Not After : Mon May 02 15:30:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    b3:82:6d:c4:62:63:7f:02:e6:62:ed:88:21:1c:af:c3:
                    11:0a:a0:2d:34:5c:8c:f5:0c:6b:f9:fb:66:08:6e:9d:
                    33:59:86:db:9a:ce:5b:5a:b8:99:eb:af:0c:e5:c6:fd:
                    27:9b:f4:4c:0c:09:92:25:d9:04:12:cc:71:55:04:ba:
                    aa:7d:8c:55:ca:f0:58:76:60:82:88:c8:32:4d:4b:a7:
                    52:e3:bd:42:79:da:54:e6:50:e6:2e:5a:af:5e:11:53:
                    03:c2:a4:0e:63:e4:76:71:c1:25:bd:45:bc:e2:ec:e6:
                    59:0a:97:f5:2b:7d:70:4e:61:f6:fc:e6:b6:3d:5a:2d:
                    c7:6b:0a:2e:a4:a5:b5:18:55:7e:91:f4:8d:d4:07:f5:
                    06:ba:fb:06:b3:79:8c:dc:08:84:6c:c5:fd:ec:96:dc:
                    12:c2:a9:ff:df:1d:26:3e:33:b5:91:4f:2e:53:e6:94:
                    45:97:c8:c9:98:c5:08:c6:cb:81:f1:54:b9:c9:53:a2:
                    3e:fe:22:38:14:6b:6f:1b:e6:0c:8a:6e:c6:cb:99:1b:
                    1d:55:f0:5f:2d:27:eb:6c:0e:58:47:09:f8:4d:f8:36:
                    6d:7f:18:53:4f:01:f6:ed:a3:2b:f2:99:28:37:73:5a:
                    60:e9:dd:f8:c4:02:d5:f7:5c:27:3a:71:94:32:a1:12
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:8f:45:0c:3f:1c:7f:d0:bf:e5:b9:07:
        c1:a9:e0:ca:5f:4d:a2:a7:c6:5a:db:1d:a5:10:12:0e:
        c6:02:1d:00:bd:47:82:59:75:d0:b2:00:47:a0:2a:9d:
        94:0c:64:be:92:71:40:ed:fb:0d:ab:5f:82:d7:74:63
    Fingerprint (SHA-256):
        5C:26:54:47:46:89:D6:C7:67:89:C7:AB:D2:2F:48:62:4C:5F:9D:D2:76:CA:90:E5:24:BF:09:7B:A1:FB:8A:30
    Fingerprint (SHA1):
        83:40:40:74:A5:3A:52:62:61:42:A5:1A:9A:EF:85:B4:35:71:F9:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3237: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153043 (0x1dee3f53)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:12 2017
            Not After : Mon May 02 15:30:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    b3:82:6d:c4:62:63:7f:02:e6:62:ed:88:21:1c:af:c3:
                    11:0a:a0:2d:34:5c:8c:f5:0c:6b:f9:fb:66:08:6e:9d:
                    33:59:86:db:9a:ce:5b:5a:b8:99:eb:af:0c:e5:c6:fd:
                    27:9b:f4:4c:0c:09:92:25:d9:04:12:cc:71:55:04:ba:
                    aa:7d:8c:55:ca:f0:58:76:60:82:88:c8:32:4d:4b:a7:
                    52:e3:bd:42:79:da:54:e6:50:e6:2e:5a:af:5e:11:53:
                    03:c2:a4:0e:63:e4:76:71:c1:25:bd:45:bc:e2:ec:e6:
                    59:0a:97:f5:2b:7d:70:4e:61:f6:fc:e6:b6:3d:5a:2d:
                    c7:6b:0a:2e:a4:a5:b5:18:55:7e:91:f4:8d:d4:07:f5:
                    06:ba:fb:06:b3:79:8c:dc:08:84:6c:c5:fd:ec:96:dc:
                    12:c2:a9:ff:df:1d:26:3e:33:b5:91:4f:2e:53:e6:94:
                    45:97:c8:c9:98:c5:08:c6:cb:81:f1:54:b9:c9:53:a2:
                    3e:fe:22:38:14:6b:6f:1b:e6:0c:8a:6e:c6:cb:99:1b:
                    1d:55:f0:5f:2d:27:eb:6c:0e:58:47:09:f8:4d:f8:36:
                    6d:7f:18:53:4f:01:f6:ed:a3:2b:f2:99:28:37:73:5a:
                    60:e9:dd:f8:c4:02:d5:f7:5c:27:3a:71:94:32:a1:12
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:8f:45:0c:3f:1c:7f:d0:bf:e5:b9:07:
        c1:a9:e0:ca:5f:4d:a2:a7:c6:5a:db:1d:a5:10:12:0e:
        c6:02:1d:00:bd:47:82:59:75:d0:b2:00:47:a0:2a:9d:
        94:0c:64:be:92:71:40:ed:fb:0d:ab:5f:82:d7:74:63
    Fingerprint (SHA-256):
        5C:26:54:47:46:89:D6:C7:67:89:C7:AB:D2:2F:48:62:4C:5F:9D:D2:76:CA:90:E5:24:BF:09:7B:A1:FB:8A:30
    Fingerprint (SHA1):
        83:40:40:74:A5:3A:52:62:61:42:A5:1A:9A:EF:85:B4:35:71:F9:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3238: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153043 (0x1dee3f53)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:12 2017
            Not After : Mon May 02 15:30:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    b3:82:6d:c4:62:63:7f:02:e6:62:ed:88:21:1c:af:c3:
                    11:0a:a0:2d:34:5c:8c:f5:0c:6b:f9:fb:66:08:6e:9d:
                    33:59:86:db:9a:ce:5b:5a:b8:99:eb:af:0c:e5:c6:fd:
                    27:9b:f4:4c:0c:09:92:25:d9:04:12:cc:71:55:04:ba:
                    aa:7d:8c:55:ca:f0:58:76:60:82:88:c8:32:4d:4b:a7:
                    52:e3:bd:42:79:da:54:e6:50:e6:2e:5a:af:5e:11:53:
                    03:c2:a4:0e:63:e4:76:71:c1:25:bd:45:bc:e2:ec:e6:
                    59:0a:97:f5:2b:7d:70:4e:61:f6:fc:e6:b6:3d:5a:2d:
                    c7:6b:0a:2e:a4:a5:b5:18:55:7e:91:f4:8d:d4:07:f5:
                    06:ba:fb:06:b3:79:8c:dc:08:84:6c:c5:fd:ec:96:dc:
                    12:c2:a9:ff:df:1d:26:3e:33:b5:91:4f:2e:53:e6:94:
                    45:97:c8:c9:98:c5:08:c6:cb:81:f1:54:b9:c9:53:a2:
                    3e:fe:22:38:14:6b:6f:1b:e6:0c:8a:6e:c6:cb:99:1b:
                    1d:55:f0:5f:2d:27:eb:6c:0e:58:47:09:f8:4d:f8:36:
                    6d:7f:18:53:4f:01:f6:ed:a3:2b:f2:99:28:37:73:5a:
                    60:e9:dd:f8:c4:02:d5:f7:5c:27:3a:71:94:32:a1:12
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:8f:45:0c:3f:1c:7f:d0:bf:e5:b9:07:
        c1:a9:e0:ca:5f:4d:a2:a7:c6:5a:db:1d:a5:10:12:0e:
        c6:02:1d:00:bd:47:82:59:75:d0:b2:00:47:a0:2a:9d:
        94:0c:64:be:92:71:40:ed:fb:0d:ab:5f:82:d7:74:63
    Fingerprint (SHA-256):
        5C:26:54:47:46:89:D6:C7:67:89:C7:AB:D2:2F:48:62:4C:5F:9D:D2:76:CA:90:E5:24:BF:09:7B:A1:FB:8A:30
    Fingerprint (SHA1):
        83:40:40:74:A5:3A:52:62:61:42:A5:1A:9A:EF:85:B4:35:71:F9:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #3239: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3240: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3241: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3242: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3243: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3244: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3245: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3246: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3247: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3248: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3249: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3250: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3251: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3252: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3253: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3254: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #3255: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3256: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3257: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3258: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3259: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3260: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3261: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3262: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3263: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3264: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3265: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3266: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153016Z
nextupdate=20180502153016Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:30:16 2017
    Next Update: Wed May 02 15:30:16 2018
    CRL Extensions:
chains.sh: #3267: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153016Z
nextupdate=20180502153016Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:30:16 2017
    Next Update: Wed May 02 15:30:16 2018
    CRL Extensions:
chains.sh: #3268: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153016Z
nextupdate=20180502153016Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:30:16 2017
    Next Update: Wed May 02 15:30:16 2018
    CRL Extensions:
chains.sh: #3269: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153016Z
nextupdate=20180502153016Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:30:16 2017
    Next Update: Wed May 02 15:30:16 2018
    CRL Extensions:
chains.sh: #3270: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153017Z
addcert 14 20170502153017Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:30:17 2017
    Next Update: Wed May 02 15:30:16 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:30:17 2017
    CRL Extensions:
chains.sh: #3271: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153018Z
addcert 15 20170502153018Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:30:18 2017
    Next Update: Wed May 02 15:30:16 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:30:18 2017
    CRL Extensions:
chains.sh: #3272: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3273: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3274: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3275: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #3276: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #3277: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #3278: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #3279: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #3280: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #3281: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:14 2017
            Not After : Mon May 02 15:30:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:57:79:0c:7d:df:b9:f0:e7:be:e6:6c:38:77:d7:09:
                    43:5a:fa:96:4e:7d:a0:d8:f5:66:fc:8e:f7:c2:77:31:
                    8d:fc:6b:39:76:88:2c:ed:7b:40:12:d1:53:6f:00:81:
                    22:33:09:d7:ee:a5:a5:c2:cd:fb:4e:2f:62:75:26:5d:
                    1d:d5:73:53:40:7d:81:19:97:7e:0b:b1:84:0d:a1:81:
                    87:2b:21:f5:db:c6:63:98:ea:f2:6c:0f:77:db:47:75:
                    8f:1a:61:d0:d7:9e:d4:0c:7e:21:3d:56:01:da:83:2c:
                    2f:30:d6:7e:e1:b4:e1:d5:ec:e1:e2:43:69:cb:18:be:
                    08:27:9c:0b:af:94:8f:2b:12:87:dc:93:05:83:b5:26:
                    dc:f1:52:a9:02:24:99:84:4c:35:3d:9d:61:b8:ae:c7:
                    80:33:16:87:12:6a:68:52:5c:ef:ad:bf:ce:3e:d1:f4:
                    d9:0f:56:bf:c4:60:f3:49:f8:41:f2:de:9e:59:5b:6f:
                    bd:fa:4a:98:a6:5e:45:8b:fa:6b:3d:67:c9:2e:9a:14:
                    3c:94:73:0c:28:64:ea:bb:b5:bf:43:c6:01:97:97:8b:
                    e6:27:20:75:ed:8a:83:85:75:24:53:8a:27:da:86:5b:
                    03:04:19:a8:c8:24:e1:cd:56:12:7c:a2:2d:d7:ba:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:35:8e:0f:26:89:7a:eb:6b:d6:ae:36:ef:28:61:e2:
        bc:a2:9d:53:09:17:f6:98:ab:db:d3:48:11:e8:5b:5c:
        f6:b1:d7:a4:38:9f:16:41:a2:50:d0:22:45:4d:5b:bc:
        37:f1:74:f8:4f:5b:47:77:73:d2:ac:c4:bb:44:34:eb:
        c0:b3:a4:ee:51:fd:e8:ce:e8:3d:2e:6e:df:2c:ec:1e:
        d4:eb:94:51:b4:63:ab:ca:a3:ff:e0:26:7c:3f:99:84:
        a4:0b:c2:c5:87:a7:2b:b5:b5:0d:96:3e:f8:94:58:90:
        07:8b:0d:b4:b5:54:9c:4a:96:b8:50:1a:3b:b7:01:79:
        9e:4a:c7:d6:b2:fb:23:a4:0d:7e:8f:7c:11:63:f6:af:
        58:19:52:2a:4c:4f:e1:f0:90:57:06:8e:c9:0d:61:ab:
        7c:50:26:6b:94:8c:25:2a:69:63:2a:df:44:b6:ca:7c:
        36:a6:ed:cc:68:d7:10:ae:d5:2a:4c:ea:13:17:b2:7e:
        b5:7b:f4:7d:38:52:ae:18:c0:98:5e:1c:97:77:6a:ba:
        3b:15:ab:86:51:78:3a:01:d3:97:1a:e8:48:35:3e:e3:
        f2:f8:e5:35:05:12:be:44:71:ce:68:a1:cc:af:78:f6:
        7a:06:b2:e4:a1:02:2e:ef:1c:69:a4:10:21:16:b8:4c
    Fingerprint (SHA-256):
        35:8D:E1:80:FF:0F:E0:66:C3:42:8F:04:B4:23:F8:C1:C6:8E:D3:ED:99:F6:CA:76:65:5F:60:7E:33:D5:B6:7E
    Fingerprint (SHA1):
        3E:E1:C8:F8:0B:3C:33:4B:13:E9:D1:27:CB:02:66:A6:4F:CC:55:4B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3282: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3283: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:14 2017
            Not After : Mon May 02 15:30:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:57:79:0c:7d:df:b9:f0:e7:be:e6:6c:38:77:d7:09:
                    43:5a:fa:96:4e:7d:a0:d8:f5:66:fc:8e:f7:c2:77:31:
                    8d:fc:6b:39:76:88:2c:ed:7b:40:12:d1:53:6f:00:81:
                    22:33:09:d7:ee:a5:a5:c2:cd:fb:4e:2f:62:75:26:5d:
                    1d:d5:73:53:40:7d:81:19:97:7e:0b:b1:84:0d:a1:81:
                    87:2b:21:f5:db:c6:63:98:ea:f2:6c:0f:77:db:47:75:
                    8f:1a:61:d0:d7:9e:d4:0c:7e:21:3d:56:01:da:83:2c:
                    2f:30:d6:7e:e1:b4:e1:d5:ec:e1:e2:43:69:cb:18:be:
                    08:27:9c:0b:af:94:8f:2b:12:87:dc:93:05:83:b5:26:
                    dc:f1:52:a9:02:24:99:84:4c:35:3d:9d:61:b8:ae:c7:
                    80:33:16:87:12:6a:68:52:5c:ef:ad:bf:ce:3e:d1:f4:
                    d9:0f:56:bf:c4:60:f3:49:f8:41:f2:de:9e:59:5b:6f:
                    bd:fa:4a:98:a6:5e:45:8b:fa:6b:3d:67:c9:2e:9a:14:
                    3c:94:73:0c:28:64:ea:bb:b5:bf:43:c6:01:97:97:8b:
                    e6:27:20:75:ed:8a:83:85:75:24:53:8a:27:da:86:5b:
                    03:04:19:a8:c8:24:e1:cd:56:12:7c:a2:2d:d7:ba:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:35:8e:0f:26:89:7a:eb:6b:d6:ae:36:ef:28:61:e2:
        bc:a2:9d:53:09:17:f6:98:ab:db:d3:48:11:e8:5b:5c:
        f6:b1:d7:a4:38:9f:16:41:a2:50:d0:22:45:4d:5b:bc:
        37:f1:74:f8:4f:5b:47:77:73:d2:ac:c4:bb:44:34:eb:
        c0:b3:a4:ee:51:fd:e8:ce:e8:3d:2e:6e:df:2c:ec:1e:
        d4:eb:94:51:b4:63:ab:ca:a3:ff:e0:26:7c:3f:99:84:
        a4:0b:c2:c5:87:a7:2b:b5:b5:0d:96:3e:f8:94:58:90:
        07:8b:0d:b4:b5:54:9c:4a:96:b8:50:1a:3b:b7:01:79:
        9e:4a:c7:d6:b2:fb:23:a4:0d:7e:8f:7c:11:63:f6:af:
        58:19:52:2a:4c:4f:e1:f0:90:57:06:8e:c9:0d:61:ab:
        7c:50:26:6b:94:8c:25:2a:69:63:2a:df:44:b6:ca:7c:
        36:a6:ed:cc:68:d7:10:ae:d5:2a:4c:ea:13:17:b2:7e:
        b5:7b:f4:7d:38:52:ae:18:c0:98:5e:1c:97:77:6a:ba:
        3b:15:ab:86:51:78:3a:01:d3:97:1a:e8:48:35:3e:e3:
        f2:f8:e5:35:05:12:be:44:71:ce:68:a1:cc:af:78:f6:
        7a:06:b2:e4:a1:02:2e:ef:1c:69:a4:10:21:16:b8:4c
    Fingerprint (SHA-256):
        35:8D:E1:80:FF:0F:E0:66:C3:42:8F:04:B4:23:F8:C1:C6:8E:D3:ED:99:F6:CA:76:65:5F:60:7E:33:D5:B6:7E
    Fingerprint (SHA1):
        3E:E1:C8:F8:0B:3C:33:4B:13:E9:D1:27:CB:02:66:A6:4F:CC:55:4B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3284: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3285: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3286: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153052 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3287: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3288: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3289: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3290: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502153053   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3291: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3292: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3293: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152943.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3294: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502152928.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3295: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3296: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3297: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152943.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3298: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502153054   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3299: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3300: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3301: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152943.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3302: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502152929.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3303: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3304: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3305: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3306: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502153055   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3307: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3308: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3309: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152943.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3310: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502152930.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3311: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3312: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3313: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152943.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3314: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502152931.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3315: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3316: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153021Z
nextupdate=20180502153021Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:30:21 2017
    Next Update: Wed May 02 15:30:21 2018
    CRL Extensions:
chains.sh: #3317: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153021Z
nextupdate=20180502153021Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:30:21 2017
    Next Update: Wed May 02 15:30:21 2018
    CRL Extensions:
chains.sh: #3318: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153021Z
nextupdate=20180502153021Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:30:21 2017
    Next Update: Wed May 02 15:30:21 2018
    CRL Extensions:
chains.sh: #3319: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153021Z
nextupdate=20180502153021Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:30:21 2017
    Next Update: Wed May 02 15:30:21 2018
    CRL Extensions:
chains.sh: #3320: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153022Z
addcert 20 20170502153022Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:30:22 2017
    Next Update: Wed May 02 15:30:21 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:30:22 2017
    CRL Extensions:
chains.sh: #3321: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153023Z
addcert 40 20170502153023Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:30:23 2017
    Next Update: Wed May 02 15:30:21 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:30:22 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:30:23 2017
    CRL Extensions:
chains.sh: #3322: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3323: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3324: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3325: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153052 (0x1dee3f5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:19 2017
            Not After : Mon May 02 15:30:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:8d:bf:4e:99:de:91:a9:12:8f:33:57:b0:a7:73:ce:
                    39:6e:91:e0:37:73:09:94:67:33:bc:d4:cb:b6:d3:6c:
                    51:c3:af:ea:94:ad:69:6d:c1:b6:43:91:0d:c1:75:cb:
                    68:c0:06:80:ac:56:25:c7:f5:b7:e3:dc:ba:01:7f:5b:
                    4d:56:f0:d0:7c:c8:61:ff:dd:a5:24:15:75:a3:37:66:
                    0c:d7:ac:9d:8b:2a:66:b5:a4:c1:ab:2e:c5:80:ce:65:
                    ca:51:94:38:a7:5a:e5:d7:09:e7:76:8c:5e:8b:97:39:
                    83:ad:eb:18:94:1f:f8:c8:00:14:6b:dc:a5:63:5d:4b:
                    e4:c6:23:e2:4d:bb:87:64:c7:a7:68:2d:a1:b7:f7:2d:
                    a9:b0:05:61:73:e2:2f:f5:41:05:74:ac:55:3c:3f:4b:
                    11:62:87:a5:77:e9:36:bb:a2:99:d6:e0:62:f4:6a:1b:
                    44:08:77:03:2c:6c:a6:63:15:9c:ef:2e:4e:e0:12:1c:
                    09:57:9a:3f:ea:c0:e6:1a:83:52:ed:7a:36:6f:d3:01:
                    ff:19:8c:f9:5c:df:01:35:0b:cc:01:40:8f:76:e6:63:
                    c2:0f:5c:05:e2:bf:ba:85:88:af:f4:6b:32:23:d0:89:
                    c6:f2:8c:94:99:fc:93:1b:be:0a:0e:9f:3e:24:71:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:ee:fc:ae:d1:35:c7:5c:88:fd:1a:82:7c:a3:84:f0:
        f1:4d:da:d5:f8:35:0f:f4:37:07:d1:dc:af:68:3c:1c:
        10:7c:bf:72:3c:e0:e3:03:99:d2:7b:ea:1b:d9:12:aa:
        36:cc:cd:94:d6:c8:a4:4a:88:51:42:73:e3:80:1c:a9:
        99:32:d4:92:d5:6e:2f:99:64:e4:55:d6:6c:80:83:1d:
        37:b9:de:bb:61:70:ac:8c:0e:db:a0:be:0b:61:cf:ec:
        4a:57:2c:2c:63:c2:92:47:8c:d2:d7:c6:ee:9b:09:b2:
        87:11:e3:90:8c:70:a1:b4:a9:02:85:78:3f:c4:59:ea:
        52:34:d9:85:5a:9f:36:27:2b:d0:b8:ba:3c:e0:3a:8d:
        19:27:c9:b8:a3:0b:ce:eb:4f:fb:59:87:d1:af:5a:0b:
        f0:5f:1b:e4:43:fc:76:a7:17:f2:70:d8:91:d9:6e:f9:
        84:03:48:47:3e:94:be:d7:16:f4:2b:a4:4e:80:27:74:
        e2:e5:4e:03:26:b7:c6:1b:03:a7:22:7f:91:4d:b9:9a:
        7d:73:1e:41:fb:03:96:ec:64:44:fe:f2:92:f3:29:63:
        43:3c:bb:96:ca:1a:12:ed:9e:3a:16:d2:56:f6:26:83:
        34:85:89:d4:79:32:84:96:56:26:26:d5:75:b8:55:cd
    Fingerprint (SHA-256):
        B3:1C:85:FD:40:AD:B5:DE:D3:5F:48:C6:7F:6F:27:79:78:FE:A3:00:B1:51:E8:B1:CA:CF:8F:33:E7:9F:67:C6
    Fingerprint (SHA1):
        56:12:6E:E7:24:8C:14:7A:FC:BC:4A:68:10:06:76:1B:48:D8:05:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3326: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3327: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153052 (0x1dee3f5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:19 2017
            Not After : Mon May 02 15:30:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:8d:bf:4e:99:de:91:a9:12:8f:33:57:b0:a7:73:ce:
                    39:6e:91:e0:37:73:09:94:67:33:bc:d4:cb:b6:d3:6c:
                    51:c3:af:ea:94:ad:69:6d:c1:b6:43:91:0d:c1:75:cb:
                    68:c0:06:80:ac:56:25:c7:f5:b7:e3:dc:ba:01:7f:5b:
                    4d:56:f0:d0:7c:c8:61:ff:dd:a5:24:15:75:a3:37:66:
                    0c:d7:ac:9d:8b:2a:66:b5:a4:c1:ab:2e:c5:80:ce:65:
                    ca:51:94:38:a7:5a:e5:d7:09:e7:76:8c:5e:8b:97:39:
                    83:ad:eb:18:94:1f:f8:c8:00:14:6b:dc:a5:63:5d:4b:
                    e4:c6:23:e2:4d:bb:87:64:c7:a7:68:2d:a1:b7:f7:2d:
                    a9:b0:05:61:73:e2:2f:f5:41:05:74:ac:55:3c:3f:4b:
                    11:62:87:a5:77:e9:36:bb:a2:99:d6:e0:62:f4:6a:1b:
                    44:08:77:03:2c:6c:a6:63:15:9c:ef:2e:4e:e0:12:1c:
                    09:57:9a:3f:ea:c0:e6:1a:83:52:ed:7a:36:6f:d3:01:
                    ff:19:8c:f9:5c:df:01:35:0b:cc:01:40:8f:76:e6:63:
                    c2:0f:5c:05:e2:bf:ba:85:88:af:f4:6b:32:23:d0:89:
                    c6:f2:8c:94:99:fc:93:1b:be:0a:0e:9f:3e:24:71:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:ee:fc:ae:d1:35:c7:5c:88:fd:1a:82:7c:a3:84:f0:
        f1:4d:da:d5:f8:35:0f:f4:37:07:d1:dc:af:68:3c:1c:
        10:7c:bf:72:3c:e0:e3:03:99:d2:7b:ea:1b:d9:12:aa:
        36:cc:cd:94:d6:c8:a4:4a:88:51:42:73:e3:80:1c:a9:
        99:32:d4:92:d5:6e:2f:99:64:e4:55:d6:6c:80:83:1d:
        37:b9:de:bb:61:70:ac:8c:0e:db:a0:be:0b:61:cf:ec:
        4a:57:2c:2c:63:c2:92:47:8c:d2:d7:c6:ee:9b:09:b2:
        87:11:e3:90:8c:70:a1:b4:a9:02:85:78:3f:c4:59:ea:
        52:34:d9:85:5a:9f:36:27:2b:d0:b8:ba:3c:e0:3a:8d:
        19:27:c9:b8:a3:0b:ce:eb:4f:fb:59:87:d1:af:5a:0b:
        f0:5f:1b:e4:43:fc:76:a7:17:f2:70:d8:91:d9:6e:f9:
        84:03:48:47:3e:94:be:d7:16:f4:2b:a4:4e:80:27:74:
        e2:e5:4e:03:26:b7:c6:1b:03:a7:22:7f:91:4d:b9:9a:
        7d:73:1e:41:fb:03:96:ec:64:44:fe:f2:92:f3:29:63:
        43:3c:bb:96:ca:1a:12:ed:9e:3a:16:d2:56:f6:26:83:
        34:85:89:d4:79:32:84:96:56:26:26:d5:75:b8:55:cd
    Fingerprint (SHA-256):
        B3:1C:85:FD:40:AD:B5:DE:D3:5F:48:C6:7F:6F:27:79:78:FE:A3:00:B1:51:E8:B1:CA:CF:8F:33:E7:9F:67:C6
    Fingerprint (SHA1):
        56:12:6E:E7:24:8C:14:7A:FC:BC:4A:68:10:06:76:1B:48:D8:05:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3328: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3329: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3330: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153056 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3331: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3332: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3333: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3334: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153057   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3335: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3336: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3337: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3338: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153058   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3339: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3340: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3341: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3342: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502153059   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3343: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3344: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #3345: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153060 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3346: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #3347: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #3348: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3349: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502153061   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3350: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3351: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3352: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3353: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502153062   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3354: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3355: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #3356: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #3357: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #3358: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153056 (0x1dee3f60)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:24 2017
            Not After : Mon May 02 15:30:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:b9:49:67:71:33:f0:4d:27:60:fd:d1:b8:15:4a:f6:
                    3e:0e:ad:6c:8f:de:55:50:e5:ee:f0:b2:4c:9e:92:93:
                    33:b6:0e:82:41:8a:95:6f:a8:ed:40:6f:6e:d1:d8:67:
                    32:14:25:3a:b9:ed:93:b6:1b:9e:86:8c:2b:bc:e5:70:
                    8c:53:63:fc:8d:06:62:36:e0:24:d6:17:36:a9:09:66:
                    76:34:ba:71:88:aa:af:c4:6d:ae:76:e5:74:5b:00:82:
                    82:eb:8e:46:c0:91:c9:17:55:69:c5:b1:f7:aa:38:52:
                    b3:3a:5b:47:66:39:fb:78:a7:9a:90:ab:b5:0b:6b:60:
                    03:cf:11:e4:08:06:17:a8:29:c6:cc:85:5c:6a:ba:5b:
                    ae:6f:7f:aa:18:58:ff:51:83:95:21:91:cb:74:8a:56:
                    d4:82:38:ff:58:0a:8e:e8:7a:01:cf:24:36:02:be:78:
                    3a:8a:d1:40:73:2e:da:8c:85:94:e5:a4:c6:86:7a:62:
                    14:a6:c3:56:3d:0e:34:47:91:b9:c2:4f:56:b0:d9:57:
                    59:a3:4e:b5:db:bd:a8:38:00:d5:3b:70:90:24:d5:5b:
                    ea:e7:f4:97:59:78:fd:88:b8:50:9f:ef:de:66:9d:45:
                    af:00:5a:99:f1:f1:be:33:42:a7:7d:ae:4b:cd:e7:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:7a:39:17:ba:87:88:5b:58:63:29:69:12:c9:cc:62:
        bc:e0:d9:b4:8b:25:5d:11:8d:78:2c:c1:4f:65:34:ec:
        fd:8c:5e:f0:92:a5:30:61:54:a5:49:90:2a:7f:24:d4:
        70:01:fe:5b:19:ce:69:e9:8f:e9:54:dc:85:f6:d8:f5:
        b6:c6:b1:6a:b0:08:97:4d:d6:38:ab:46:fb:be:13:70:
        4b:86:cf:38:34:69:83:81:e1:d2:eb:91:53:27:77:b4:
        4a:37:2d:cf:53:4e:46:5f:0a:b5:e1:7c:55:7e:67:fa:
        f8:4e:b4:8f:1f:24:68:ac:cd:2f:54:8c:9f:ff:34:82:
        82:83:a2:7b:84:40:bb:63:65:eb:32:93:3b:58:32:a4:
        43:11:f6:36:a5:ff:39:5c:8f:96:cb:b1:c6:04:48:e8:
        55:88:0b:f6:8d:14:ca:d4:6a:67:38:94:3f:e7:5f:48:
        53:9a:5e:90:5b:0c:ca:d5:20:7e:33:d5:73:80:25:7f:
        9c:3e:2e:59:64:83:8f:96:f0:0f:92:49:4d:af:ef:b4:
        65:9f:08:3c:e7:45:92:44:27:e2:f5:29:6e:42:50:4c:
        65:21:03:d6:0a:bf:fc:02:d0:37:27:a6:6d:30:43:e2:
        7e:75:06:d6:a1:a4:59:13:c9:60:73:ac:a6:64:46:4a
    Fingerprint (SHA-256):
        39:69:32:D7:55:8E:D5:A7:D4:1D:C3:8D:7E:E6:10:80:1D:26:5D:98:88:4C:DB:2A:61:A0:E6:3F:EF:61:BE:C7
    Fingerprint (SHA1):
        B4:33:10:07:95:8A:9A:B3:D0:ED:65:50:6F:4F:4C:64:34:8B:75:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3359: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153058 (0x1dee3f62)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:25 2017
            Not After : Mon May 02 15:30:25 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:4e:6f:52:20:83:aa:24:f9:da:32:8b:8b:6e:39:49:
                    1b:77:d8:7a:6e:d8:2d:85:47:d0:e1:6a:ce:55:f2:d2:
                    35:71:eb:fb:d6:04:a0:1d:c3:b1:bd:58:a8:6b:e6:0a:
                    ec:f9:d1:db:82:42:0f:b8:a1:44:03:73:57:43:0a:29:
                    07:c6:d1:93:10:c5:f6:24:a7:79:8b:5a:ca:f3:2c:a4:
                    84:41:83:88:0a:78:5b:fa:bc:dc:19:81:8a:4a:e1:d6:
                    6c:4a:ab:71:20:2c:e1:0d:13:fb:97:84:79:b3:5c:ee:
                    8a:76:39:69:7e:58:36:e5:19:9c:05:ad:e1:07:87:3f:
                    8e:26:a7:5f:50:1f:8c:cd:c4:9e:e5:9c:b2:b8:22:d8:
                    31:b9:f4:e0:7d:1b:52:6e:8d:01:6f:0b:87:05:87:53:
                    62:c5:5a:f8:15:ff:a5:ea:a5:d3:95:a3:71:b3:6b:65:
                    37:bf:36:2d:f0:2c:6f:e5:fa:e4:92:77:37:da:29:5c:
                    e6:f4:9b:a9:39:76:da:49:22:4a:15:43:6f:20:fc:d7:
                    34:40:90:b1:49:d3:04:bf:4e:f9:b8:e7:62:28:0a:46:
                    5e:df:63:f0:5e:be:29:f2:31:bc:77:08:b8:24:c6:a5:
                    41:7a:4f:3e:98:1c:9f:dd:13:9c:df:11:9c:bc:91:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:84:0c:dc:b2:e4:56:30:57:1b:9b:35:c8:9b:79:a2:
        b0:51:11:f6:ee:5a:8d:83:bc:cc:79:68:6c:6d:96:91:
        e1:fc:e5:48:1a:1a:df:68:38:6e:5f:69:f1:14:0e:50:
        fe:1c:64:1f:84:6a:9f:fe:49:80:16:6d:66:67:b7:b5:
        f5:cd:60:9f:b9:1b:74:63:3d:cf:fa:10:83:07:83:c3:
        8b:a4:91:45:7a:a0:a4:f5:f6:91:1d:37:d8:d5:8e:b7:
        d3:1a:0b:d1:ec:4a:1a:27:fb:14:05:44:38:1c:6b:36:
        00:82:26:0b:09:5a:bf:b1:86:35:b4:e0:3e:3d:62:d8:
        df:8f:1f:57:89:69:8a:c3:75:c3:4b:ae:d3:14:53:a2:
        20:9d:e5:65:8d:96:42:88:c7:b4:7b:72:1a:d7:d3:32:
        b3:4d:85:e2:82:cc:7d:6d:4c:9e:fc:47:2e:65:5a:9c:
        0e:04:ae:1a:30:18:79:f7:dc:f1:a7:b2:ed:fb:e5:29:
        d9:a3:1a:dd:34:bc:a0:c9:63:90:9f:a3:94:30:79:fc:
        eb:2e:9f:5e:94:f3:68:d3:f5:b0:88:73:b6:b2:0e:b3:
        92:71:ad:34:cd:c8:f1:13:9f:bf:f3:97:ca:07:db:fa:
        32:1e:7e:27:ee:1a:53:82:f0:e3:7d:5c:4c:ec:d4:46
    Fingerprint (SHA-256):
        4E:B5:D2:75:B4:62:66:FC:D9:16:23:E4:24:00:94:70:E4:38:97:1F:BC:E6:A9:7F:64:39:85:2C:A5:C9:E5:01
    Fingerprint (SHA1):
        5F:71:40:8C:F6:BB:53:67:B1:36:2A:B4:86:7D:F7:AA:1F:8D:32:F6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3360: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153056 (0x1dee3f60)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:24 2017
            Not After : Mon May 02 15:30:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:b9:49:67:71:33:f0:4d:27:60:fd:d1:b8:15:4a:f6:
                    3e:0e:ad:6c:8f:de:55:50:e5:ee:f0:b2:4c:9e:92:93:
                    33:b6:0e:82:41:8a:95:6f:a8:ed:40:6f:6e:d1:d8:67:
                    32:14:25:3a:b9:ed:93:b6:1b:9e:86:8c:2b:bc:e5:70:
                    8c:53:63:fc:8d:06:62:36:e0:24:d6:17:36:a9:09:66:
                    76:34:ba:71:88:aa:af:c4:6d:ae:76:e5:74:5b:00:82:
                    82:eb:8e:46:c0:91:c9:17:55:69:c5:b1:f7:aa:38:52:
                    b3:3a:5b:47:66:39:fb:78:a7:9a:90:ab:b5:0b:6b:60:
                    03:cf:11:e4:08:06:17:a8:29:c6:cc:85:5c:6a:ba:5b:
                    ae:6f:7f:aa:18:58:ff:51:83:95:21:91:cb:74:8a:56:
                    d4:82:38:ff:58:0a:8e:e8:7a:01:cf:24:36:02:be:78:
                    3a:8a:d1:40:73:2e:da:8c:85:94:e5:a4:c6:86:7a:62:
                    14:a6:c3:56:3d:0e:34:47:91:b9:c2:4f:56:b0:d9:57:
                    59:a3:4e:b5:db:bd:a8:38:00:d5:3b:70:90:24:d5:5b:
                    ea:e7:f4:97:59:78:fd:88:b8:50:9f:ef:de:66:9d:45:
                    af:00:5a:99:f1:f1:be:33:42:a7:7d:ae:4b:cd:e7:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:7a:39:17:ba:87:88:5b:58:63:29:69:12:c9:cc:62:
        bc:e0:d9:b4:8b:25:5d:11:8d:78:2c:c1:4f:65:34:ec:
        fd:8c:5e:f0:92:a5:30:61:54:a5:49:90:2a:7f:24:d4:
        70:01:fe:5b:19:ce:69:e9:8f:e9:54:dc:85:f6:d8:f5:
        b6:c6:b1:6a:b0:08:97:4d:d6:38:ab:46:fb:be:13:70:
        4b:86:cf:38:34:69:83:81:e1:d2:eb:91:53:27:77:b4:
        4a:37:2d:cf:53:4e:46:5f:0a:b5:e1:7c:55:7e:67:fa:
        f8:4e:b4:8f:1f:24:68:ac:cd:2f:54:8c:9f:ff:34:82:
        82:83:a2:7b:84:40:bb:63:65:eb:32:93:3b:58:32:a4:
        43:11:f6:36:a5:ff:39:5c:8f:96:cb:b1:c6:04:48:e8:
        55:88:0b:f6:8d:14:ca:d4:6a:67:38:94:3f:e7:5f:48:
        53:9a:5e:90:5b:0c:ca:d5:20:7e:33:d5:73:80:25:7f:
        9c:3e:2e:59:64:83:8f:96:f0:0f:92:49:4d:af:ef:b4:
        65:9f:08:3c:e7:45:92:44:27:e2:f5:29:6e:42:50:4c:
        65:21:03:d6:0a:bf:fc:02:d0:37:27:a6:6d:30:43:e2:
        7e:75:06:d6:a1:a4:59:13:c9:60:73:ac:a6:64:46:4a
    Fingerprint (SHA-256):
        39:69:32:D7:55:8E:D5:A7:D4:1D:C3:8D:7E:E6:10:80:1D:26:5D:98:88:4C:DB:2A:61:A0:E6:3F:EF:61:BE:C7
    Fingerprint (SHA1):
        B4:33:10:07:95:8A:9A:B3:D0:ED:65:50:6F:4F:4C:64:34:8B:75:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3361: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #3362: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153056 (0x1dee3f60)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:24 2017
            Not After : Mon May 02 15:30:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:b9:49:67:71:33:f0:4d:27:60:fd:d1:b8:15:4a:f6:
                    3e:0e:ad:6c:8f:de:55:50:e5:ee:f0:b2:4c:9e:92:93:
                    33:b6:0e:82:41:8a:95:6f:a8:ed:40:6f:6e:d1:d8:67:
                    32:14:25:3a:b9:ed:93:b6:1b:9e:86:8c:2b:bc:e5:70:
                    8c:53:63:fc:8d:06:62:36:e0:24:d6:17:36:a9:09:66:
                    76:34:ba:71:88:aa:af:c4:6d:ae:76:e5:74:5b:00:82:
                    82:eb:8e:46:c0:91:c9:17:55:69:c5:b1:f7:aa:38:52:
                    b3:3a:5b:47:66:39:fb:78:a7:9a:90:ab:b5:0b:6b:60:
                    03:cf:11:e4:08:06:17:a8:29:c6:cc:85:5c:6a:ba:5b:
                    ae:6f:7f:aa:18:58:ff:51:83:95:21:91:cb:74:8a:56:
                    d4:82:38:ff:58:0a:8e:e8:7a:01:cf:24:36:02:be:78:
                    3a:8a:d1:40:73:2e:da:8c:85:94:e5:a4:c6:86:7a:62:
                    14:a6:c3:56:3d:0e:34:47:91:b9:c2:4f:56:b0:d9:57:
                    59:a3:4e:b5:db:bd:a8:38:00:d5:3b:70:90:24:d5:5b:
                    ea:e7:f4:97:59:78:fd:88:b8:50:9f:ef:de:66:9d:45:
                    af:00:5a:99:f1:f1:be:33:42:a7:7d:ae:4b:cd:e7:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:7a:39:17:ba:87:88:5b:58:63:29:69:12:c9:cc:62:
        bc:e0:d9:b4:8b:25:5d:11:8d:78:2c:c1:4f:65:34:ec:
        fd:8c:5e:f0:92:a5:30:61:54:a5:49:90:2a:7f:24:d4:
        70:01:fe:5b:19:ce:69:e9:8f:e9:54:dc:85:f6:d8:f5:
        b6:c6:b1:6a:b0:08:97:4d:d6:38:ab:46:fb:be:13:70:
        4b:86:cf:38:34:69:83:81:e1:d2:eb:91:53:27:77:b4:
        4a:37:2d:cf:53:4e:46:5f:0a:b5:e1:7c:55:7e:67:fa:
        f8:4e:b4:8f:1f:24:68:ac:cd:2f:54:8c:9f:ff:34:82:
        82:83:a2:7b:84:40:bb:63:65:eb:32:93:3b:58:32:a4:
        43:11:f6:36:a5:ff:39:5c:8f:96:cb:b1:c6:04:48:e8:
        55:88:0b:f6:8d:14:ca:d4:6a:67:38:94:3f:e7:5f:48:
        53:9a:5e:90:5b:0c:ca:d5:20:7e:33:d5:73:80:25:7f:
        9c:3e:2e:59:64:83:8f:96:f0:0f:92:49:4d:af:ef:b4:
        65:9f:08:3c:e7:45:92:44:27:e2:f5:29:6e:42:50:4c:
        65:21:03:d6:0a:bf:fc:02:d0:37:27:a6:6d:30:43:e2:
        7e:75:06:d6:a1:a4:59:13:c9:60:73:ac:a6:64:46:4a
    Fingerprint (SHA-256):
        39:69:32:D7:55:8E:D5:A7:D4:1D:C3:8D:7E:E6:10:80:1D:26:5D:98:88:4C:DB:2A:61:A0:E6:3F:EF:61:BE:C7
    Fingerprint (SHA1):
        B4:33:10:07:95:8A:9A:B3:D0:ED:65:50:6F:4F:4C:64:34:8B:75:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3363: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153058 (0x1dee3f62)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:25 2017
            Not After : Mon May 02 15:30:25 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:4e:6f:52:20:83:aa:24:f9:da:32:8b:8b:6e:39:49:
                    1b:77:d8:7a:6e:d8:2d:85:47:d0:e1:6a:ce:55:f2:d2:
                    35:71:eb:fb:d6:04:a0:1d:c3:b1:bd:58:a8:6b:e6:0a:
                    ec:f9:d1:db:82:42:0f:b8:a1:44:03:73:57:43:0a:29:
                    07:c6:d1:93:10:c5:f6:24:a7:79:8b:5a:ca:f3:2c:a4:
                    84:41:83:88:0a:78:5b:fa:bc:dc:19:81:8a:4a:e1:d6:
                    6c:4a:ab:71:20:2c:e1:0d:13:fb:97:84:79:b3:5c:ee:
                    8a:76:39:69:7e:58:36:e5:19:9c:05:ad:e1:07:87:3f:
                    8e:26:a7:5f:50:1f:8c:cd:c4:9e:e5:9c:b2:b8:22:d8:
                    31:b9:f4:e0:7d:1b:52:6e:8d:01:6f:0b:87:05:87:53:
                    62:c5:5a:f8:15:ff:a5:ea:a5:d3:95:a3:71:b3:6b:65:
                    37:bf:36:2d:f0:2c:6f:e5:fa:e4:92:77:37:da:29:5c:
                    e6:f4:9b:a9:39:76:da:49:22:4a:15:43:6f:20:fc:d7:
                    34:40:90:b1:49:d3:04:bf:4e:f9:b8:e7:62:28:0a:46:
                    5e:df:63:f0:5e:be:29:f2:31:bc:77:08:b8:24:c6:a5:
                    41:7a:4f:3e:98:1c:9f:dd:13:9c:df:11:9c:bc:91:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:84:0c:dc:b2:e4:56:30:57:1b:9b:35:c8:9b:79:a2:
        b0:51:11:f6:ee:5a:8d:83:bc:cc:79:68:6c:6d:96:91:
        e1:fc:e5:48:1a:1a:df:68:38:6e:5f:69:f1:14:0e:50:
        fe:1c:64:1f:84:6a:9f:fe:49:80:16:6d:66:67:b7:b5:
        f5:cd:60:9f:b9:1b:74:63:3d:cf:fa:10:83:07:83:c3:
        8b:a4:91:45:7a:a0:a4:f5:f6:91:1d:37:d8:d5:8e:b7:
        d3:1a:0b:d1:ec:4a:1a:27:fb:14:05:44:38:1c:6b:36:
        00:82:26:0b:09:5a:bf:b1:86:35:b4:e0:3e:3d:62:d8:
        df:8f:1f:57:89:69:8a:c3:75:c3:4b:ae:d3:14:53:a2:
        20:9d:e5:65:8d:96:42:88:c7:b4:7b:72:1a:d7:d3:32:
        b3:4d:85:e2:82:cc:7d:6d:4c:9e:fc:47:2e:65:5a:9c:
        0e:04:ae:1a:30:18:79:f7:dc:f1:a7:b2:ed:fb:e5:29:
        d9:a3:1a:dd:34:bc:a0:c9:63:90:9f:a3:94:30:79:fc:
        eb:2e:9f:5e:94:f3:68:d3:f5:b0:88:73:b6:b2:0e:b3:
        92:71:ad:34:cd:c8:f1:13:9f:bf:f3:97:ca:07:db:fa:
        32:1e:7e:27:ee:1a:53:82:f0:e3:7d:5c:4c:ec:d4:46
    Fingerprint (SHA-256):
        4E:B5:D2:75:B4:62:66:FC:D9:16:23:E4:24:00:94:70:E4:38:97:1F:BC:E6:A9:7F:64:39:85:2C:A5:C9:E5:01
    Fingerprint (SHA1):
        5F:71:40:8C:F6:BB:53:67:B1:36:2A:B4:86:7D:F7:AA:1F:8D:32:F6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3364: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #3365: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #3366: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #3367: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153056 (0x1dee3f60)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:24 2017
            Not After : Mon May 02 15:30:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:b9:49:67:71:33:f0:4d:27:60:fd:d1:b8:15:4a:f6:
                    3e:0e:ad:6c:8f:de:55:50:e5:ee:f0:b2:4c:9e:92:93:
                    33:b6:0e:82:41:8a:95:6f:a8:ed:40:6f:6e:d1:d8:67:
                    32:14:25:3a:b9:ed:93:b6:1b:9e:86:8c:2b:bc:e5:70:
                    8c:53:63:fc:8d:06:62:36:e0:24:d6:17:36:a9:09:66:
                    76:34:ba:71:88:aa:af:c4:6d:ae:76:e5:74:5b:00:82:
                    82:eb:8e:46:c0:91:c9:17:55:69:c5:b1:f7:aa:38:52:
                    b3:3a:5b:47:66:39:fb:78:a7:9a:90:ab:b5:0b:6b:60:
                    03:cf:11:e4:08:06:17:a8:29:c6:cc:85:5c:6a:ba:5b:
                    ae:6f:7f:aa:18:58:ff:51:83:95:21:91:cb:74:8a:56:
                    d4:82:38:ff:58:0a:8e:e8:7a:01:cf:24:36:02:be:78:
                    3a:8a:d1:40:73:2e:da:8c:85:94:e5:a4:c6:86:7a:62:
                    14:a6:c3:56:3d:0e:34:47:91:b9:c2:4f:56:b0:d9:57:
                    59:a3:4e:b5:db:bd:a8:38:00:d5:3b:70:90:24:d5:5b:
                    ea:e7:f4:97:59:78:fd:88:b8:50:9f:ef:de:66:9d:45:
                    af:00:5a:99:f1:f1:be:33:42:a7:7d:ae:4b:cd:e7:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:7a:39:17:ba:87:88:5b:58:63:29:69:12:c9:cc:62:
        bc:e0:d9:b4:8b:25:5d:11:8d:78:2c:c1:4f:65:34:ec:
        fd:8c:5e:f0:92:a5:30:61:54:a5:49:90:2a:7f:24:d4:
        70:01:fe:5b:19:ce:69:e9:8f:e9:54:dc:85:f6:d8:f5:
        b6:c6:b1:6a:b0:08:97:4d:d6:38:ab:46:fb:be:13:70:
        4b:86:cf:38:34:69:83:81:e1:d2:eb:91:53:27:77:b4:
        4a:37:2d:cf:53:4e:46:5f:0a:b5:e1:7c:55:7e:67:fa:
        f8:4e:b4:8f:1f:24:68:ac:cd:2f:54:8c:9f:ff:34:82:
        82:83:a2:7b:84:40:bb:63:65:eb:32:93:3b:58:32:a4:
        43:11:f6:36:a5:ff:39:5c:8f:96:cb:b1:c6:04:48:e8:
        55:88:0b:f6:8d:14:ca:d4:6a:67:38:94:3f:e7:5f:48:
        53:9a:5e:90:5b:0c:ca:d5:20:7e:33:d5:73:80:25:7f:
        9c:3e:2e:59:64:83:8f:96:f0:0f:92:49:4d:af:ef:b4:
        65:9f:08:3c:e7:45:92:44:27:e2:f5:29:6e:42:50:4c:
        65:21:03:d6:0a:bf:fc:02:d0:37:27:a6:6d:30:43:e2:
        7e:75:06:d6:a1:a4:59:13:c9:60:73:ac:a6:64:46:4a
    Fingerprint (SHA-256):
        39:69:32:D7:55:8E:D5:A7:D4:1D:C3:8D:7E:E6:10:80:1D:26:5D:98:88:4C:DB:2A:61:A0:E6:3F:EF:61:BE:C7
    Fingerprint (SHA1):
        B4:33:10:07:95:8A:9A:B3:D0:ED:65:50:6F:4F:4C:64:34:8B:75:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3368: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153060 (0x1dee3f64)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:30:25 2017
            Not After : Mon May 02 15:30:25 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:9f:27:76:85:c9:6b:a0:fa:0c:7b:f1:a7:d6:db:b7:
                    6b:9a:16:d5:56:11:60:05:d4:75:75:3a:9a:47:b8:3b:
                    f4:f6:f1:38:36:8b:ea:19:34:0e:5e:af:a6:d3:71:ae:
                    2f:7e:df:51:7e:4b:42:ba:d5:ee:e4:06:84:56:fb:35:
                    d2:f1:65:fd:b4:e9:fa:a8:33:22:9c:04:cc:ee:5c:ec:
                    cb:43:f6:23:28:dd:ed:f8:be:23:2a:65:44:a7:7f:15:
                    5f:29:49:87:eb:b4:a9:8e:4e:37:87:90:bb:e3:8a:52:
                    56:74:c0:63:15:dd:81:38:fa:ee:8d:d1:ad:e4:24:41:
                    2d:ff:1e:35:b8:33:51:e3:d8:88:ec:f7:e0:af:86:22:
                    49:0c:95:99:16:ee:00:89:dc:6b:07:1a:12:87:09:cb:
                    51:74:3a:c9:e0:e6:54:7e:db:93:57:6d:55:b6:2a:1a:
                    0d:02:79:79:da:f3:69:5c:1f:d9:28:77:a3:0b:5b:94:
                    63:d1:64:5a:1c:9b:22:f5:b6:46:70:e9:1a:02:da:d2:
                    27:ba:c0:e2:89:d3:76:eb:27:36:45:2e:4c:2b:ad:16:
                    5f:d6:43:ba:43:b9:67:fe:c8:de:98:f9:f7:af:6b:6c:
                    1c:31:f8:03:ef:ef:64:71:ef:a3:ce:36:33:db:ca:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:a4:63:3a:3d:8a:e2:9d:57:97:fe:56:22:e0:5a:3d:
        46:ba:64:8c:fc:cd:bc:90:28:75:76:53:50:41:dc:b0:
        b4:16:e7:90:51:46:4f:20:78:cc:61:b1:c3:b1:4e:57:
        f9:85:ce:53:78:18:90:d7:26:cf:31:47:5b:17:ec:b5:
        25:d3:11:24:b6:0b:54:f6:a5:69:00:e2:53:65:21:22:
        3f:16:8d:a0:b0:54:18:4c:fb:e0:62:38:99:49:fe:d7:
        e3:5a:cc:86:95:70:60:57:1c:65:70:fa:ae:27:c8:07:
        87:37:43:ba:02:06:b6:ba:18:a4:8b:a1:28:c1:32:a6:
        5e:dd:9d:46:6b:2a:1f:7d:6b:80:ea:8d:3e:53:81:aa:
        dc:eb:b5:f6:f6:84:61:9a:23:ca:69:f9:51:07:9b:05:
        53:8c:57:fc:a7:95:89:50:f9:5a:08:2f:3a:40:98:08:
        42:56:24:79:c6:f2:5a:11:8f:44:63:35:f2:51:e7:12:
        f8:30:7e:a1:db:56:c4:91:92:d8:0d:07:b6:34:fe:9a:
        27:dc:0f:dd:65:6e:ca:85:fe:40:15:fc:ec:e6:3b:a7:
        5b:84:35:3b:82:90:e6:36:13:37:b7:51:78:06:9c:e4:
        2d:00:c6:24:45:81:e8:38:bc:c3:75:b8:6e:7a:ff:e0
    Fingerprint (SHA-256):
        68:98:AF:95:23:D1:38:34:19:A3:EF:34:5D:F2:96:84:DC:69:BE:2C:4A:D9:AD:D5:06:40:52:31:C7:9B:B1:48
    Fingerprint (SHA1):
        C8:F7:56:39:07:89:41:F6:FA:C3:88:67:89:0E:0E:50:86:9E:A1:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #3369: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153056 (0x1dee3f60)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:24 2017
            Not After : Mon May 02 15:30:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:b9:49:67:71:33:f0:4d:27:60:fd:d1:b8:15:4a:f6:
                    3e:0e:ad:6c:8f:de:55:50:e5:ee:f0:b2:4c:9e:92:93:
                    33:b6:0e:82:41:8a:95:6f:a8:ed:40:6f:6e:d1:d8:67:
                    32:14:25:3a:b9:ed:93:b6:1b:9e:86:8c:2b:bc:e5:70:
                    8c:53:63:fc:8d:06:62:36:e0:24:d6:17:36:a9:09:66:
                    76:34:ba:71:88:aa:af:c4:6d:ae:76:e5:74:5b:00:82:
                    82:eb:8e:46:c0:91:c9:17:55:69:c5:b1:f7:aa:38:52:
                    b3:3a:5b:47:66:39:fb:78:a7:9a:90:ab:b5:0b:6b:60:
                    03:cf:11:e4:08:06:17:a8:29:c6:cc:85:5c:6a:ba:5b:
                    ae:6f:7f:aa:18:58:ff:51:83:95:21:91:cb:74:8a:56:
                    d4:82:38:ff:58:0a:8e:e8:7a:01:cf:24:36:02:be:78:
                    3a:8a:d1:40:73:2e:da:8c:85:94:e5:a4:c6:86:7a:62:
                    14:a6:c3:56:3d:0e:34:47:91:b9:c2:4f:56:b0:d9:57:
                    59:a3:4e:b5:db:bd:a8:38:00:d5:3b:70:90:24:d5:5b:
                    ea:e7:f4:97:59:78:fd:88:b8:50:9f:ef:de:66:9d:45:
                    af:00:5a:99:f1:f1:be:33:42:a7:7d:ae:4b:cd:e7:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:7a:39:17:ba:87:88:5b:58:63:29:69:12:c9:cc:62:
        bc:e0:d9:b4:8b:25:5d:11:8d:78:2c:c1:4f:65:34:ec:
        fd:8c:5e:f0:92:a5:30:61:54:a5:49:90:2a:7f:24:d4:
        70:01:fe:5b:19:ce:69:e9:8f:e9:54:dc:85:f6:d8:f5:
        b6:c6:b1:6a:b0:08:97:4d:d6:38:ab:46:fb:be:13:70:
        4b:86:cf:38:34:69:83:81:e1:d2:eb:91:53:27:77:b4:
        4a:37:2d:cf:53:4e:46:5f:0a:b5:e1:7c:55:7e:67:fa:
        f8:4e:b4:8f:1f:24:68:ac:cd:2f:54:8c:9f:ff:34:82:
        82:83:a2:7b:84:40:bb:63:65:eb:32:93:3b:58:32:a4:
        43:11:f6:36:a5:ff:39:5c:8f:96:cb:b1:c6:04:48:e8:
        55:88:0b:f6:8d:14:ca:d4:6a:67:38:94:3f:e7:5f:48:
        53:9a:5e:90:5b:0c:ca:d5:20:7e:33:d5:73:80:25:7f:
        9c:3e:2e:59:64:83:8f:96:f0:0f:92:49:4d:af:ef:b4:
        65:9f:08:3c:e7:45:92:44:27:e2:f5:29:6e:42:50:4c:
        65:21:03:d6:0a:bf:fc:02:d0:37:27:a6:6d:30:43:e2:
        7e:75:06:d6:a1:a4:59:13:c9:60:73:ac:a6:64:46:4a
    Fingerprint (SHA-256):
        39:69:32:D7:55:8E:D5:A7:D4:1D:C3:8D:7E:E6:10:80:1D:26:5D:98:88:4C:DB:2A:61:A0:E6:3F:EF:61:BE:C7
    Fingerprint (SHA1):
        B4:33:10:07:95:8A:9A:B3:D0:ED:65:50:6F:4F:4C:64:34:8B:75:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3370: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #3371: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #3372: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #3373: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #3374: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #3375: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153061 (0x1dee3f65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:30:26 2017
            Not After : Mon May 02 15:30:26 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:80:4b:f1:49:96:50:27:33:cf:e2:eb:43:ef:fa:8a:
                    98:5e:76:9f:db:71:fd:d2:25:13:d6:5a:a3:94:76:ed:
                    92:16:d2:d0:ba:b7:20:a7:2a:e1:97:0e:e1:3b:37:ab:
                    38:0b:ef:1e:89:c3:f3:00:d6:22:f3:25:64:ab:d7:70:
                    e6:5d:b4:4d:35:75:8b:df:63:e2:e0:eb:e0:35:c5:56:
                    d6:1b:48:b2:c4:17:68:b3:31:b5:cc:f0:08:5a:e7:a8:
                    1c:92:07:c9:57:c8:a9:24:08:c3:ad:85:80:3d:1d:e6:
                    cf:09:57:1c:78:e6:df:d0:0e:5f:af:17:63:0e:f6:a1:
                    83:de:3f:e3:cf:29:4a:b3:78:68:41:e4:4c:88:cd:b2:
                    b7:9e:72:95:d3:c5:5b:78:47:3d:34:c4:d6:fe:ec:2f:
                    55:ad:ad:76:8e:d2:d0:41:e0:f2:53:5c:ec:1b:11:09:
                    fc:f2:3f:8c:e8:b5:72:90:bb:70:50:5b:a2:a4:80:4d:
                    4b:90:e4:77:4d:4d:2f:3d:66:a2:c5:d5:3d:ef:9d:6b:
                    c1:32:93:b2:2c:ad:6b:62:41:7f:55:3b:c1:83:3f:cb:
                    59:bb:2a:c9:47:8b:d6:41:62:8b:b6:8b:cd:db:65:67:
                    73:ee:67:ee:14:8b:67:40:2b:0c:5c:30:e8:ff:fb:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:03:55:ee:33:93:cd:2b:e5:fd:5f:f1:01:b0:16:e8:
        ba:54:10:b5:08:6a:72:36:95:b6:d6:f4:18:fc:a7:6b:
        94:bb:ec:79:bc:a2:d0:b8:72:d9:b5:da:4f:c6:b0:f9:
        62:57:cb:e8:92:dc:b9:1c:85:3e:d8:42:7a:9c:0a:0d:
        b0:85:73:83:08:d6:36:b9:70:7c:ee:15:85:cf:5d:db:
        d2:1b:5c:32:2e:a4:56:f1:72:25:e7:11:ad:38:b5:a5:
        1e:f8:6c:d8:a3:c7:f7:3e:61:96:08:3e:26:f7:fc:0b:
        9b:cb:22:f7:4e:d5:b9:69:37:66:06:b3:8a:a6:0c:4f:
        2f:78:d9:e8:93:1e:27:47:b0:6b:90:64:66:2d:3d:7e:
        b1:64:2e:52:bc:26:b9:46:f0:08:36:20:0f:5d:c0:4b:
        f4:39:ce:76:d7:19:ec:e1:3a:f7:bb:53:72:ff:87:5a:
        c5:91:a2:d2:2a:e9:3c:7a:b6:21:6f:47:67:c2:2a:c2:
        ef:e0:37:4e:b2:84:4d:d6:31:d1:9a:6f:64:4a:6a:35:
        83:34:e4:56:9c:9e:4b:4d:69:ce:ae:1f:00:37:05:ec:
        4f:44:9b:33:2a:ec:f9:5d:5e:3d:38:b6:fb:09:fb:e2:
        0a:d3:03:1f:39:7d:3e:a7:da:68:92:41:52:fd:af:14
    Fingerprint (SHA-256):
        1C:50:44:F6:9C:D3:C6:6E:EA:A6:60:42:C3:6B:34:6C:67:23:9A:71:47:89:74:C9:38:AC:19:78:FC:AA:3C:D4
    Fingerprint (SHA1):
        8E:F8:B7:59:98:45:15:23:60:B9:D2:03:2B:A7:93:17:B4:0B:10:33
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3376: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #3377: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #3378: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #3379: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #3380: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3381: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3382: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3383: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3384: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3385: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3386: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3387: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3388: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3389: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3390: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3391: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3392: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3393: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3394: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #3395: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3396: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3397: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3398: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3399: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 15520 at Tue May  2 15:30:29 UTC 2017
kill -USR1 15520
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 15520 killed at Tue May  2 15:30:29 UTC 2017
httpserv starting at Tue May  2 15:30:29 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:30:29 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 30941 >/dev/null 2>/dev/null
httpserv with PID 30941 found at Tue May  2 15:30:29 UTC 2017
httpserv with PID 30941 started at Tue May  2 15:30:29 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3400: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153063 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3401: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3402: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3403: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153064 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3404: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3405: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3406: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3407: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153065 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3408: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3409: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153066 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3410: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3411: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3412: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3413: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3414: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502153067   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3415: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3416: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3417: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #3418: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #3419: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153064 (0x1dee3f68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:29 2017
            Not After : Mon May 02 15:30:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:84:c8:2e:5a:6b:c2:51:cd:cb:31:cc:4f:e3:61:00:
                    a3:3a:24:56:f6:0f:84:59:59:6f:f5:83:c3:43:c5:f1:
                    fd:d6:d4:d4:88:ff:31:9d:6a:ed:03:f7:6b:55:22:0a:
                    73:bc:b4:c7:71:9d:a1:e1:c4:d3:cd:60:80:71:af:82:
                    18:b1:3d:74:44:a8:fb:1a:82:28:c2:4f:3d:89:ab:74:
                    dd:0f:ba:95:40:a5:80:4c:7b:8b:b3:1b:41:46:e7:03:
                    6e:25:0c:9e:4f:34:32:a3:90:e6:c8:9e:66:30:6d:93:
                    02:10:cd:10:3c:84:fd:7c:4c:cc:03:2a:e1:9a:e6:9c:
                    da:96:e8:db:6e:b7:f4:46:25:7a:09:23:3b:3d:18:4c:
                    96:96:e8:3f:75:2b:a0:22:7c:80:23:0f:f3:41:75:85:
                    08:4d:25:fe:46:8a:5a:87:f4:9b:06:9b:4c:66:0c:70:
                    58:50:a4:10:73:8e:65:8c:b0:f2:4c:09:37:ce:03:04:
                    1c:6a:73:20:82:5f:e1:1d:6f:28:c7:c9:40:b7:62:20:
                    d1:e5:39:67:0b:a7:96:22:10:e6:29:7e:28:76:c7:ea:
                    6a:4f:ab:c7:f2:49:4a:c1:1c:ae:64:9e:48:18:2c:9e:
                    54:1c:9e:29:b2:14:50:11:51:df:28:7a:74:fc:8b:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:c4:24:ef:3b:4b:c4:bb:27:2b:a9:50:32:31:cc:b0:
        aa:16:34:16:b1:82:9b:43:78:e9:a7:57:d0:54:b0:3e:
        98:fc:e7:b5:a4:f6:03:b9:fc:51:e0:a1:0d:4c:b5:46:
        e5:d8:80:1e:9b:70:c1:83:0f:d8:d9:1f:e1:05:6e:3f:
        05:35:4c:38:60:06:f1:6b:1e:fc:3c:c3:29:e5:cf:c4:
        c2:54:d3:3b:ab:f2:29:d9:ea:04:9e:06:55:25:09:75:
        dc:e1:67:3e:ee:f1:f5:b9:49:8a:00:22:69:5d:35:55:
        79:26:5f:f3:bd:8f:9c:ec:6a:bf:ca:68:d7:22:be:4c:
        9a:f6:15:6a:dc:a2:91:37:d7:5f:6f:28:8a:5a:94:b3:
        f7:e5:77:3f:0c:ca:78:dc:a8:a6:87:09:26:62:77:e7:
        47:df:0c:4b:48:e8:c2:85:8a:6a:da:10:37:a0:a4:b3:
        82:1a:c5:9c:f2:31:e4:77:bf:6b:1d:8d:4e:87:be:98:
        01:a9:b6:db:42:78:e0:86:b4:d5:4a:67:e4:03:2d:1c:
        14:21:8c:79:47:d6:e3:d2:f7:3d:09:73:22:e4:b1:07:
        99:4b:8e:3d:4f:1a:0d:91:23:f2:fa:da:bc:77:08:f3:
        73:a4:54:d7:9c:af:e5:ca:16:4f:7c:da:b1:70:34:35
    Fingerprint (SHA-256):
        B2:78:07:14:3B:4F:48:21:98:1C:3C:DE:45:CD:88:4E:2F:0A:05:6B:9F:95:FA:B0:06:95:D9:D3:60:A1:E1:BB
    Fingerprint (SHA1):
        28:AD:7A:03:AE:75:53:B5:36:F2:C0:77:48:D6:F1:C7:4F:5C:36:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3420: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153063 (0x1dee3f67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:30:29 2017
            Not After : Mon May 02 15:30:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:14:41:b4:62:b9:bc:d5:b3:7a:5b:dc:ae:da:71:88:
                    ce:17:19:89:7b:48:02:33:55:49:ac:bb:ca:c2:e6:8d:
                    06:3f:5a:84:39:a0:ec:ba:7b:73:36:37:83:ac:70:fe:
                    72:74:e2:44:90:cb:dc:ae:c9:af:5e:44:b6:c3:ef:7a:
                    f9:3c:ee:ee:06:e0:3e:04:95:f3:db:7e:3e:5f:36:e1:
                    28:fd:86:fc:48:38:56:e8:9e:98:38:13:76:82:84:94:
                    39:6a:08:d8:1c:77:f4:e9:fd:7a:f3:c0:40:a7:6d:6d:
                    14:97:a1:b1:3c:47:14:b0:ce:3d:fd:29:9a:1f:89:0e:
                    a5:23:d7:1a:3b:f7:04:03:8a:57:b7:06:67:6b:4e:5d:
                    dd:b0:31:dc:d8:c4:2d:da:6f:cc:3a:70:8e:d4:85:e7:
                    67:75:80:60:9a:4f:8a:54:82:63:96:65:0f:57:72:c2:
                    0c:3b:39:2a:73:be:e6:04:20:68:ec:2a:01:a7:b8:68:
                    37:75:fe:c4:8c:c4:43:76:4f:dc:39:9a:99:4c:61:46:
                    37:84:a9:fb:2f:c9:ec:eb:8d:16:78:ec:78:6c:43:ea:
                    f0:78:a4:c3:be:81:1d:04:ce:fd:00:34:aa:f7:78:a7:
                    05:6c:59:8f:21:79:c9:40:3c:e4:88:25:5c:f6:d0:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:7d:50:07:99:d2:70:49:b9:b5:34:52:34:1f:21:61:
        8a:bf:e1:87:64:06:b9:14:91:49:95:97:ef:8a:c3:d9:
        73:7d:72:8c:71:95:24:ee:07:3f:dc:c7:25:14:94:a0:
        d6:05:77:ea:ca:e9:3d:81:ea:7a:36:67:4e:0c:16:9a:
        fb:57:41:21:50:52:d5:42:24:f4:1d:7c:6d:eb:92:8b:
        b2:0e:e1:b7:a3:69:2b:5e:71:42:36:52:8b:c7:65:0e:
        6f:2c:f5:9b:b0:b3:73:0b:62:16:7f:3e:24:a7:78:79:
        06:50:89:6d:1d:2d:2b:48:66:b6:54:bd:8d:12:22:d7:
        21:05:ac:77:ed:db:8f:48:af:48:41:85:67:48:ec:b4:
        d2:4e:25:8b:57:c1:db:4e:8b:8b:6d:06:8c:49:c0:eb:
        66:bd:3a:65:4e:11:3d:16:32:42:29:70:41:b3:a4:b5:
        8f:63:95:6a:8c:82:6b:75:74:2d:10:cd:9f:36:4a:a2:
        a9:ce:76:7b:fe:5e:1a:e3:19:a0:90:22:38:6a:28:61:
        8d:b3:28:a0:f8:d4:42:85:b6:f1:31:98:69:fd:ff:aa:
        e3:73:b8:51:8d:b4:c3:9e:e4:32:fe:86:6c:cd:90:69:
        8a:cd:63:52:64:5c:e3:ac:7f:c2:fb:e8:24:7b:d1:3a
    Fingerprint (SHA-256):
        86:AC:2B:0E:40:D4:CF:91:A0:D6:1C:B2:D7:2E:E5:59:51:BF:6C:E9:7C:B3:4F:12:3D:60:EC:CD:3C:88:07:9A
    Fingerprint (SHA1):
        63:00:11:FA:6F:ED:7A:6F:10:02:CE:33:51:77:6F:87:B6:AE:0C:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3421: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3422: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #3423: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #3424: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153063 (0x1dee3f67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:30:29 2017
            Not After : Mon May 02 15:30:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:14:41:b4:62:b9:bc:d5:b3:7a:5b:dc:ae:da:71:88:
                    ce:17:19:89:7b:48:02:33:55:49:ac:bb:ca:c2:e6:8d:
                    06:3f:5a:84:39:a0:ec:ba:7b:73:36:37:83:ac:70:fe:
                    72:74:e2:44:90:cb:dc:ae:c9:af:5e:44:b6:c3:ef:7a:
                    f9:3c:ee:ee:06:e0:3e:04:95:f3:db:7e:3e:5f:36:e1:
                    28:fd:86:fc:48:38:56:e8:9e:98:38:13:76:82:84:94:
                    39:6a:08:d8:1c:77:f4:e9:fd:7a:f3:c0:40:a7:6d:6d:
                    14:97:a1:b1:3c:47:14:b0:ce:3d:fd:29:9a:1f:89:0e:
                    a5:23:d7:1a:3b:f7:04:03:8a:57:b7:06:67:6b:4e:5d:
                    dd:b0:31:dc:d8:c4:2d:da:6f:cc:3a:70:8e:d4:85:e7:
                    67:75:80:60:9a:4f:8a:54:82:63:96:65:0f:57:72:c2:
                    0c:3b:39:2a:73:be:e6:04:20:68:ec:2a:01:a7:b8:68:
                    37:75:fe:c4:8c:c4:43:76:4f:dc:39:9a:99:4c:61:46:
                    37:84:a9:fb:2f:c9:ec:eb:8d:16:78:ec:78:6c:43:ea:
                    f0:78:a4:c3:be:81:1d:04:ce:fd:00:34:aa:f7:78:a7:
                    05:6c:59:8f:21:79:c9:40:3c:e4:88:25:5c:f6:d0:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:7d:50:07:99:d2:70:49:b9:b5:34:52:34:1f:21:61:
        8a:bf:e1:87:64:06:b9:14:91:49:95:97:ef:8a:c3:d9:
        73:7d:72:8c:71:95:24:ee:07:3f:dc:c7:25:14:94:a0:
        d6:05:77:ea:ca:e9:3d:81:ea:7a:36:67:4e:0c:16:9a:
        fb:57:41:21:50:52:d5:42:24:f4:1d:7c:6d:eb:92:8b:
        b2:0e:e1:b7:a3:69:2b:5e:71:42:36:52:8b:c7:65:0e:
        6f:2c:f5:9b:b0:b3:73:0b:62:16:7f:3e:24:a7:78:79:
        06:50:89:6d:1d:2d:2b:48:66:b6:54:bd:8d:12:22:d7:
        21:05:ac:77:ed:db:8f:48:af:48:41:85:67:48:ec:b4:
        d2:4e:25:8b:57:c1:db:4e:8b:8b:6d:06:8c:49:c0:eb:
        66:bd:3a:65:4e:11:3d:16:32:42:29:70:41:b3:a4:b5:
        8f:63:95:6a:8c:82:6b:75:74:2d:10:cd:9f:36:4a:a2:
        a9:ce:76:7b:fe:5e:1a:e3:19:a0:90:22:38:6a:28:61:
        8d:b3:28:a0:f8:d4:42:85:b6:f1:31:98:69:fd:ff:aa:
        e3:73:b8:51:8d:b4:c3:9e:e4:32:fe:86:6c:cd:90:69:
        8a:cd:63:52:64:5c:e3:ac:7f:c2:fb:e8:24:7b:d1:3a
    Fingerprint (SHA-256):
        86:AC:2B:0E:40:D4:CF:91:A0:D6:1C:B2:D7:2E:E5:59:51:BF:6C:E9:7C:B3:4F:12:3D:60:EC:CD:3C:88:07:9A
    Fingerprint (SHA1):
        63:00:11:FA:6F:ED:7A:6F:10:02:CE:33:51:77:6F:87:B6:AE:0C:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3425: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153064 (0x1dee3f68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:29 2017
            Not After : Mon May 02 15:30:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:84:c8:2e:5a:6b:c2:51:cd:cb:31:cc:4f:e3:61:00:
                    a3:3a:24:56:f6:0f:84:59:59:6f:f5:83:c3:43:c5:f1:
                    fd:d6:d4:d4:88:ff:31:9d:6a:ed:03:f7:6b:55:22:0a:
                    73:bc:b4:c7:71:9d:a1:e1:c4:d3:cd:60:80:71:af:82:
                    18:b1:3d:74:44:a8:fb:1a:82:28:c2:4f:3d:89:ab:74:
                    dd:0f:ba:95:40:a5:80:4c:7b:8b:b3:1b:41:46:e7:03:
                    6e:25:0c:9e:4f:34:32:a3:90:e6:c8:9e:66:30:6d:93:
                    02:10:cd:10:3c:84:fd:7c:4c:cc:03:2a:e1:9a:e6:9c:
                    da:96:e8:db:6e:b7:f4:46:25:7a:09:23:3b:3d:18:4c:
                    96:96:e8:3f:75:2b:a0:22:7c:80:23:0f:f3:41:75:85:
                    08:4d:25:fe:46:8a:5a:87:f4:9b:06:9b:4c:66:0c:70:
                    58:50:a4:10:73:8e:65:8c:b0:f2:4c:09:37:ce:03:04:
                    1c:6a:73:20:82:5f:e1:1d:6f:28:c7:c9:40:b7:62:20:
                    d1:e5:39:67:0b:a7:96:22:10:e6:29:7e:28:76:c7:ea:
                    6a:4f:ab:c7:f2:49:4a:c1:1c:ae:64:9e:48:18:2c:9e:
                    54:1c:9e:29:b2:14:50:11:51:df:28:7a:74:fc:8b:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:c4:24:ef:3b:4b:c4:bb:27:2b:a9:50:32:31:cc:b0:
        aa:16:34:16:b1:82:9b:43:78:e9:a7:57:d0:54:b0:3e:
        98:fc:e7:b5:a4:f6:03:b9:fc:51:e0:a1:0d:4c:b5:46:
        e5:d8:80:1e:9b:70:c1:83:0f:d8:d9:1f:e1:05:6e:3f:
        05:35:4c:38:60:06:f1:6b:1e:fc:3c:c3:29:e5:cf:c4:
        c2:54:d3:3b:ab:f2:29:d9:ea:04:9e:06:55:25:09:75:
        dc:e1:67:3e:ee:f1:f5:b9:49:8a:00:22:69:5d:35:55:
        79:26:5f:f3:bd:8f:9c:ec:6a:bf:ca:68:d7:22:be:4c:
        9a:f6:15:6a:dc:a2:91:37:d7:5f:6f:28:8a:5a:94:b3:
        f7:e5:77:3f:0c:ca:78:dc:a8:a6:87:09:26:62:77:e7:
        47:df:0c:4b:48:e8:c2:85:8a:6a:da:10:37:a0:a4:b3:
        82:1a:c5:9c:f2:31:e4:77:bf:6b:1d:8d:4e:87:be:98:
        01:a9:b6:db:42:78:e0:86:b4:d5:4a:67:e4:03:2d:1c:
        14:21:8c:79:47:d6:e3:d2:f7:3d:09:73:22:e4:b1:07:
        99:4b:8e:3d:4f:1a:0d:91:23:f2:fa:da:bc:77:08:f3:
        73:a4:54:d7:9c:af:e5:ca:16:4f:7c:da:b1:70:34:35
    Fingerprint (SHA-256):
        B2:78:07:14:3B:4F:48:21:98:1C:3C:DE:45:CD:88:4E:2F:0A:05:6B:9F:95:FA:B0:06:95:D9:D3:60:A1:E1:BB
    Fingerprint (SHA1):
        28:AD:7A:03:AE:75:53:B5:36:F2:C0:77:48:D6:F1:C7:4F:5C:36:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3426: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #3427: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #3428: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3429: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3430: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3431: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153064 (0x1dee3f68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:29 2017
            Not After : Mon May 02 15:30:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:84:c8:2e:5a:6b:c2:51:cd:cb:31:cc:4f:e3:61:00:
                    a3:3a:24:56:f6:0f:84:59:59:6f:f5:83:c3:43:c5:f1:
                    fd:d6:d4:d4:88:ff:31:9d:6a:ed:03:f7:6b:55:22:0a:
                    73:bc:b4:c7:71:9d:a1:e1:c4:d3:cd:60:80:71:af:82:
                    18:b1:3d:74:44:a8:fb:1a:82:28:c2:4f:3d:89:ab:74:
                    dd:0f:ba:95:40:a5:80:4c:7b:8b:b3:1b:41:46:e7:03:
                    6e:25:0c:9e:4f:34:32:a3:90:e6:c8:9e:66:30:6d:93:
                    02:10:cd:10:3c:84:fd:7c:4c:cc:03:2a:e1:9a:e6:9c:
                    da:96:e8:db:6e:b7:f4:46:25:7a:09:23:3b:3d:18:4c:
                    96:96:e8:3f:75:2b:a0:22:7c:80:23:0f:f3:41:75:85:
                    08:4d:25:fe:46:8a:5a:87:f4:9b:06:9b:4c:66:0c:70:
                    58:50:a4:10:73:8e:65:8c:b0:f2:4c:09:37:ce:03:04:
                    1c:6a:73:20:82:5f:e1:1d:6f:28:c7:c9:40:b7:62:20:
                    d1:e5:39:67:0b:a7:96:22:10:e6:29:7e:28:76:c7:ea:
                    6a:4f:ab:c7:f2:49:4a:c1:1c:ae:64:9e:48:18:2c:9e:
                    54:1c:9e:29:b2:14:50:11:51:df:28:7a:74:fc:8b:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:c4:24:ef:3b:4b:c4:bb:27:2b:a9:50:32:31:cc:b0:
        aa:16:34:16:b1:82:9b:43:78:e9:a7:57:d0:54:b0:3e:
        98:fc:e7:b5:a4:f6:03:b9:fc:51:e0:a1:0d:4c:b5:46:
        e5:d8:80:1e:9b:70:c1:83:0f:d8:d9:1f:e1:05:6e:3f:
        05:35:4c:38:60:06:f1:6b:1e:fc:3c:c3:29:e5:cf:c4:
        c2:54:d3:3b:ab:f2:29:d9:ea:04:9e:06:55:25:09:75:
        dc:e1:67:3e:ee:f1:f5:b9:49:8a:00:22:69:5d:35:55:
        79:26:5f:f3:bd:8f:9c:ec:6a:bf:ca:68:d7:22:be:4c:
        9a:f6:15:6a:dc:a2:91:37:d7:5f:6f:28:8a:5a:94:b3:
        f7:e5:77:3f:0c:ca:78:dc:a8:a6:87:09:26:62:77:e7:
        47:df:0c:4b:48:e8:c2:85:8a:6a:da:10:37:a0:a4:b3:
        82:1a:c5:9c:f2:31:e4:77:bf:6b:1d:8d:4e:87:be:98:
        01:a9:b6:db:42:78:e0:86:b4:d5:4a:67:e4:03:2d:1c:
        14:21:8c:79:47:d6:e3:d2:f7:3d:09:73:22:e4:b1:07:
        99:4b:8e:3d:4f:1a:0d:91:23:f2:fa:da:bc:77:08:f3:
        73:a4:54:d7:9c:af:e5:ca:16:4f:7c:da:b1:70:34:35
    Fingerprint (SHA-256):
        B2:78:07:14:3B:4F:48:21:98:1C:3C:DE:45:CD:88:4E:2F:0A:05:6B:9F:95:FA:B0:06:95:D9:D3:60:A1:E1:BB
    Fingerprint (SHA1):
        28:AD:7A:03:AE:75:53:B5:36:F2:C0:77:48:D6:F1:C7:4F:5C:36:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3432: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153064 (0x1dee3f68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:29 2017
            Not After : Mon May 02 15:30:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:84:c8:2e:5a:6b:c2:51:cd:cb:31:cc:4f:e3:61:00:
                    a3:3a:24:56:f6:0f:84:59:59:6f:f5:83:c3:43:c5:f1:
                    fd:d6:d4:d4:88:ff:31:9d:6a:ed:03:f7:6b:55:22:0a:
                    73:bc:b4:c7:71:9d:a1:e1:c4:d3:cd:60:80:71:af:82:
                    18:b1:3d:74:44:a8:fb:1a:82:28:c2:4f:3d:89:ab:74:
                    dd:0f:ba:95:40:a5:80:4c:7b:8b:b3:1b:41:46:e7:03:
                    6e:25:0c:9e:4f:34:32:a3:90:e6:c8:9e:66:30:6d:93:
                    02:10:cd:10:3c:84:fd:7c:4c:cc:03:2a:e1:9a:e6:9c:
                    da:96:e8:db:6e:b7:f4:46:25:7a:09:23:3b:3d:18:4c:
                    96:96:e8:3f:75:2b:a0:22:7c:80:23:0f:f3:41:75:85:
                    08:4d:25:fe:46:8a:5a:87:f4:9b:06:9b:4c:66:0c:70:
                    58:50:a4:10:73:8e:65:8c:b0:f2:4c:09:37:ce:03:04:
                    1c:6a:73:20:82:5f:e1:1d:6f:28:c7:c9:40:b7:62:20:
                    d1:e5:39:67:0b:a7:96:22:10:e6:29:7e:28:76:c7:ea:
                    6a:4f:ab:c7:f2:49:4a:c1:1c:ae:64:9e:48:18:2c:9e:
                    54:1c:9e:29:b2:14:50:11:51:df:28:7a:74:fc:8b:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:c4:24:ef:3b:4b:c4:bb:27:2b:a9:50:32:31:cc:b0:
        aa:16:34:16:b1:82:9b:43:78:e9:a7:57:d0:54:b0:3e:
        98:fc:e7:b5:a4:f6:03:b9:fc:51:e0:a1:0d:4c:b5:46:
        e5:d8:80:1e:9b:70:c1:83:0f:d8:d9:1f:e1:05:6e:3f:
        05:35:4c:38:60:06:f1:6b:1e:fc:3c:c3:29:e5:cf:c4:
        c2:54:d3:3b:ab:f2:29:d9:ea:04:9e:06:55:25:09:75:
        dc:e1:67:3e:ee:f1:f5:b9:49:8a:00:22:69:5d:35:55:
        79:26:5f:f3:bd:8f:9c:ec:6a:bf:ca:68:d7:22:be:4c:
        9a:f6:15:6a:dc:a2:91:37:d7:5f:6f:28:8a:5a:94:b3:
        f7:e5:77:3f:0c:ca:78:dc:a8:a6:87:09:26:62:77:e7:
        47:df:0c:4b:48:e8:c2:85:8a:6a:da:10:37:a0:a4:b3:
        82:1a:c5:9c:f2:31:e4:77:bf:6b:1d:8d:4e:87:be:98:
        01:a9:b6:db:42:78:e0:86:b4:d5:4a:67:e4:03:2d:1c:
        14:21:8c:79:47:d6:e3:d2:f7:3d:09:73:22:e4:b1:07:
        99:4b:8e:3d:4f:1a:0d:91:23:f2:fa:da:bc:77:08:f3:
        73:a4:54:d7:9c:af:e5:ca:16:4f:7c:da:b1:70:34:35
    Fingerprint (SHA-256):
        B2:78:07:14:3B:4F:48:21:98:1C:3C:DE:45:CD:88:4E:2F:0A:05:6B:9F:95:FA:B0:06:95:D9:D3:60:A1:E1:BB
    Fingerprint (SHA1):
        28:AD:7A:03:AE:75:53:B5:36:F2:C0:77:48:D6:F1:C7:4F:5C:36:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3433: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #3434: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #3435: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3436: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3437: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3438: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153063 (0x1dee3f67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:30:29 2017
            Not After : Mon May 02 15:30:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:14:41:b4:62:b9:bc:d5:b3:7a:5b:dc:ae:da:71:88:
                    ce:17:19:89:7b:48:02:33:55:49:ac:bb:ca:c2:e6:8d:
                    06:3f:5a:84:39:a0:ec:ba:7b:73:36:37:83:ac:70:fe:
                    72:74:e2:44:90:cb:dc:ae:c9:af:5e:44:b6:c3:ef:7a:
                    f9:3c:ee:ee:06:e0:3e:04:95:f3:db:7e:3e:5f:36:e1:
                    28:fd:86:fc:48:38:56:e8:9e:98:38:13:76:82:84:94:
                    39:6a:08:d8:1c:77:f4:e9:fd:7a:f3:c0:40:a7:6d:6d:
                    14:97:a1:b1:3c:47:14:b0:ce:3d:fd:29:9a:1f:89:0e:
                    a5:23:d7:1a:3b:f7:04:03:8a:57:b7:06:67:6b:4e:5d:
                    dd:b0:31:dc:d8:c4:2d:da:6f:cc:3a:70:8e:d4:85:e7:
                    67:75:80:60:9a:4f:8a:54:82:63:96:65:0f:57:72:c2:
                    0c:3b:39:2a:73:be:e6:04:20:68:ec:2a:01:a7:b8:68:
                    37:75:fe:c4:8c:c4:43:76:4f:dc:39:9a:99:4c:61:46:
                    37:84:a9:fb:2f:c9:ec:eb:8d:16:78:ec:78:6c:43:ea:
                    f0:78:a4:c3:be:81:1d:04:ce:fd:00:34:aa:f7:78:a7:
                    05:6c:59:8f:21:79:c9:40:3c:e4:88:25:5c:f6:d0:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:7d:50:07:99:d2:70:49:b9:b5:34:52:34:1f:21:61:
        8a:bf:e1:87:64:06:b9:14:91:49:95:97:ef:8a:c3:d9:
        73:7d:72:8c:71:95:24:ee:07:3f:dc:c7:25:14:94:a0:
        d6:05:77:ea:ca:e9:3d:81:ea:7a:36:67:4e:0c:16:9a:
        fb:57:41:21:50:52:d5:42:24:f4:1d:7c:6d:eb:92:8b:
        b2:0e:e1:b7:a3:69:2b:5e:71:42:36:52:8b:c7:65:0e:
        6f:2c:f5:9b:b0:b3:73:0b:62:16:7f:3e:24:a7:78:79:
        06:50:89:6d:1d:2d:2b:48:66:b6:54:bd:8d:12:22:d7:
        21:05:ac:77:ed:db:8f:48:af:48:41:85:67:48:ec:b4:
        d2:4e:25:8b:57:c1:db:4e:8b:8b:6d:06:8c:49:c0:eb:
        66:bd:3a:65:4e:11:3d:16:32:42:29:70:41:b3:a4:b5:
        8f:63:95:6a:8c:82:6b:75:74:2d:10:cd:9f:36:4a:a2:
        a9:ce:76:7b:fe:5e:1a:e3:19:a0:90:22:38:6a:28:61:
        8d:b3:28:a0:f8:d4:42:85:b6:f1:31:98:69:fd:ff:aa:
        e3:73:b8:51:8d:b4:c3:9e:e4:32:fe:86:6c:cd:90:69:
        8a:cd:63:52:64:5c:e3:ac:7f:c2:fb:e8:24:7b:d1:3a
    Fingerprint (SHA-256):
        86:AC:2B:0E:40:D4:CF:91:A0:D6:1C:B2:D7:2E:E5:59:51:BF:6C:E9:7C:B3:4F:12:3D:60:EC:CD:3C:88:07:9A
    Fingerprint (SHA1):
        63:00:11:FA:6F:ED:7A:6F:10:02:CE:33:51:77:6F:87:B6:AE:0C:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3439: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153063 (0x1dee3f67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:30:29 2017
            Not After : Mon May 02 15:30:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:14:41:b4:62:b9:bc:d5:b3:7a:5b:dc:ae:da:71:88:
                    ce:17:19:89:7b:48:02:33:55:49:ac:bb:ca:c2:e6:8d:
                    06:3f:5a:84:39:a0:ec:ba:7b:73:36:37:83:ac:70:fe:
                    72:74:e2:44:90:cb:dc:ae:c9:af:5e:44:b6:c3:ef:7a:
                    f9:3c:ee:ee:06:e0:3e:04:95:f3:db:7e:3e:5f:36:e1:
                    28:fd:86:fc:48:38:56:e8:9e:98:38:13:76:82:84:94:
                    39:6a:08:d8:1c:77:f4:e9:fd:7a:f3:c0:40:a7:6d:6d:
                    14:97:a1:b1:3c:47:14:b0:ce:3d:fd:29:9a:1f:89:0e:
                    a5:23:d7:1a:3b:f7:04:03:8a:57:b7:06:67:6b:4e:5d:
                    dd:b0:31:dc:d8:c4:2d:da:6f:cc:3a:70:8e:d4:85:e7:
                    67:75:80:60:9a:4f:8a:54:82:63:96:65:0f:57:72:c2:
                    0c:3b:39:2a:73:be:e6:04:20:68:ec:2a:01:a7:b8:68:
                    37:75:fe:c4:8c:c4:43:76:4f:dc:39:9a:99:4c:61:46:
                    37:84:a9:fb:2f:c9:ec:eb:8d:16:78:ec:78:6c:43:ea:
                    f0:78:a4:c3:be:81:1d:04:ce:fd:00:34:aa:f7:78:a7:
                    05:6c:59:8f:21:79:c9:40:3c:e4:88:25:5c:f6:d0:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:7d:50:07:99:d2:70:49:b9:b5:34:52:34:1f:21:61:
        8a:bf:e1:87:64:06:b9:14:91:49:95:97:ef:8a:c3:d9:
        73:7d:72:8c:71:95:24:ee:07:3f:dc:c7:25:14:94:a0:
        d6:05:77:ea:ca:e9:3d:81:ea:7a:36:67:4e:0c:16:9a:
        fb:57:41:21:50:52:d5:42:24:f4:1d:7c:6d:eb:92:8b:
        b2:0e:e1:b7:a3:69:2b:5e:71:42:36:52:8b:c7:65:0e:
        6f:2c:f5:9b:b0:b3:73:0b:62:16:7f:3e:24:a7:78:79:
        06:50:89:6d:1d:2d:2b:48:66:b6:54:bd:8d:12:22:d7:
        21:05:ac:77:ed:db:8f:48:af:48:41:85:67:48:ec:b4:
        d2:4e:25:8b:57:c1:db:4e:8b:8b:6d:06:8c:49:c0:eb:
        66:bd:3a:65:4e:11:3d:16:32:42:29:70:41:b3:a4:b5:
        8f:63:95:6a:8c:82:6b:75:74:2d:10:cd:9f:36:4a:a2:
        a9:ce:76:7b:fe:5e:1a:e3:19:a0:90:22:38:6a:28:61:
        8d:b3:28:a0:f8:d4:42:85:b6:f1:31:98:69:fd:ff:aa:
        e3:73:b8:51:8d:b4:c3:9e:e4:32:fe:86:6c:cd:90:69:
        8a:cd:63:52:64:5c:e3:ac:7f:c2:fb:e8:24:7b:d1:3a
    Fingerprint (SHA-256):
        86:AC:2B:0E:40:D4:CF:91:A0:D6:1C:B2:D7:2E:E5:59:51:BF:6C:E9:7C:B3:4F:12:3D:60:EC:CD:3C:88:07:9A
    Fingerprint (SHA1):
        63:00:11:FA:6F:ED:7A:6F:10:02:CE:33:51:77:6F:87:B6:AE:0C:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3440: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #3441: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153068 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3442: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #3443: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #3444: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153069 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3445: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #3446: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #3447: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153070 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3448: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #3449: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #3450: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153071 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3451: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #3452: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #3453: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153072 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3454: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #3455: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #3456: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153073 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3457: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #3458: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #3459: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153074 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3460: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #3461: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #3462: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153075 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3463: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #3464: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #3465: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153076 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3466: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #3467: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #3468: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3469: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502153077 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3470: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3471: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502153078 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3472: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3473: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502153079 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3474: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3475: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #3476: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #3477: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3478: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502153080 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3479: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3480: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502153081 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3481: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3482: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502153082 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3483: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3484: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #3485: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #3486: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3487: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502153083 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3488: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3489: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502153084 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3490: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3491: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502153085 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3492: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3493: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #3494: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #3495: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3496: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502153086 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3497: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3498: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502153087 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3499: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3500: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502153088 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3501: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3502: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #3503: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3504: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3505: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502153089   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3506: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3507: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3508: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3509: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153090   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3510: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3511: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153068 (0x1dee3f6c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:31 2017
            Not After : Mon May 02 15:30:31 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:80:74:a2:c0:89:14:41:f0:21:be:22:ad:b0:26:16:
                    fa:3f:14:7a:b5:cc:04:94:cb:1c:4d:6f:fe:95:8d:0d:
                    a8:e7:43:b2:1e:fc:2e:ce:b7:25:26:fc:bf:a6:72:bc:
                    50:ef:62:3c:b7:eb:58:63:50:f1:b0:00:96:65:32:b2:
                    47:00:19:e6:55:bf:43:2a:73:be:dd:46:1f:b6:80:2e:
                    d0:7c:96:97:1a:38:20:05:5c:ec:ef:64:3c:92:c2:3d:
                    a4:2f:2f:65:6a:68:ed:9a:ed:93:7e:b0:23:e3:c1:72:
                    6e:b1:ef:dd:0f:21:f1:7b:ce:29:b7:fa:fc:ae:57:a9:
                    30:0f:b5:c5:72:ea:a9:ca:9a:22:2f:ff:c3:86:57:c9:
                    95:9a:7a:54:d1:0b:46:4f:53:06:8b:76:53:93:f0:6d:
                    0f:91:bd:77:12:59:c6:85:bb:e4:6f:95:73:e6:9e:b0:
                    b0:47:30:b1:cb:91:c8:af:01:46:04:f8:6b:e7:9b:d5:
                    70:13:b9:f0:bc:a5:69:2f:7c:03:12:fc:bc:b8:e7:87:
                    41:e0:96:bd:6e:2f:bb:dc:9c:4b:9b:f7:86:26:ab:f3:
                    02:b5:0c:f1:a9:8f:7f:1b:97:ec:be:ff:84:b1:df:89:
                    d7:d8:b7:e4:42:f6:27:df:61:f5:21:46:56:91:a3:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:19:35:cb:6f:10:eb:f5:fa:18:e6:9b:d4:a9:f4:9a:
        6f:82:71:53:8d:23:2b:5f:ea:f4:56:92:43:30:b8:8f:
        9a:03:76:b8:0c:fe:58:53:ab:49:41:ce:41:67:29:0e:
        db:02:cc:35:bd:0d:a4:3b:15:5f:f7:b1:c1:b4:a6:9b:
        3c:49:d6:9d:67:79:28:18:ec:85:3d:76:68:18:69:d0:
        b8:16:89:49:a6:19:54:66:04:68:c8:26:24:d7:d1:81:
        1f:32:db:d6:22:4d:8d:a1:b8:6d:7b:1f:43:52:f2:3e:
        31:a9:08:72:0c:0e:e0:40:ae:f6:1b:86:09:03:1f:a0:
        08:5a:a4:e7:5c:c4:0f:a1:ba:a5:14:ac:ee:5b:3f:28:
        48:88:2b:cf:dd:3a:6e:f8:dc:f7:f6:20:1d:11:12:c9:
        76:34:03:fd:76:f3:7b:f4:e4:1d:05:5e:9b:0d:72:fa:
        ab:68:18:2a:79:02:98:07:89:97:36:29:c0:3a:1e:8a:
        fd:0e:58:58:b6:07:83:9c:91:1c:ee:43:03:46:d4:a1:
        64:43:19:7f:9b:12:35:d2:4e:fa:cb:a0:b7:ef:a0:87:
        ca:c4:3a:31:0d:64:77:61:52:04:01:09:04:99:70:8a:
        f8:ab:e4:67:e9:eb:03:92:0b:b6:11:07:03:e3:56:aa
    Fingerprint (SHA-256):
        8D:88:88:A2:7F:5A:9E:FC:82:47:A8:D0:64:C0:85:23:9E:99:9E:4B:24:67:63:9E:A0:62:BA:36:D9:C3:B9:0F
    Fingerprint (SHA1):
        E2:D5:06:D8:CC:CF:1B:0D:F4:38:C5:18:B8:EA:0C:AB:B9:F6:84:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3512: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153069 (0x1dee3f6d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:30:32 2017
            Not After : Mon May 02 15:30:32 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:e8:9a:50:ce:c3:28:93:24:85:e3:2f:d5:d4:89:c3:
                    2b:5f:67:d9:0b:ef:09:51:9b:ae:71:c9:7a:81:17:09:
                    9a:c6:1b:b6:d3:01:48:6e:0d:5e:d5:c4:92:5a:1d:42:
                    3f:c1:21:05:7c:51:08:21:7e:e0:85:4d:3e:3e:d1:b0:
                    78:11:c5:3b:65:23:ea:5e:a5:10:51:92:85:c6:3b:e3:
                    ea:a0:fb:ae:ca:d7:b7:ee:5d:1f:f7:0f:b9:79:4c:ab:
                    d1:49:2a:1c:88:e5:64:37:5b:2d:f0:86:49:74:e9:1a:
                    e6:57:03:23:5a:8e:2a:c2:a5:57:f2:61:00:d7:79:a5:
                    e6:ad:b4:ae:20:34:6a:94:3e:75:7f:55:db:4c:3f:9b:
                    76:f0:ee:1e:88:0f:5e:b1:16:7d:0e:fb:ca:74:26:e2:
                    28:d4:e5:c0:50:8f:0e:fb:81:da:01:71:69:23:1a:62:
                    08:9a:e3:3d:dd:52:29:18:b2:7a:bd:79:14:51:b6:44:
                    49:ac:c1:83:a1:33:01:d7:b3:d8:be:1d:51:31:a6:b3:
                    97:bd:31:d3:55:12:76:45:4a:4c:71:47:0e:81:6b:54:
                    d4:b5:46:ce:4b:df:ae:03:49:2f:31:c5:0f:e9:52:73:
                    bb:6c:a9:b8:37:95:b6:5e:e4:72:cb:33:ef:6e:dc:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:16:fd:b6:3a:4a:99:de:74:53:25:dc:a5:15:e5:0d:
        11:00:49:13:19:03:75:97:5c:44:87:96:01:58:e3:d6:
        14:66:44:8f:a0:1e:31:d3:0e:3a:12:15:fd:12:9f:f3:
        fe:5b:71:64:b4:02:3c:47:22:89:6c:c1:95:c8:3a:f5:
        31:e1:6d:ee:a5:39:0c:fb:09:ee:24:3f:97:f0:cb:40:
        be:b8:66:39:60:9f:aa:c7:f7:1d:d8:e0:26:68:1a:fc:
        89:43:20:3a:f1:1d:38:27:67:b9:34:e6:4b:ff:09:3f:
        b9:0b:6c:b1:3c:94:29:03:45:35:df:e1:23:9f:b4:52:
        34:0c:a3:60:a5:53:de:45:a7:50:54:9a:f5:22:98:a9:
        b4:4d:96:b8:2b:3f:08:5a:ef:6d:56:a5:54:13:b9:3f:
        11:b0:b7:94:c4:99:c8:95:c9:05:ac:01:cd:30:08:03:
        7a:5d:70:1e:65:9c:93:fd:7c:22:ad:47:ef:0f:65:e4:
        40:0a:ac:48:d0:c5:13:48:00:ab:9c:e0:4c:1d:bc:11:
        b1:e9:af:e6:ff:c5:b2:dd:74:0d:59:de:20:34:34:54:
        a8:f0:d0:31:6b:6f:f9:b0:5d:38:53:c0:34:04:38:f1:
        5a:29:76:07:a1:0d:45:5f:5b:bf:dd:a8:d3:1b:ed:a5
    Fingerprint (SHA-256):
        40:EC:F5:5D:C6:D0:5D:FD:57:6F:8A:99:F9:3D:70:22:13:C4:74:B6:9C:3F:44:90:9B:BB:FC:59:0B:6B:43:CA
    Fingerprint (SHA1):
        81:07:58:01:39:B2:EA:20:AA:92:E0:51:E0:6B:E7:5D:40:F7:30:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3513: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153070 (0x1dee3f6e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:30:32 2017
            Not After : Mon May 02 15:30:32 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5f:c5:99:99:b8:42:54:90:ac:c8:d9:d2:e6:98:c3:
                    16:b1:2a:62:16:06:78:c2:72:b2:f0:ee:f6:e7:1d:06:
                    a2:91:65:45:5b:f8:fc:d7:71:58:7d:01:bb:da:d9:d5:
                    42:bf:b9:b4:bb:26:af:7a:33:8f:c0:dc:aa:7f:19:ee:
                    45:04:6d:70:e3:0c:a6:02:fc:39:86:ee:ea:19:5e:17:
                    60:f4:d8:e6:9b:cf:4f:b6:a0:cc:9d:a3:8f:82:c1:b4:
                    a0:4c:c5:a7:64:38:75:f3:eb:eb:96:af:0d:01:41:f9:
                    b1:31:9e:e8:d3:c6:de:ab:d2:3d:5a:ed:f7:a0:b6:6f:
                    d8:c0:32:91:85:61:97:28:e0:b1:dd:42:e0:46:e4:a6:
                    e8:c4:ba:5a:b1:4e:01:4e:32:eb:b6:41:e0:9b:2c:82:
                    0d:d2:29:a6:0a:65:58:bb:14:13:74:e7:b1:47:38:d1:
                    34:8a:a2:bd:47:c3:78:95:66:90:b2:0c:1e:bc:44:2a:
                    c5:50:88:2c:65:b3:37:c6:1c:e9:a5:79:4e:1f:e7:24:
                    3e:06:47:1d:7f:2d:d7:1b:f8:1b:a3:f1:67:11:ca:a9:
                    d1:d0:dc:45:aa:c7:22:fd:41:9f:c5:4b:d5:ce:88:58:
                    d6:03:da:a0:6d:0b:fc:6c:e4:47:fe:fb:08:2a:c0:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c6:2f:47:3f:f3:b0:5b:7f:c4:a7:bd:cd:00:c7:55:d9:
        42:d8:ef:28:d4:ab:05:ea:ed:1e:d6:c2:4b:cc:45:14:
        21:1a:e1:fc:65:b8:4b:f6:60:23:06:4b:a8:79:0e:0a:
        0e:2b:0f:c3:8e:0b:43:9f:40:76:c3:83:e3:3a:25:f2:
        d3:ac:df:27:55:65:4b:48:c6:ac:a1:cc:18:8f:ff:b2:
        33:03:81:2b:df:bd:0c:fb:95:8d:df:36:4a:ee:1a:79:
        ed:9a:a8:5f:93:bd:95:85:9f:36:14:6a:0e:43:82:d5:
        85:f9:81:ac:92:ae:50:48:5f:53:72:e4:97:79:b6:38:
        95:3c:85:82:9f:cb:8a:cb:e6:0e:4e:91:e1:e4:73:72:
        3e:4e:97:89:50:da:21:5a:79:a5:8f:52:2d:0d:0c:9e:
        49:7e:21:6b:37:03:fd:80:a0:e4:0d:d4:98:eb:ea:8d:
        ec:61:8d:6a:79:a1:9f:d1:2a:f5:7d:aa:f2:c5:85:7d:
        20:c3:bb:1a:60:45:ec:51:97:18:1d:a6:ce:d7:62:ee:
        18:4c:d7:3f:fd:e5:5e:e5:b7:41:90:77:00:f3:25:a7:
        a5:1b:b0:d1:ea:95:45:5d:56:e9:b2:39:6a:8a:20:09:
        f0:50:78:5a:13:82:79:10:28:51:4f:e9:1f:4b:81:7a
    Fingerprint (SHA-256):
        8B:E1:59:DB:14:00:81:AF:3A:9E:BE:2D:69:8E:68:5F:7D:E1:FA:23:57:2D:9A:09:43:60:12:8E:F2:F6:FC:1D
    Fingerprint (SHA1):
        8C:E3:73:7A:BB:70:F3:84:91:66:3C:1C:BB:F3:A0:2B:04:A0:B9:05
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3514: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153071 (0x1dee3f6f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:30:32 2017
            Not After : Mon May 02 15:30:32 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:af:c2:28:db:62:9d:72:5c:1a:be:b4:58:ef:0d:bc:
                    4f:28:21:b5:e7:11:b6:e5:ef:10:cb:c0:3a:41:3e:e3:
                    1a:c7:ce:3e:55:c3:70:2d:f2:5a:e9:cf:66:2f:39:bf:
                    a3:4a:e7:54:be:fc:36:76:bd:de:8f:44:e1:b1:1b:e8:
                    09:f3:ff:0b:b5:aa:c2:34:1b:6b:eb:ac:e0:1d:f0:5d:
                    ab:e7:35:58:bb:75:af:16:8b:e0:30:41:21:a5:7c:70:
                    6e:9f:2e:62:fb:63:e5:c1:54:e3:2a:d7:c1:c2:78:f5:
                    06:d4:d5:6b:b4:a1:2b:ea:25:99:82:d5:36:f2:46:f3:
                    99:db:c5:0d:28:e9:76:26:ef:40:b3:45:e8:bb:e8:a1:
                    d4:02:c0:45:af:34:65:24:e1:54:94:31:b5:65:96:8c:
                    03:83:69:31:58:58:bb:a6:92:cf:6b:31:da:cf:2f:6e:
                    22:1a:b7:b6:f4:59:a0:7b:bd:59:71:5d:22:f3:58:ae:
                    3c:a2:63:90:e0:18:b1:e5:35:54:be:84:7f:e6:1f:2b:
                    1f:00:d7:56:ec:7f:66:43:9e:11:e0:00:24:33:fb:75:
                    ef:f8:f1:79:b8:ee:e9:b9:26:9f:eb:51:ba:fb:d5:0f:
                    02:2b:ca:37:7d:f5:aa:13:4d:7f:aa:53:65:75:98:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:a6:d9:e7:51:35:ca:74:63:10:9d:13:81:4c:32:04:
        f8:8b:12:c4:9a:4c:2e:c0:de:a1:35:28:21:3a:18:69:
        9a:45:87:15:61:ff:ac:e2:a4:19:43:dd:bf:b5:62:ff:
        f6:7b:19:07:ad:cf:90:fd:37:67:1c:97:38:b0:bd:a7:
        4d:3b:6d:9c:dd:eb:e1:bd:1a:26:0e:e3:f5:bc:cc:db:
        1c:dd:7d:b1:f2:3b:4f:fe:a8:44:7b:47:b2:2a:51:18:
        7c:b0:a0:7d:a5:87:52:0a:0c:13:4d:c1:be:03:c6:81:
        ad:18:ab:7f:8e:aa:23:6d:84:4d:bb:1a:10:2b:0e:08:
        ca:1b:c9:fa:2f:48:16:20:bb:47:7c:44:ee:f6:f7:61:
        d6:21:83:0f:bf:55:90:98:e9:88:32:d9:62:a2:c0:bc:
        a2:01:d8:96:38:26:f7:45:16:a5:f8:ad:a7:48:6a:1a:
        84:6b:70:f5:31:25:b2:21:bd:1c:05:b7:c7:b1:2c:04:
        db:e4:1f:fd:f2:eb:d0:fc:7e:0c:e5:21:2b:2b:31:b9:
        79:09:74:98:09:26:2b:c5:05:ab:85:1f:86:64:05:ff:
        c2:5b:3e:c7:f3:f4:c6:63:08:fa:30:eb:51:be:98:d5:
        c0:18:cb:08:d2:3e:ed:87:03:d2:ac:80:65:3d:65:01
    Fingerprint (SHA-256):
        CA:AE:90:34:0F:EF:82:55:47:3B:FD:6D:73:4B:7C:AC:8B:B1:09:CF:FA:BD:DA:32:D8:DA:96:3D:3E:E3:19:60
    Fingerprint (SHA1):
        E7:6A:F5:1C:51:04:FB:C1:16:47:F4:A4:DB:B0:57:01:22:E0:1C:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3515: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153072 (0x1dee3f70)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:30:32 2017
            Not After : Mon May 02 15:30:32 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1d:86:dc:16:cf:25:a5:4a:dc:79:d7:96:c0:fe:d0:
                    ed:8a:49:61:34:19:61:fb:a0:9a:9c:bd:ec:c3:d3:83:
                    98:fe:cc:50:67:33:b0:29:f2:eb:49:5a:bb:18:71:5d:
                    06:5b:c3:aa:6a:13:4a:da:88:4b:b6:7a:23:62:0d:b6:
                    28:81:c3:2b:27:59:09:df:d1:58:65:2c:f2:8d:b0:84:
                    5e:35:88:54:c1:f4:0f:3e:66:08:65:0a:7c:1b:9c:56:
                    c8:75:1c:21:8a:9e:0a:05:08:c0:de:f3:20:87:d9:96:
                    c5:39:00:36:08:ce:2e:1a:f0:55:80:92:6f:4e:61:4c:
                    f3:11:60:ed:bb:66:92:72:a7:50:17:63:32:22:d8:e2:
                    27:33:09:39:83:08:80:29:dc:ae:dd:ba:00:72:2f:d7:
                    5e:f9:1f:30:7e:82:02:c7:80:bc:6d:3c:39:0d:15:ea:
                    18:8e:33:e6:d9:31:3c:4f:5d:0b:80:a8:1b:84:07:f0:
                    74:6b:eb:4b:78:fa:61:d3:84:cb:89:d0:50:1b:6b:f6:
                    85:ee:bc:a2:11:62:58:c0:eb:40:ec:34:75:e3:91:1c:
                    7c:fd:35:82:44:f6:fb:de:a0:d5:03:ba:a7:24:da:b3:
                    5b:88:d5:f2:12:e9:d7:ad:a2:1f:2b:d8:8e:92:00:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:56:b7:9a:13:c3:be:b3:be:43:ed:13:bb:83:b8:98:
        05:d7:0f:5e:34:03:e1:6c:40:5d:72:da:2e:19:c8:ad:
        d7:7a:6a:2f:ea:52:41:4f:95:27:5b:2d:1c:05:ac:76:
        87:ae:eb:b0:e5:f4:dd:8c:56:6a:12:85:75:e4:aa:01:
        f4:9a:1c:fd:2c:e4:ec:0f:ed:28:3c:e8:22:ed:dd:e6:
        01:a3:42:d8:aa:c2:20:ce:28:ca:ac:cb:40:3b:b1:8d:
        88:c0:74:1f:0f:ad:d2:e8:b5:46:43:22:7b:b4:28:da:
        e0:88:80:1f:41:19:a2:02:2d:d3:ac:37:66:72:4c:66:
        d3:99:8d:1c:b1:ad:b5:45:65:2c:2f:d0:13:12:65:e1:
        ef:04:cb:84:98:18:0f:5b:0e:eb:72:9e:52:2d:ce:3c:
        40:f2:53:30:f4:1f:95:2d:37:01:f8:f3:f1:f7:25:94:
        03:e7:d9:21:3a:ae:7f:02:e1:3a:04:68:7b:24:51:dc:
        66:b1:46:ec:1b:29:34:0d:8d:1e:2c:ee:31:e8:d9:23:
        1d:dc:8c:e3:af:2d:b5:bd:0d:ae:33:bd:75:30:05:16:
        24:f5:b3:41:7c:ce:05:d6:de:d4:1d:d5:0a:c5:71:3a:
        a4:a8:20:f1:a7:29:a8:0c:67:e9:4a:92:9c:59:f6:95
    Fingerprint (SHA-256):
        DB:2E:87:FA:4F:09:39:8E:39:B3:90:35:ED:1A:EA:C6:26:C0:DB:39:7A:45:5C:0F:3E:3E:59:38:B0:5D:4E:68
    Fingerprint (SHA1):
        A0:66:C0:F3:38:B6:4E:9F:E4:F8:90:E1:26:6A:10:78:4D:DB:78:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3516: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153073 (0x1dee3f71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:30:33 2017
            Not After : Mon May 02 15:30:33 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b1:32:48:c6:a7:1b:0b:5c:3e:f0:aa:84:eb:31:e8:
                    21:0d:7e:dd:d6:e3:80:4c:5a:5c:f6:0c:60:f0:fa:53:
                    06:70:20:2c:e4:20:3d:a3:8c:7c:22:3a:47:ee:58:51:
                    6c:83:55:12:44:97:74:48:8a:62:cf:97:34:99:fe:2e:
                    31:a5:90:da:cf:c6:5c:99:2b:e1:51:f0:1c:58:5e:b1:
                    ef:26:0e:6a:4d:0d:1c:00:41:59:27:23:8b:c4:a2:f6:
                    7a:b6:1f:56:8e:c2:4e:7a:74:b8:5c:40:0b:96:99:e2:
                    ec:88:04:bf:30:27:fc:2f:22:d1:e0:1d:4a:25:25:d1:
                    41:36:4b:41:52:ba:d3:04:4d:79:c6:3a:23:d0:20:ea:
                    9a:86:3d:ae:c2:9b:cd:df:88:7d:51:3c:be:f1:8f:a6:
                    22:08:b7:fb:e6:bf:07:6c:e2:d1:e5:8b:f2:d2:90:14:
                    8d:1a:95:8b:14:7b:09:34:19:b1:1d:d6:5b:cf:33:44:
                    0b:46:b7:7f:34:f1:69:f9:4e:89:09:38:f3:db:a4:05:
                    0c:73:01:86:28:11:2b:3d:b7:e4:5e:75:cf:d6:e6:7c:
                    50:a5:ed:dd:83:43:d6:b8:85:53:e3:e0:d8:8e:e5:a7:
                    56:9d:c3:02:41:b1:c9:79:5e:7a:d5:dc:76:23:0e:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:1a:44:59:88:a1:5d:fb:14:bb:e7:6f:8e:96:58:c3:
        65:08:96:ad:1f:74:3c:93:90:4d:99:0f:bd:bf:ff:e9:
        26:b6:f0:ed:78:fc:f3:57:da:0d:85:f4:fe:53:bb:78:
        91:fe:0e:17:b2:41:ff:18:3b:df:a0:48:59:6c:40:dd:
        85:b5:d2:f4:9e:20:e5:9a:a7:24:91:1e:06:48:05:72:
        7a:1a:22:2c:d6:54:24:79:fa:ea:79:43:bc:c4:c4:a8:
        0d:d9:d8:21:13:87:db:b2:a5:2f:ef:11:3b:01:f0:ba:
        b6:c9:cc:4b:8e:9c:75:6e:6e:63:e6:71:f2:3c:d8:a0:
        20:23:0d:68:d3:13:25:ae:4c:2f:13:47:89:39:35:46:
        6c:43:98:2b:49:77:b5:5f:56:77:f1:8b:d7:a5:d4:c3:
        f8:0c:c7:5b:67:b9:6f:59:1d:9c:b5:e9:17:2e:e9:97:
        93:12:38:02:82:ee:ee:6c:7d:35:33:39:b9:44:d8:fc:
        d3:d3:85:b8:71:f6:7e:88:cf:21:06:d6:24:05:84:2c:
        5c:2f:5e:fa:5a:6e:b5:70:8b:87:a5:15:9f:fb:1f:2c:
        b6:79:0c:bf:ea:4e:63:70:a5:d1:9f:7c:ca:84:e2:b4:
        25:49:ca:c1:bb:95:ad:29:aa:23:c4:12:48:76:6f:88
    Fingerprint (SHA-256):
        29:23:D8:76:E4:EF:CE:73:F2:93:DE:3D:CF:A3:74:7E:83:64:F9:74:2F:8B:4E:3A:A1:FE:B2:ED:D2:9E:49:A5
    Fingerprint (SHA1):
        1E:8C:51:48:6C:85:FA:5B:B7:D5:C9:63:C3:4D:0E:92:89:F8:71:C1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3517: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153074 (0x1dee3f72)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:30:33 2017
            Not After : Mon May 02 15:30:33 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:48:ea:20:71:2b:dd:1a:99:75:a0:7e:eb:bf:b5:c7:
                    85:9e:a1:7b:66:a5:9a:52:6c:bc:ef:a8:6f:fc:84:e6:
                    a6:05:7e:17:2e:23:00:15:47:a8:9e:31:7a:d2:f2:63:
                    91:12:0c:71:98:53:a8:1b:0d:dc:f4:fa:d1:6b:4d:a1:
                    00:d2:ac:5c:85:5e:85:73:48:d9:e9:5e:06:73:7f:ad:
                    de:75:9f:ba:63:12:00:b0:87:48:a0:04:d7:7b:64:18:
                    f2:9f:6f:90:ae:e5:05:34:06:ec:69:88:2b:73:e8:11:
                    29:4c:de:24:c0:08:c1:38:b6:c8:c3:48:5b:8d:60:47:
                    d8:b9:13:2a:64:0d:45:2d:2a:fc:03:7d:b6:04:92:57:
                    47:78:99:15:8e:cb:58:3d:a3:59:ec:76:1f:03:c8:95:
                    7d:e0:8a:bf:d7:fa:3b:cb:56:02:d3:bd:1c:49:38:d9:
                    20:f4:74:4c:e2:a3:c6:86:3f:bd:16:52:36:16:92:22:
                    40:24:cd:09:7a:f3:8e:25:05:3a:6e:6b:a9:02:85:87:
                    35:00:b3:40:c6:bb:73:29:a9:38:85:99:3a:c9:13:bd:
                    e0:db:2f:47:21:d9:c7:5c:37:1c:10:eb:8c:ac:b4:22:
                    5a:64:41:1d:82:7a:e3:24:c3:85:3a:af:7b:6c:1e:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:74:a6:fe:0c:5c:51:95:0a:ce:b8:c9:0e:c0:a3:1d:
        b5:d6:29:c3:e7:05:28:d0:07:28:5b:5a:07:0c:21:fa:
        d0:f4:ec:8c:a8:70:74:cd:f0:61:02:a0:0e:1f:71:f6:
        57:bb:fb:84:e0:c2:f9:af:4d:20:7e:28:53:45:82:a5:
        b9:73:84:77:7a:05:e2:c1:c7:f4:04:bc:fb:f0:b2:65:
        c6:d5:61:b3:4b:a1:97:19:af:28:ba:61:e9:dc:f7:9b:
        b6:39:94:8c:d2:8c:da:30:4e:56:18:d3:5a:dc:be:78:
        b6:f1:93:01:2e:37:fc:1d:ec:78:8c:f1:97:92:52:3a:
        2a:45:98:66:eb:11:36:28:a4:51:fb:88:a2:82:a0:f1:
        e2:15:f6:f6:31:52:6f:c3:53:1a:df:cb:8b:fc:17:cf:
        4f:bc:38:72:7b:1b:ff:81:69:ee:5d:d4:74:1c:e9:11:
        6f:fd:3d:93:8e:a5:1a:36:9e:7e:fe:83:b2:e9:dd:64:
        88:4f:98:c3:0a:a8:23:5c:70:43:02:ec:36:1d:9a:40:
        13:26:f1:d8:7d:38:a5:63:1f:5e:9b:a2:24:1f:e7:5a:
        7d:2f:6a:d8:a0:46:82:5f:1b:44:e9:b0:3c:10:ba:05:
        4f:df:25:0a:93:f5:25:aa:fc:b4:be:d9:3c:39:50:00
    Fingerprint (SHA-256):
        FA:11:08:B7:5F:AD:7D:51:AC:95:AE:A3:D2:3F:8F:23:0F:F1:5B:B6:59:96:4C:6D:8E:6F:26:37:26:5A:47:F6
    Fingerprint (SHA1):
        23:D9:D5:60:EB:CF:CF:DC:E7:2B:6C:AD:D2:3A:00:14:06:8A:C7:89
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3518: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153075 (0x1dee3f73)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:30:33 2017
            Not After : Mon May 02 15:30:33 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:ba:eb:3d:10:64:d7:80:94:32:2d:a6:3b:1b:1d:f4:
                    eb:f7:bf:6f:e5:6a:7c:5a:f5:e8:53:14:15:3a:1e:f2:
                    8e:fb:2f:51:01:48:f3:88:b6:f2:8f:ca:60:ee:2e:86:
                    d1:65:e2:98:f9:91:5c:96:ff:68:3b:41:33:69:a8:11:
                    8c:ee:d1:90:ed:dd:46:d0:ba:39:dc:54:7c:4b:e8:15:
                    bd:c8:4e:0b:81:a4:0d:9a:9c:17:80:3c:59:f1:d5:78:
                    a3:4c:5e:6e:9d:7c:d3:29:66:82:85:67:f0:65:21:e2:
                    28:d6:31:f1:1e:37:b2:3e:ae:c5:bb:39:fd:94:14:63:
                    4f:61:8e:52:5d:80:66:24:69:06:f1:9d:8f:24:82:f4:
                    50:e7:08:4d:e3:bc:0e:8d:4e:d0:60:8a:06:62:7f:b0:
                    a5:1f:76:66:c5:1e:f0:04:f6:ec:e1:79:74:ac:85:5e:
                    a3:ef:ae:79:31:b4:85:62:47:fa:12:06:0c:c7:c5:3a:
                    ba:83:90:6f:cb:ad:ea:a8:36:b0:35:98:14:be:aa:47:
                    70:cf:87:88:5f:0d:53:3b:78:a6:33:24:67:ed:e9:2f:
                    75:5b:2d:bf:3a:95:1d:55:85:44:b9:fa:62:d7:0a:a7:
                    69:0b:e9:3f:2f:0f:0a:d5:3e:8a:d7:90:59:9e:cf:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:59:ca:6c:6d:75:06:7b:84:8a:8c:f7:a6:ff:fa:d3:
        2e:61:4e:1a:d6:92:77:5e:d9:df:35:a7:a3:a0:a8:e0:
        a1:e8:c3:10:3d:24:c1:92:cd:e4:5b:e9:9d:79:b8:c4:
        2a:f9:33:76:5f:f5:06:0c:fa:39:ed:0e:4e:23:b5:9d:
        81:28:03:64:64:6d:9a:ec:85:90:4d:0f:f0:30:34:f9:
        77:71:ef:40:3b:29:46:58:7d:20:7e:52:83:ba:cb:69:
        67:1e:65:98:83:fd:fe:18:63:c9:ec:61:5a:fb:dd:dc:
        b0:17:6c:14:22:ef:42:e6:3b:e8:b1:98:42:9f:ae:5e:
        f0:ff:06:c0:6f:1c:39:42:70:0c:64:0f:44:d8:5b:bf:
        b0:07:07:d0:bd:da:f9:a8:24:c6:bd:97:55:3f:b8:49:
        de:6e:44:cf:2a:71:ae:30:81:91:07:b4:ae:ed:04:03:
        92:28:63:2f:1a:30:7f:69:12:5d:48:ab:71:a6:0e:09:
        3b:58:6c:a7:94:c8:67:bf:78:f6:72:a9:58:80:d9:21:
        be:28:3d:60:d4:ca:78:4b:6b:16:82:69:f4:7d:09:a9:
        56:d9:0d:2f:4e:f9:d7:92:eb:47:c4:d0:b3:5c:da:42:
        10:09:bf:08:fc:02:a4:68:08:5c:8c:14:86:06:d3:61
    Fingerprint (SHA-256):
        DC:4F:36:47:E8:2A:7E:BE:A6:06:1D:83:D8:73:9D:EC:B9:88:A1:9F:35:59:D9:8A:CB:03:7B:CD:51:C1:FB:1B
    Fingerprint (SHA1):
        A6:AF:F4:81:F2:51:0B:D8:93:FD:14:F4:36:34:B9:BB:46:B7:14:A3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3519: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153076 (0x1dee3f74)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:30:33 2017
            Not After : Mon May 02 15:30:33 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:74:48:a9:cc:6a:55:89:94:91:68:b5:83:ec:7b:aa:
                    51:a9:9b:af:06:84:3b:4a:75:e0:36:51:c9:fe:8e:24:
                    57:79:ba:9a:7a:3f:05:51:68:c6:33:e8:ac:32:29:22:
                    b6:2b:ed:3d:74:63:ec:80:71:96:22:44:23:bb:0f:14:
                    a6:dc:2f:84:47:d0:1e:cb:f7:d7:5f:48:4e:eb:7e:13:
                    1b:9f:1c:0c:85:ea:47:b6:6c:34:30:8f:6c:ac:fe:d1:
                    6b:34:d8:1b:86:4d:07:80:26:32:d0:5b:47:5f:af:84:
                    c6:2b:d2:b7:11:e8:19:2e:a6:26:dc:b9:44:91:23:90:
                    f1:d3:d7:9a:72:e3:a3:c8:3a:54:58:a5:c6:c4:c7:40:
                    90:3b:e1:28:1b:5d:51:01:93:56:43:79:07:21:bf:95:
                    8c:ce:5a:fd:29:36:76:fd:db:44:0c:1a:8f:70:c9:d4:
                    b7:5c:b8:cd:37:be:85:ef:d5:3a:6c:e2:3e:2e:30:5b:
                    d5:c3:b9:c5:58:46:56:b3:31:81:29:69:74:51:64:fe:
                    ba:e2:21:91:56:2d:ac:e3:05:10:5c:e6:a0:01:f0:bd:
                    e5:6e:8a:c7:0c:63:fd:a4:c0:62:8d:64:47:f1:a0:dc:
                    75:70:0d:d3:41:8c:f5:21:68:5d:72:97:fc:1a:97:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c7:36:dc:01:58:c9:c1:bb:5c:ee:43:3a:c8:82:f6:c0:
        a8:da:47:4d:7e:63:6c:22:17:12:6b:b0:bf:6b:96:b5:
        46:fd:bd:92:e9:8b:aa:75:de:65:c0:1f:93:ad:62:26:
        90:1e:72:2c:a7:ef:68:d6:31:02:a2:db:49:7e:7c:b6:
        be:b6:7a:2c:64:4b:99:ae:b6:94:ab:da:f9:28:c0:fc:
        3c:b6:e7:44:c5:52:f8:aa:06:32:76:70:28:49:d2:30:
        75:3e:9f:21:45:d6:d4:ee:e9:af:dd:d4:7e:b9:5f:40:
        0c:57:48:b7:68:e6:3f:04:19:50:04:81:eb:e7:e9:33:
        f7:62:00:63:e6:2f:e1:a4:ae:5b:be:97:c7:9d:b6:05:
        6a:57:6e:61:e8:ac:b1:ee:eb:c9:47:4b:fd:06:51:41:
        3a:45:6c:dd:d2:0e:dd:4e:b8:b6:c4:44:9c:dc:02:e4:
        9f:b6:78:ac:39:63:02:1d:df:94:dc:f2:b5:3c:e0:fa:
        70:45:41:0c:bf:9a:26:0e:1f:bc:13:6f:55:10:7e:16:
        44:42:d2:c4:03:d3:c9:05:b9:b4:30:94:8c:28:7e:5f:
        3b:2e:36:e6:01:7d:b4:24:ac:83:e3:7f:75:9d:08:8d:
        b8:3b:ca:0c:3b:d1:64:0a:2f:d6:83:bf:ab:a1:33:69
    Fingerprint (SHA-256):
        21:CD:27:3A:FE:80:09:63:18:C1:66:39:CC:A2:15:38:A7:5F:A9:01:0B:E6:4F:53:C6:67:9F:95:7E:38:24:22
    Fingerprint (SHA1):
        6D:41:A9:92:30:99:A2:F6:18:13:7F:35:AB:7D:64:3D:61:22:45:DE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3520: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3521: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153091 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3522: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3523: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3524: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3525: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153092   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3526: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3527: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3528: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3529: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153093   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3530: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3531: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3532: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3533: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153094   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3534: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3535: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3536: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153091 (0x1dee3f83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:36 2017
            Not After : Mon May 02 15:30:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:2f:06:05:d3:64:b4:b3:f9:cb:5f:05:a7:1a:91:c7:
                    de:f6:b2:85:33:0f:72:bb:43:e5:c2:d4:88:7b:a7:8c:
                    71:7d:2f:29:49:13:eb:58:52:5d:46:e5:91:39:a5:ca:
                    74:d2:ab:5c:3d:d2:1b:1c:22:92:d4:f9:cc:4f:88:7d:
                    67:7b:02:5c:e5:e4:3d:d9:9b:b1:8b:a5:52:40:cc:d8:
                    77:da:15:2c:19:95:19:f1:88:d3:4e:8f:ba:fc:8b:c6:
                    32:40:47:6b:4b:92:6d:9c:3a:58:2f:ad:ff:5d:53:65:
                    b2:72:c9:5b:6d:59:6f:2f:76:09:c5:b1:76:c1:bf:15:
                    2b:b0:6b:91:00:98:1d:46:d1:65:69:38:55:16:3e:14:
                    b0:d7:4f:48:af:b9:c8:c4:80:29:a7:1e:81:8a:49:e9:
                    7a:48:5b:3e:9e:c4:d4:cf:8c:7e:81:58:a5:4c:ac:ad:
                    2c:0a:67:cd:a9:5f:80:21:ed:e4:c2:74:27:42:50:fb:
                    f8:06:15:7f:22:c4:47:24:65:6a:35:a3:9b:23:6a:c6:
                    cd:cc:cf:30:9b:38:3a:5f:2e:30:77:8a:98:48:b2:2a:
                    b8:d8:0f:c2:69:b6:d0:3c:67:13:ae:2f:4f:5b:ab:c4:
                    7c:36:56:a5:f6:7e:ad:42:a0:60:4d:2d:c2:ea:97:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:cd:c5:2a:0f:d5:10:0b:84:27:a5:19:d7:e4:e1:9b:
        ed:87:f3:a8:22:da:8a:7f:17:71:ca:92:1e:b1:2b:a5:
        68:3f:04:ec:9a:53:1b:8a:60:2a:64:f3:5b:7e:6c:8f:
        1f:21:65:b0:fd:13:c5:6f:0b:44:30:71:d9:83:b9:25:
        14:59:6d:a8:dc:9a:11:bb:f1:6c:96:fa:47:cc:7e:42:
        23:cf:75:5f:98:63:ef:c4:93:6e:6a:7b:11:b0:4a:3a:
        22:08:a5:1d:8f:d7:8f:c0:12:c2:35:bf:0d:80:f7:fa:
        33:8a:c1:b9:fc:e5:b4:88:88:be:47:f8:ed:d1:ff:46:
        00:41:fa:a3:ee:db:a8:b6:3c:00:a4:51:20:5a:7c:f9:
        f9:14:a7:81:4f:47:1a:15:df:19:52:1b:bf:84:b7:37:
        9c:3e:94:69:42:e3:22:51:bc:13:0e:51:b4:96:7d:01:
        29:c0:a6:57:c6:fd:a2:ec:54:fa:7a:0b:5f:32:e3:f4:
        69:ab:56:6d:7a:cf:5a:76:dc:9b:d7:4b:8a:fa:cf:a4:
        9f:10:4b:40:73:90:44:6d:35:f6:33:fe:f4:cf:e8:41:
        d0:23:2c:5a:e0:b6:b4:bc:2e:30:eb:58:fd:6c:d8:05:
        ed:d4:ea:51:36:0c:47:a7:33:41:7f:af:71:e9:fe:28
    Fingerprint (SHA-256):
        65:FB:D5:97:6D:44:81:DC:1A:A1:D2:CA:22:C9:8B:A6:55:D7:98:59:2F:11:B8:BF:CC:69:9E:31:54:63:16:07
    Fingerprint (SHA1):
        65:8F:0F:56:50:D2:00:0D:04:A8:7B:F1:94:D0:49:3F:84:24:F9:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3537: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3538: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153092 (0x1dee3f84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:36 2017
            Not After : Mon May 02 15:30:36 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ce:1e:41:57:eb:e0:45:df:5e:36:33:c4:9c:ea:33:
                    d8:c5:91:c6:7b:ab:86:4f:16:62:5f:88:b4:e0:d2:68:
                    f5:b1:a6:d2:a0:3d:87:e9:21:bd:51:ff:89:c2:d8:cb:
                    78:cc:73:47:5c:9e:6d:e3:84:a8:a2:aa:05:f1:3d:85:
                    fd:3c:29:1d:0c:a3:53:a0:e7:96:b3:ce:6e:ab:e9:27:
                    ca:01:37:5f:b1:34:20:e8:82:c8:b9:e3:cb:88:14:61:
                    d5:56:0e:14:78:ae:92:b6:e7:82:2c:dd:73:5b:88:f2:
                    27:59:a6:54:c4:01:7d:51:af:c0:bf:d6:bd:29:63:f1:
                    c9:89:64:b8:78:8e:33:75:20:71:52:b9:e7:b0:f4:33:
                    06:07:e2:34:ce:6d:3b:81:7f:79:d6:61:d4:e5:fc:1a:
                    e3:cb:9e:db:59:9f:f9:b3:82:78:73:88:4a:b2:fd:ba:
                    a0:88:2a:5c:86:a7:a5:c3:33:e9:21:88:e9:d3:f7:7b:
                    b0:52:5f:9a:e6:27:e0:a2:a7:9c:d8:9b:07:a3:80:0e:
                    5f:c1:1f:d7:78:c8:72:07:6f:e0:b4:01:0a:55:b4:c3:
                    56:12:47:96:a5:dd:25:78:c4:1b:f6:2b:ac:2e:f6:7e:
                    63:b4:9a:40:a8:63:55:bb:ad:41:b6:da:d8:b0:b0:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:cf:6b:69:77:c6:4b:2d:3f:03:8e:51:ad:f1:31:8b:
        8a:1d:54:83:f0:0f:c9:41:1c:80:23:24:a0:03:c9:df:
        d0:9e:04:cf:ce:ed:67:2c:1a:73:e6:16:c4:21:dd:8a:
        24:e8:f0:bb:c3:a4:1f:bc:8a:1b:67:d6:8b:73:35:32:
        bc:63:ce:4a:77:4a:b4:e9:62:af:e8:35:70:28:09:da:
        66:d6:25:31:dd:55:6e:ea:68:41:4e:e6:1c:f4:58:d5:
        f8:ba:a6:a2:de:4f:83:d1:ff:72:49:80:65:cd:a7:ce:
        99:c6:f6:85:a7:73:e3:de:68:b1:81:f8:30:e3:76:5a:
        0c:60:3c:51:aa:43:54:f4:05:2a:2c:a4:d8:c8:5b:c6:
        19:43:33:b4:e1:42:52:bc:07:2b:e1:3a:51:aa:44:4d:
        f0:96:4c:1d:96:ee:78:0e:a2:36:ca:c0:67:cf:50:8c:
        59:1b:48:cd:5f:59:ac:ef:a3:49:9e:ae:89:49:ea:0b:
        77:44:c6:cc:35:3b:96:5a:e7:28:59:a9:cb:d1:2e:fc:
        48:75:75:fd:8f:22:56:c3:b6:06:73:0a:6b:7d:d1:52:
        3f:f2:ee:6a:67:a3:bb:2b:a1:92:33:32:1f:97:39:fb:
        ce:38:56:85:d9:28:4c:f7:67:f2:96:f3:68:71:e6:fa
    Fingerprint (SHA-256):
        FB:33:2D:6B:8B:4D:ED:FF:E2:2C:C9:87:68:88:C8:76:F1:D9:21:10:94:64:B0:5C:67:A5:40:D4:DA:59:44:4C
    Fingerprint (SHA1):
        9B:2A:FB:5E:A5:48:BD:67:3F:60:77:65:B4:6A:83:6A:90:FF:0A:C1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3539: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3540: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153093 (0x1dee3f85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:37 2017
            Not After : Mon May 02 15:30:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:77:17:88:be:c9:3c:81:fa:64:4f:a2:59:74:85:6b:
                    a3:c1:d7:a4:63:31:68:09:ce:f1:2c:8d:bf:29:08:7f:
                    bb:a3:be:f4:69:bf:51:f7:ef:c8:f4:96:6b:1e:3b:b9:
                    f0:ca:6b:e1:fc:fe:61:29:3e:81:fb:56:97:84:8d:0f:
                    28:af:6f:a6:e9:de:e3:d1:72:cc:67:8a:a9:90:46:92:
                    4d:5a:83:7e:e2:1d:5e:c0:f1:08:c9:3f:49:31:44:f9:
                    40:6e:e6:fc:ad:fc:15:ec:f1:af:8c:18:b3:71:90:0f:
                    87:26:34:e9:ee:b1:31:dd:92:f3:4a:b3:ad:25:d2:f2:
                    2b:17:b0:cd:98:72:f0:7d:82:b8:88:4e:01:58:7e:fb:
                    05:08:b7:80:8f:d4:5e:13:f3:1e:61:1e:c0:45:fe:77:
                    61:73:9b:4a:5a:b3:45:34:22:ce:ff:f7:a4:77:a0:8c:
                    52:bc:07:66:04:1d:ab:9b:55:a2:8b:0d:25:6e:94:95:
                    ed:0b:da:65:2d:65:45:64:49:7c:ce:e5:9f:93:56:c9:
                    a1:f4:2f:0f:5d:91:9e:ef:82:c4:c0:7e:80:32:a4:aa:
                    bc:55:19:11:88:05:19:5c:c8:a4:ab:22:e7:b6:9c:ec:
                    4d:ca:0f:1c:81:ea:d5:90:81:bb:31:69:a5:5a:53:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:6f:c8:ff:78:db:54:87:28:2a:18:ef:e1:db:57:5d:
        d5:ac:91:a2:4f:d7:14:d4:20:59:7a:e9:d4:31:12:ba:
        a4:4b:3d:8d:a6:15:86:f4:98:43:62:ff:83:a2:13:ea:
        54:2d:e4:d0:b5:49:29:d4:89:ca:ad:0d:2e:6a:65:7b:
        98:0d:ff:51:10:ac:60:f2:89:64:43:e4:58:aa:d5:a7:
        4f:cb:a4:29:93:ce:11:09:92:77:9e:24:e4:15:d0:88:
        26:b4:d2:57:26:ab:2c:7f:ac:f2:89:0e:25:cf:f0:9e:
        ba:26:10:78:91:f3:67:8b:64:47:70:cb:d9:d6:90:ee:
        15:4b:c3:8e:cb:ef:d3:e7:2a:c8:c0:e9:f1:b1:e9:d0:
        02:48:f5:78:52:5a:de:f1:7d:be:7e:d3:68:c2:45:a7:
        f7:6f:36:28:f8:a0:8c:aa:9c:22:f8:d0:af:06:dd:21:
        69:1c:cb:4e:5d:07:8c:a8:76:a1:45:95:89:20:88:bc:
        f2:df:92:a1:2d:8b:1c:b2:f1:a4:7c:4e:e4:21:ec:50:
        d6:64:d2:ec:23:47:48:50:48:70:84:ce:4c:f7:51:2d:
        3b:d9:c8:f9:cc:72:1a:3b:30:bb:c5:ec:0c:77:39:ab:
        40:71:fa:66:ad:b3:b8:8a:56:60:c9:6f:88:f7:81:93
    Fingerprint (SHA-256):
        74:2F:69:FC:E2:51:67:E9:21:4D:FB:35:2E:A0:81:5E:70:06:B8:1F:2B:9D:C6:9C:79:92:A0:63:6A:7B:68:F1
    Fingerprint (SHA1):
        7B:8D:18:37:DE:2E:0B:7B:C0:86:1A:E4:6C:11:04:FF:1F:A0:6D:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3541: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3542: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3543: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3544: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3545: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153091 (0x1dee3f83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:36 2017
            Not After : Mon May 02 15:30:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:2f:06:05:d3:64:b4:b3:f9:cb:5f:05:a7:1a:91:c7:
                    de:f6:b2:85:33:0f:72:bb:43:e5:c2:d4:88:7b:a7:8c:
                    71:7d:2f:29:49:13:eb:58:52:5d:46:e5:91:39:a5:ca:
                    74:d2:ab:5c:3d:d2:1b:1c:22:92:d4:f9:cc:4f:88:7d:
                    67:7b:02:5c:e5:e4:3d:d9:9b:b1:8b:a5:52:40:cc:d8:
                    77:da:15:2c:19:95:19:f1:88:d3:4e:8f:ba:fc:8b:c6:
                    32:40:47:6b:4b:92:6d:9c:3a:58:2f:ad:ff:5d:53:65:
                    b2:72:c9:5b:6d:59:6f:2f:76:09:c5:b1:76:c1:bf:15:
                    2b:b0:6b:91:00:98:1d:46:d1:65:69:38:55:16:3e:14:
                    b0:d7:4f:48:af:b9:c8:c4:80:29:a7:1e:81:8a:49:e9:
                    7a:48:5b:3e:9e:c4:d4:cf:8c:7e:81:58:a5:4c:ac:ad:
                    2c:0a:67:cd:a9:5f:80:21:ed:e4:c2:74:27:42:50:fb:
                    f8:06:15:7f:22:c4:47:24:65:6a:35:a3:9b:23:6a:c6:
                    cd:cc:cf:30:9b:38:3a:5f:2e:30:77:8a:98:48:b2:2a:
                    b8:d8:0f:c2:69:b6:d0:3c:67:13:ae:2f:4f:5b:ab:c4:
                    7c:36:56:a5:f6:7e:ad:42:a0:60:4d:2d:c2:ea:97:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:cd:c5:2a:0f:d5:10:0b:84:27:a5:19:d7:e4:e1:9b:
        ed:87:f3:a8:22:da:8a:7f:17:71:ca:92:1e:b1:2b:a5:
        68:3f:04:ec:9a:53:1b:8a:60:2a:64:f3:5b:7e:6c:8f:
        1f:21:65:b0:fd:13:c5:6f:0b:44:30:71:d9:83:b9:25:
        14:59:6d:a8:dc:9a:11:bb:f1:6c:96:fa:47:cc:7e:42:
        23:cf:75:5f:98:63:ef:c4:93:6e:6a:7b:11:b0:4a:3a:
        22:08:a5:1d:8f:d7:8f:c0:12:c2:35:bf:0d:80:f7:fa:
        33:8a:c1:b9:fc:e5:b4:88:88:be:47:f8:ed:d1:ff:46:
        00:41:fa:a3:ee:db:a8:b6:3c:00:a4:51:20:5a:7c:f9:
        f9:14:a7:81:4f:47:1a:15:df:19:52:1b:bf:84:b7:37:
        9c:3e:94:69:42:e3:22:51:bc:13:0e:51:b4:96:7d:01:
        29:c0:a6:57:c6:fd:a2:ec:54:fa:7a:0b:5f:32:e3:f4:
        69:ab:56:6d:7a:cf:5a:76:dc:9b:d7:4b:8a:fa:cf:a4:
        9f:10:4b:40:73:90:44:6d:35:f6:33:fe:f4:cf:e8:41:
        d0:23:2c:5a:e0:b6:b4:bc:2e:30:eb:58:fd:6c:d8:05:
        ed:d4:ea:51:36:0c:47:a7:33:41:7f:af:71:e9:fe:28
    Fingerprint (SHA-256):
        65:FB:D5:97:6D:44:81:DC:1A:A1:D2:CA:22:C9:8B:A6:55:D7:98:59:2F:11:B8:BF:CC:69:9E:31:54:63:16:07
    Fingerprint (SHA1):
        65:8F:0F:56:50:D2:00:0D:04:A8:7B:F1:94:D0:49:3F:84:24:F9:9E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3546: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3547: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153092 (0x1dee3f84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:36 2017
            Not After : Mon May 02 15:30:36 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ce:1e:41:57:eb:e0:45:df:5e:36:33:c4:9c:ea:33:
                    d8:c5:91:c6:7b:ab:86:4f:16:62:5f:88:b4:e0:d2:68:
                    f5:b1:a6:d2:a0:3d:87:e9:21:bd:51:ff:89:c2:d8:cb:
                    78:cc:73:47:5c:9e:6d:e3:84:a8:a2:aa:05:f1:3d:85:
                    fd:3c:29:1d:0c:a3:53:a0:e7:96:b3:ce:6e:ab:e9:27:
                    ca:01:37:5f:b1:34:20:e8:82:c8:b9:e3:cb:88:14:61:
                    d5:56:0e:14:78:ae:92:b6:e7:82:2c:dd:73:5b:88:f2:
                    27:59:a6:54:c4:01:7d:51:af:c0:bf:d6:bd:29:63:f1:
                    c9:89:64:b8:78:8e:33:75:20:71:52:b9:e7:b0:f4:33:
                    06:07:e2:34:ce:6d:3b:81:7f:79:d6:61:d4:e5:fc:1a:
                    e3:cb:9e:db:59:9f:f9:b3:82:78:73:88:4a:b2:fd:ba:
                    a0:88:2a:5c:86:a7:a5:c3:33:e9:21:88:e9:d3:f7:7b:
                    b0:52:5f:9a:e6:27:e0:a2:a7:9c:d8:9b:07:a3:80:0e:
                    5f:c1:1f:d7:78:c8:72:07:6f:e0:b4:01:0a:55:b4:c3:
                    56:12:47:96:a5:dd:25:78:c4:1b:f6:2b:ac:2e:f6:7e:
                    63:b4:9a:40:a8:63:55:bb:ad:41:b6:da:d8:b0:b0:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:cf:6b:69:77:c6:4b:2d:3f:03:8e:51:ad:f1:31:8b:
        8a:1d:54:83:f0:0f:c9:41:1c:80:23:24:a0:03:c9:df:
        d0:9e:04:cf:ce:ed:67:2c:1a:73:e6:16:c4:21:dd:8a:
        24:e8:f0:bb:c3:a4:1f:bc:8a:1b:67:d6:8b:73:35:32:
        bc:63:ce:4a:77:4a:b4:e9:62:af:e8:35:70:28:09:da:
        66:d6:25:31:dd:55:6e:ea:68:41:4e:e6:1c:f4:58:d5:
        f8:ba:a6:a2:de:4f:83:d1:ff:72:49:80:65:cd:a7:ce:
        99:c6:f6:85:a7:73:e3:de:68:b1:81:f8:30:e3:76:5a:
        0c:60:3c:51:aa:43:54:f4:05:2a:2c:a4:d8:c8:5b:c6:
        19:43:33:b4:e1:42:52:bc:07:2b:e1:3a:51:aa:44:4d:
        f0:96:4c:1d:96:ee:78:0e:a2:36:ca:c0:67:cf:50:8c:
        59:1b:48:cd:5f:59:ac:ef:a3:49:9e:ae:89:49:ea:0b:
        77:44:c6:cc:35:3b:96:5a:e7:28:59:a9:cb:d1:2e:fc:
        48:75:75:fd:8f:22:56:c3:b6:06:73:0a:6b:7d:d1:52:
        3f:f2:ee:6a:67:a3:bb:2b:a1:92:33:32:1f:97:39:fb:
        ce:38:56:85:d9:28:4c:f7:67:f2:96:f3:68:71:e6:fa
    Fingerprint (SHA-256):
        FB:33:2D:6B:8B:4D:ED:FF:E2:2C:C9:87:68:88:C8:76:F1:D9:21:10:94:64:B0:5C:67:A5:40:D4:DA:59:44:4C
    Fingerprint (SHA1):
        9B:2A:FB:5E:A5:48:BD:67:3F:60:77:65:B4:6A:83:6A:90:FF:0A:C1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3548: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3549: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153093 (0x1dee3f85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:37 2017
            Not After : Mon May 02 15:30:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:77:17:88:be:c9:3c:81:fa:64:4f:a2:59:74:85:6b:
                    a3:c1:d7:a4:63:31:68:09:ce:f1:2c:8d:bf:29:08:7f:
                    bb:a3:be:f4:69:bf:51:f7:ef:c8:f4:96:6b:1e:3b:b9:
                    f0:ca:6b:e1:fc:fe:61:29:3e:81:fb:56:97:84:8d:0f:
                    28:af:6f:a6:e9:de:e3:d1:72:cc:67:8a:a9:90:46:92:
                    4d:5a:83:7e:e2:1d:5e:c0:f1:08:c9:3f:49:31:44:f9:
                    40:6e:e6:fc:ad:fc:15:ec:f1:af:8c:18:b3:71:90:0f:
                    87:26:34:e9:ee:b1:31:dd:92:f3:4a:b3:ad:25:d2:f2:
                    2b:17:b0:cd:98:72:f0:7d:82:b8:88:4e:01:58:7e:fb:
                    05:08:b7:80:8f:d4:5e:13:f3:1e:61:1e:c0:45:fe:77:
                    61:73:9b:4a:5a:b3:45:34:22:ce:ff:f7:a4:77:a0:8c:
                    52:bc:07:66:04:1d:ab:9b:55:a2:8b:0d:25:6e:94:95:
                    ed:0b:da:65:2d:65:45:64:49:7c:ce:e5:9f:93:56:c9:
                    a1:f4:2f:0f:5d:91:9e:ef:82:c4:c0:7e:80:32:a4:aa:
                    bc:55:19:11:88:05:19:5c:c8:a4:ab:22:e7:b6:9c:ec:
                    4d:ca:0f:1c:81:ea:d5:90:81:bb:31:69:a5:5a:53:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:6f:c8:ff:78:db:54:87:28:2a:18:ef:e1:db:57:5d:
        d5:ac:91:a2:4f:d7:14:d4:20:59:7a:e9:d4:31:12:ba:
        a4:4b:3d:8d:a6:15:86:f4:98:43:62:ff:83:a2:13:ea:
        54:2d:e4:d0:b5:49:29:d4:89:ca:ad:0d:2e:6a:65:7b:
        98:0d:ff:51:10:ac:60:f2:89:64:43:e4:58:aa:d5:a7:
        4f:cb:a4:29:93:ce:11:09:92:77:9e:24:e4:15:d0:88:
        26:b4:d2:57:26:ab:2c:7f:ac:f2:89:0e:25:cf:f0:9e:
        ba:26:10:78:91:f3:67:8b:64:47:70:cb:d9:d6:90:ee:
        15:4b:c3:8e:cb:ef:d3:e7:2a:c8:c0:e9:f1:b1:e9:d0:
        02:48:f5:78:52:5a:de:f1:7d:be:7e:d3:68:c2:45:a7:
        f7:6f:36:28:f8:a0:8c:aa:9c:22:f8:d0:af:06:dd:21:
        69:1c:cb:4e:5d:07:8c:a8:76:a1:45:95:89:20:88:bc:
        f2:df:92:a1:2d:8b:1c:b2:f1:a4:7c:4e:e4:21:ec:50:
        d6:64:d2:ec:23:47:48:50:48:70:84:ce:4c:f7:51:2d:
        3b:d9:c8:f9:cc:72:1a:3b:30:bb:c5:ec:0c:77:39:ab:
        40:71:fa:66:ad:b3:b8:8a:56:60:c9:6f:88:f7:81:93
    Fingerprint (SHA-256):
        74:2F:69:FC:E2:51:67:E9:21:4D:FB:35:2E:A0:81:5E:70:06:B8:1F:2B:9D:C6:9C:79:92:A0:63:6A:7B:68:F1
    Fingerprint (SHA1):
        7B:8D:18:37:DE:2E:0B:7B:C0:86:1A:E4:6C:11:04:FF:1F:A0:6D:83
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3550: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3551: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3552: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153095 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3553: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3554: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3555: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3556: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153096   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3557: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3558: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3559: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3560: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153097   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3561: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3562: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3563: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3564: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153098   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3565: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3566: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3567: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3568: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153099   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3569: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3570: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3571: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153095 (0x1dee3f87)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:dc:43:a2:21:4c:4f:b6:1e:89:45:86:40:6e:f8:8c:
                    84:91:9c:8f:40:22:d5:8a:d4:3c:53:b3:69:28:69:3e:
                    41:6a:9c:5a:a2:a6:98:96:ce:77:89:0e:1b:28:05:f0:
                    11:59:95:d3:92:56:53:ef:4b:41:f8:4d:7c:43:21:0a:
                    5f:fe:8d:3d:f0:85:38:9e:19:3a:16:2a:86:50:0c:68:
                    67:3c:d2:90:ed:cb:c8:00:42:d6:98:f9:7f:6d:4a:1c:
                    dd:ec:65:29:8d:78:61:64:11:ff:27:fe:45:71:73:b1:
                    78:ad:29:11:62:bb:25:2f:da:eb:0a:54:cd:14:26:b2:
                    b5:ea:2f:ec:ab:06:43:2b:8c:88:6e:30:4b:fc:03:04:
                    0f:67:87:0e:cf:fe:eb:24:99:3d:3d:55:90:b3:c4:5e:
                    76:4c:fc:7f:b0:a7:e8:be:b0:d5:2c:7d:9e:0d:65:77:
                    1f:00:fe:f0:61:27:7f:4b:17:2d:6c:14:58:a3:7e:12:
                    66:63:1b:d1:fd:cc:4d:28:31:83:2b:87:ae:36:10:c8:
                    83:f2:43:37:96:a8:2a:04:5b:69:eb:95:1b:e0:5b:e3:
                    e2:51:b3:5c:4a:92:b3:52:bd:3c:8e:0a:8e:38:47:98:
                    ce:ad:d0:c4:8a:3e:b6:54:46:a6:97:70:0b:80:45:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:2c:78:c2:f2:9f:b0:6a:a1:f1:14:45:37:49:10:cd:
        07:c1:2a:9b:36:41:87:7c:0b:74:22:a3:ca:f8:e9:bf:
        3a:0d:36:5b:ad:d5:22:36:a1:b0:d3:74:72:c1:aa:49:
        1d:96:c6:b5:30:94:5d:d8:4a:c6:83:15:ed:9a:89:a1:
        15:0b:44:f4:4f:9d:15:47:28:f7:3d:96:97:5e:04:76:
        21:f4:6c:5a:41:b8:56:0d:64:1c:bc:80:6a:2f:35:c2:
        54:a9:67:47:49:0f:f8:b7:98:b9:68:d8:e3:56:c0:af:
        e9:ba:86:b1:44:86:b4:84:cb:26:12:0d:8f:c3:ee:48:
        4d:f4:58:32:72:4a:b4:a0:dd:ab:9b:f2:b9:ae:b7:f3:
        ca:aa:a3:f4:f5:85:b3:a1:64:61:c2:68:c6:06:4c:a3:
        98:33:ba:6e:db:e0:5b:36:9c:0f:0c:21:46:4b:2d:96:
        82:66:cc:49:c8:b5:ec:8a:69:0a:06:6f:c6:bd:cc:31:
        05:9c:20:8a:c8:4e:0e:f2:0b:ae:a3:f5:b1:c2:11:4d:
        5a:64:4d:2c:82:c4:47:0b:60:ac:6a:9c:bf:53:3a:79:
        eb:c3:3c:2c:d3:23:0c:05:81:d7:8c:ea:58:1b:5c:ae:
        9b:b7:5c:55:59:b7:b5:65:2e:36:16:41:db:90:45:20
    Fingerprint (SHA-256):
        F4:1C:77:66:32:A6:67:31:D5:EF:DE:7A:02:2A:41:E8:58:A4:1B:00:5E:2F:4C:78:F5:53:8D:08:BC:11:29:43
    Fingerprint (SHA1):
        2B:50:14:C8:06:63:FD:5C:F4:82:56:9A:83:60:01:87:14:9C:2A:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3572: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3573: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153096 (0x1dee3f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:56:8d:ac:ff:1e:47:ca:93:26:1e:2e:c5:9b:e9:4b:
                    21:23:69:c9:3e:30:1a:23:54:67:79:d6:fa:8c:d6:83:
                    e0:e2:8c:44:f9:f8:ce:27:d2:5d:8c:72:8f:49:e6:fe:
                    8e:4e:6c:b7:11:a5:44:eb:a9:9c:a7:82:68:d9:a6:56:
                    ec:21:cd:d3:00:1e:41:b8:f3:21:79:ea:1a:b1:30:a1:
                    0a:e5:75:18:5f:48:d0:56:19:8e:de:79:ac:55:2a:bd:
                    b6:6e:cb:36:5f:96:f3:3a:02:d3:4d:87:7a:40:be:ca:
                    de:82:30:89:75:25:88:7b:89:88:e3:01:02:80:b6:db:
                    9f:21:39:fc:4a:b4:f8:f3:2f:3f:6b:54:ee:ea:16:6d:
                    f9:94:05:d3:59:2f:50:db:71:7f:76:75:60:75:ce:4f:
                    b5:1b:95:6c:aa:32:7b:79:fb:01:89:2d:14:54:d9:88:
                    f0:9d:ee:70:6d:3f:b2:5f:d1:13:d4:46:76:69:d0:81:
                    1e:fb:e7:c9:ce:71:8e:e7:b9:6d:43:b8:f6:2d:ab:2a:
                    fc:8d:71:ab:5b:60:20:da:0b:3c:0b:f2:f1:1b:07:89:
                    95:1c:62:f8:71:e2:e9:7f:5b:b5:c4:cc:93:ce:5d:07:
                    f6:ad:f9:f4:71:64:b9:71:5f:8a:24:31:d6:91:05:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:06:fe:77:be:e3:ec:2b:4a:68:c5:9b:4a:ee:8a:b1:
        5b:49:49:2a:1c:b2:8b:cf:9b:8a:6d:72:8a:bd:c2:26:
        30:b7:79:8c:fb:ac:5e:54:7e:64:c7:ad:ec:5a:60:8d:
        c8:64:02:75:15:e8:f3:f6:64:58:62:bd:ae:a6:40:f0:
        ad:b5:81:d4:b0:9c:61:1a:22:8f:3a:14:1e:14:6c:fe:
        d1:ce:aa:69:7a:6b:9f:a2:64:a2:7e:fb:b4:9e:db:01:
        b5:98:50:67:8b:f3:0f:c0:1e:72:0e:a5:71:77:cf:bf:
        1c:da:d8:7d:99:26:10:81:04:d6:18:0f:09:ee:d1:3c:
        bd:d2:bb:74:85:1f:aa:21:2a:24:1e:b4:2d:0c:14:64:
        cf:3b:b6:49:8e:5b:54:34:6d:f9:bd:00:21:9e:78:bd:
        19:da:e4:b2:9c:c3:5d:7e:9e:f7:05:f6:af:30:6f:30:
        69:13:86:c7:12:44:f3:a9:dc:05:7d:0b:e5:3a:9b:51:
        09:c5:32:57:31:33:ec:3c:aa:13:ae:1c:ac:22:8a:1b:
        70:da:b7:1b:b9:b8:94:14:9d:e6:9a:a8:12:28:98:5e:
        c3:ae:66:7a:21:46:43:50:bc:70:a1:cb:4a:96:4f:d4:
        d8:6e:0b:e7:86:f1:85:b4:d7:22:90:aa:3c:da:e9:29
    Fingerprint (SHA-256):
        33:C2:99:7A:A2:FB:45:AD:3A:3D:4D:B0:90:AE:18:F3:4D:C7:2B:A7:5C:CC:90:9D:9B:66:33:54:8A:8E:AA:A2
    Fingerprint (SHA1):
        F5:7C:2C:DC:2B:84:A6:02:1E:AA:C7:A8:CA:C4:E6:FE:CC:19:89:9D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3574: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3575: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153097 (0x1dee3f89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:e4:50:40:79:e4:70:d9:3a:d9:36:ff:4c:31:54:e6:
                    cd:1e:ab:84:1c:ab:7f:41:ec:dc:cd:ee:08:a2:f0:a7:
                    8d:3a:51:f2:34:f2:9e:ad:af:a1:a3:7f:85:54:8d:6f:
                    4b:4c:8a:69:bf:c7:38:88:44:7a:33:7e:56:43:d0:68:
                    49:b0:fe:0c:87:6e:b3:9b:30:de:8b:01:1c:42:65:96:
                    d6:c7:15:8b:0f:e1:32:c6:2e:22:00:60:65:2a:55:81:
                    4c:11:a7:52:92:35:d6:ce:d0:1b:7c:1d:be:8b:b1:ec:
                    7e:af:1d:cf:e1:04:20:d0:12:2e:20:36:10:79:92:0d:
                    65:7e:56:33:38:b5:6c:6b:2b:4e:3f:34:76:44:94:19:
                    36:6b:3e:00:26:15:51:6d:14:c1:b8:ec:44:98:c4:e6:
                    8d:c2:4c:06:14:f3:b5:5d:2d:14:8b:3c:bf:a6:c3:dc:
                    c1:a6:67:6b:8b:16:2e:09:f1:b2:6a:08:63:96:2f:93:
                    fe:71:db:f8:19:0b:8c:9e:74:77:cc:65:ad:37:8d:fd:
                    21:ae:a6:31:fb:d2:cf:b8:8d:46:cf:3f:b4:65:33:ab:
                    38:b5:f5:6b:23:ec:c6:3d:a4:94:01:e6:f4:7d:93:96:
                    72:65:f6:1e:f4:11:b0:69:d9:03:5a:93:8c:a1:59:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1e:78:24:fd:22:ac:75:b8:1b:e2:e7:3f:03:6a:d3:
        ed:99:79:09:08:16:08:1e:f2:3e:dd:f2:3e:7b:26:88:
        13:1b:6a:c3:44:32:40:30:e1:8c:f3:85:54:2c:20:28:
        90:81:f2:c4:d9:88:a1:0d:43:fc:ea:1f:f2:50:3d:7b:
        1b:7f:15:88:f7:dc:e5:d2:55:82:67:ff:0d:ec:f2:36:
        11:ae:0f:34:57:be:e3:e5:00:c9:2a:69:36:b0:90:ee:
        49:6d:72:9a:11:5e:4f:3c:bf:db:e2:e5:bb:f9:e9:27:
        4c:ee:64:99:99:ee:e5:68:c7:23:48:15:6d:b9:c6:13:
        e6:ce:f8:23:e5:2c:50:d7:44:4a:4a:a6:32:a8:c5:a1:
        6f:78:7b:61:12:93:e6:20:6d:b5:b9:db:31:1c:6f:ee:
        62:05:eb:54:5e:65:66:0b:26:5d:9f:39:74:ea:30:3c:
        f6:41:4d:be:26:70:d6:a3:20:53:4e:da:31:8b:39:68:
        50:99:d9:44:27:84:26:f9:c3:a4:17:f8:6a:b0:d7:88:
        bc:21:e2:09:d9:41:98:e3:e4:8c:ed:e7:5f:ef:0e:46:
        7f:61:15:32:52:42:eb:e4:90:d5:cf:33:01:9b:53:a5:
        b0:9a:64:06:29:a6:f4:de:7a:ba:23:8b:23:a6:78:38
    Fingerprint (SHA-256):
        40:DA:BE:ED:B5:79:DE:FA:1C:E6:E0:53:35:E6:27:7C:A4:9E:39:D1:82:C2:53:36:8C:5D:C9:89:A5:61:53:27
    Fingerprint (SHA1):
        1D:1D:0C:3F:70:14:E0:BC:A1:EC:C4:8B:73:0B:4A:54:7B:5F:14:46
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3576: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3577: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3578: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3579: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3580: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153095 (0x1dee3f87)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:dc:43:a2:21:4c:4f:b6:1e:89:45:86:40:6e:f8:8c:
                    84:91:9c:8f:40:22:d5:8a:d4:3c:53:b3:69:28:69:3e:
                    41:6a:9c:5a:a2:a6:98:96:ce:77:89:0e:1b:28:05:f0:
                    11:59:95:d3:92:56:53:ef:4b:41:f8:4d:7c:43:21:0a:
                    5f:fe:8d:3d:f0:85:38:9e:19:3a:16:2a:86:50:0c:68:
                    67:3c:d2:90:ed:cb:c8:00:42:d6:98:f9:7f:6d:4a:1c:
                    dd:ec:65:29:8d:78:61:64:11:ff:27:fe:45:71:73:b1:
                    78:ad:29:11:62:bb:25:2f:da:eb:0a:54:cd:14:26:b2:
                    b5:ea:2f:ec:ab:06:43:2b:8c:88:6e:30:4b:fc:03:04:
                    0f:67:87:0e:cf:fe:eb:24:99:3d:3d:55:90:b3:c4:5e:
                    76:4c:fc:7f:b0:a7:e8:be:b0:d5:2c:7d:9e:0d:65:77:
                    1f:00:fe:f0:61:27:7f:4b:17:2d:6c:14:58:a3:7e:12:
                    66:63:1b:d1:fd:cc:4d:28:31:83:2b:87:ae:36:10:c8:
                    83:f2:43:37:96:a8:2a:04:5b:69:eb:95:1b:e0:5b:e3:
                    e2:51:b3:5c:4a:92:b3:52:bd:3c:8e:0a:8e:38:47:98:
                    ce:ad:d0:c4:8a:3e:b6:54:46:a6:97:70:0b:80:45:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:2c:78:c2:f2:9f:b0:6a:a1:f1:14:45:37:49:10:cd:
        07:c1:2a:9b:36:41:87:7c:0b:74:22:a3:ca:f8:e9:bf:
        3a:0d:36:5b:ad:d5:22:36:a1:b0:d3:74:72:c1:aa:49:
        1d:96:c6:b5:30:94:5d:d8:4a:c6:83:15:ed:9a:89:a1:
        15:0b:44:f4:4f:9d:15:47:28:f7:3d:96:97:5e:04:76:
        21:f4:6c:5a:41:b8:56:0d:64:1c:bc:80:6a:2f:35:c2:
        54:a9:67:47:49:0f:f8:b7:98:b9:68:d8:e3:56:c0:af:
        e9:ba:86:b1:44:86:b4:84:cb:26:12:0d:8f:c3:ee:48:
        4d:f4:58:32:72:4a:b4:a0:dd:ab:9b:f2:b9:ae:b7:f3:
        ca:aa:a3:f4:f5:85:b3:a1:64:61:c2:68:c6:06:4c:a3:
        98:33:ba:6e:db:e0:5b:36:9c:0f:0c:21:46:4b:2d:96:
        82:66:cc:49:c8:b5:ec:8a:69:0a:06:6f:c6:bd:cc:31:
        05:9c:20:8a:c8:4e:0e:f2:0b:ae:a3:f5:b1:c2:11:4d:
        5a:64:4d:2c:82:c4:47:0b:60:ac:6a:9c:bf:53:3a:79:
        eb:c3:3c:2c:d3:23:0c:05:81:d7:8c:ea:58:1b:5c:ae:
        9b:b7:5c:55:59:b7:b5:65:2e:36:16:41:db:90:45:20
    Fingerprint (SHA-256):
        F4:1C:77:66:32:A6:67:31:D5:EF:DE:7A:02:2A:41:E8:58:A4:1B:00:5E:2F:4C:78:F5:53:8D:08:BC:11:29:43
    Fingerprint (SHA1):
        2B:50:14:C8:06:63:FD:5C:F4:82:56:9A:83:60:01:87:14:9C:2A:B0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3581: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3582: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153096 (0x1dee3f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:56:8d:ac:ff:1e:47:ca:93:26:1e:2e:c5:9b:e9:4b:
                    21:23:69:c9:3e:30:1a:23:54:67:79:d6:fa:8c:d6:83:
                    e0:e2:8c:44:f9:f8:ce:27:d2:5d:8c:72:8f:49:e6:fe:
                    8e:4e:6c:b7:11:a5:44:eb:a9:9c:a7:82:68:d9:a6:56:
                    ec:21:cd:d3:00:1e:41:b8:f3:21:79:ea:1a:b1:30:a1:
                    0a:e5:75:18:5f:48:d0:56:19:8e:de:79:ac:55:2a:bd:
                    b6:6e:cb:36:5f:96:f3:3a:02:d3:4d:87:7a:40:be:ca:
                    de:82:30:89:75:25:88:7b:89:88:e3:01:02:80:b6:db:
                    9f:21:39:fc:4a:b4:f8:f3:2f:3f:6b:54:ee:ea:16:6d:
                    f9:94:05:d3:59:2f:50:db:71:7f:76:75:60:75:ce:4f:
                    b5:1b:95:6c:aa:32:7b:79:fb:01:89:2d:14:54:d9:88:
                    f0:9d:ee:70:6d:3f:b2:5f:d1:13:d4:46:76:69:d0:81:
                    1e:fb:e7:c9:ce:71:8e:e7:b9:6d:43:b8:f6:2d:ab:2a:
                    fc:8d:71:ab:5b:60:20:da:0b:3c:0b:f2:f1:1b:07:89:
                    95:1c:62:f8:71:e2:e9:7f:5b:b5:c4:cc:93:ce:5d:07:
                    f6:ad:f9:f4:71:64:b9:71:5f:8a:24:31:d6:91:05:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:06:fe:77:be:e3:ec:2b:4a:68:c5:9b:4a:ee:8a:b1:
        5b:49:49:2a:1c:b2:8b:cf:9b:8a:6d:72:8a:bd:c2:26:
        30:b7:79:8c:fb:ac:5e:54:7e:64:c7:ad:ec:5a:60:8d:
        c8:64:02:75:15:e8:f3:f6:64:58:62:bd:ae:a6:40:f0:
        ad:b5:81:d4:b0:9c:61:1a:22:8f:3a:14:1e:14:6c:fe:
        d1:ce:aa:69:7a:6b:9f:a2:64:a2:7e:fb:b4:9e:db:01:
        b5:98:50:67:8b:f3:0f:c0:1e:72:0e:a5:71:77:cf:bf:
        1c:da:d8:7d:99:26:10:81:04:d6:18:0f:09:ee:d1:3c:
        bd:d2:bb:74:85:1f:aa:21:2a:24:1e:b4:2d:0c:14:64:
        cf:3b:b6:49:8e:5b:54:34:6d:f9:bd:00:21:9e:78:bd:
        19:da:e4:b2:9c:c3:5d:7e:9e:f7:05:f6:af:30:6f:30:
        69:13:86:c7:12:44:f3:a9:dc:05:7d:0b:e5:3a:9b:51:
        09:c5:32:57:31:33:ec:3c:aa:13:ae:1c:ac:22:8a:1b:
        70:da:b7:1b:b9:b8:94:14:9d:e6:9a:a8:12:28:98:5e:
        c3:ae:66:7a:21:46:43:50:bc:70:a1:cb:4a:96:4f:d4:
        d8:6e:0b:e7:86:f1:85:b4:d7:22:90:aa:3c:da:e9:29
    Fingerprint (SHA-256):
        33:C2:99:7A:A2:FB:45:AD:3A:3D:4D:B0:90:AE:18:F3:4D:C7:2B:A7:5C:CC:90:9D:9B:66:33:54:8A:8E:AA:A2
    Fingerprint (SHA1):
        F5:7C:2C:DC:2B:84:A6:02:1E:AA:C7:A8:CA:C4:E6:FE:CC:19:89:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3583: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3584: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153097 (0x1dee3f89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:e4:50:40:79:e4:70:d9:3a:d9:36:ff:4c:31:54:e6:
                    cd:1e:ab:84:1c:ab:7f:41:ec:dc:cd:ee:08:a2:f0:a7:
                    8d:3a:51:f2:34:f2:9e:ad:af:a1:a3:7f:85:54:8d:6f:
                    4b:4c:8a:69:bf:c7:38:88:44:7a:33:7e:56:43:d0:68:
                    49:b0:fe:0c:87:6e:b3:9b:30:de:8b:01:1c:42:65:96:
                    d6:c7:15:8b:0f:e1:32:c6:2e:22:00:60:65:2a:55:81:
                    4c:11:a7:52:92:35:d6:ce:d0:1b:7c:1d:be:8b:b1:ec:
                    7e:af:1d:cf:e1:04:20:d0:12:2e:20:36:10:79:92:0d:
                    65:7e:56:33:38:b5:6c:6b:2b:4e:3f:34:76:44:94:19:
                    36:6b:3e:00:26:15:51:6d:14:c1:b8:ec:44:98:c4:e6:
                    8d:c2:4c:06:14:f3:b5:5d:2d:14:8b:3c:bf:a6:c3:dc:
                    c1:a6:67:6b:8b:16:2e:09:f1:b2:6a:08:63:96:2f:93:
                    fe:71:db:f8:19:0b:8c:9e:74:77:cc:65:ad:37:8d:fd:
                    21:ae:a6:31:fb:d2:cf:b8:8d:46:cf:3f:b4:65:33:ab:
                    38:b5:f5:6b:23:ec:c6:3d:a4:94:01:e6:f4:7d:93:96:
                    72:65:f6:1e:f4:11:b0:69:d9:03:5a:93:8c:a1:59:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1e:78:24:fd:22:ac:75:b8:1b:e2:e7:3f:03:6a:d3:
        ed:99:79:09:08:16:08:1e:f2:3e:dd:f2:3e:7b:26:88:
        13:1b:6a:c3:44:32:40:30:e1:8c:f3:85:54:2c:20:28:
        90:81:f2:c4:d9:88:a1:0d:43:fc:ea:1f:f2:50:3d:7b:
        1b:7f:15:88:f7:dc:e5:d2:55:82:67:ff:0d:ec:f2:36:
        11:ae:0f:34:57:be:e3:e5:00:c9:2a:69:36:b0:90:ee:
        49:6d:72:9a:11:5e:4f:3c:bf:db:e2:e5:bb:f9:e9:27:
        4c:ee:64:99:99:ee:e5:68:c7:23:48:15:6d:b9:c6:13:
        e6:ce:f8:23:e5:2c:50:d7:44:4a:4a:a6:32:a8:c5:a1:
        6f:78:7b:61:12:93:e6:20:6d:b5:b9:db:31:1c:6f:ee:
        62:05:eb:54:5e:65:66:0b:26:5d:9f:39:74:ea:30:3c:
        f6:41:4d:be:26:70:d6:a3:20:53:4e:da:31:8b:39:68:
        50:99:d9:44:27:84:26:f9:c3:a4:17:f8:6a:b0:d7:88:
        bc:21:e2:09:d9:41:98:e3:e4:8c:ed:e7:5f:ef:0e:46:
        7f:61:15:32:52:42:eb:e4:90:d5:cf:33:01:9b:53:a5:
        b0:9a:64:06:29:a6:f4:de:7a:ba:23:8b:23:a6:78:38
    Fingerprint (SHA-256):
        40:DA:BE:ED:B5:79:DE:FA:1C:E6:E0:53:35:E6:27:7C:A4:9E:39:D1:82:C2:53:36:8C:5D:C9:89:A5:61:53:27
    Fingerprint (SHA1):
        1D:1D:0C:3F:70:14:E0:BC:A1:EC:C4:8B:73:0B:4A:54:7B:5F:14:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3585: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3586: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153095 (0x1dee3f87)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:dc:43:a2:21:4c:4f:b6:1e:89:45:86:40:6e:f8:8c:
                    84:91:9c:8f:40:22:d5:8a:d4:3c:53:b3:69:28:69:3e:
                    41:6a:9c:5a:a2:a6:98:96:ce:77:89:0e:1b:28:05:f0:
                    11:59:95:d3:92:56:53:ef:4b:41:f8:4d:7c:43:21:0a:
                    5f:fe:8d:3d:f0:85:38:9e:19:3a:16:2a:86:50:0c:68:
                    67:3c:d2:90:ed:cb:c8:00:42:d6:98:f9:7f:6d:4a:1c:
                    dd:ec:65:29:8d:78:61:64:11:ff:27:fe:45:71:73:b1:
                    78:ad:29:11:62:bb:25:2f:da:eb:0a:54:cd:14:26:b2:
                    b5:ea:2f:ec:ab:06:43:2b:8c:88:6e:30:4b:fc:03:04:
                    0f:67:87:0e:cf:fe:eb:24:99:3d:3d:55:90:b3:c4:5e:
                    76:4c:fc:7f:b0:a7:e8:be:b0:d5:2c:7d:9e:0d:65:77:
                    1f:00:fe:f0:61:27:7f:4b:17:2d:6c:14:58:a3:7e:12:
                    66:63:1b:d1:fd:cc:4d:28:31:83:2b:87:ae:36:10:c8:
                    83:f2:43:37:96:a8:2a:04:5b:69:eb:95:1b:e0:5b:e3:
                    e2:51:b3:5c:4a:92:b3:52:bd:3c:8e:0a:8e:38:47:98:
                    ce:ad:d0:c4:8a:3e:b6:54:46:a6:97:70:0b:80:45:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:2c:78:c2:f2:9f:b0:6a:a1:f1:14:45:37:49:10:cd:
        07:c1:2a:9b:36:41:87:7c:0b:74:22:a3:ca:f8:e9:bf:
        3a:0d:36:5b:ad:d5:22:36:a1:b0:d3:74:72:c1:aa:49:
        1d:96:c6:b5:30:94:5d:d8:4a:c6:83:15:ed:9a:89:a1:
        15:0b:44:f4:4f:9d:15:47:28:f7:3d:96:97:5e:04:76:
        21:f4:6c:5a:41:b8:56:0d:64:1c:bc:80:6a:2f:35:c2:
        54:a9:67:47:49:0f:f8:b7:98:b9:68:d8:e3:56:c0:af:
        e9:ba:86:b1:44:86:b4:84:cb:26:12:0d:8f:c3:ee:48:
        4d:f4:58:32:72:4a:b4:a0:dd:ab:9b:f2:b9:ae:b7:f3:
        ca:aa:a3:f4:f5:85:b3:a1:64:61:c2:68:c6:06:4c:a3:
        98:33:ba:6e:db:e0:5b:36:9c:0f:0c:21:46:4b:2d:96:
        82:66:cc:49:c8:b5:ec:8a:69:0a:06:6f:c6:bd:cc:31:
        05:9c:20:8a:c8:4e:0e:f2:0b:ae:a3:f5:b1:c2:11:4d:
        5a:64:4d:2c:82:c4:47:0b:60:ac:6a:9c:bf:53:3a:79:
        eb:c3:3c:2c:d3:23:0c:05:81:d7:8c:ea:58:1b:5c:ae:
        9b:b7:5c:55:59:b7:b5:65:2e:36:16:41:db:90:45:20
    Fingerprint (SHA-256):
        F4:1C:77:66:32:A6:67:31:D5:EF:DE:7A:02:2A:41:E8:58:A4:1B:00:5E:2F:4C:78:F5:53:8D:08:BC:11:29:43
    Fingerprint (SHA1):
        2B:50:14:C8:06:63:FD:5C:F4:82:56:9A:83:60:01:87:14:9C:2A:B0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3587: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153095 (0x1dee3f87)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:dc:43:a2:21:4c:4f:b6:1e:89:45:86:40:6e:f8:8c:
                    84:91:9c:8f:40:22:d5:8a:d4:3c:53:b3:69:28:69:3e:
                    41:6a:9c:5a:a2:a6:98:96:ce:77:89:0e:1b:28:05:f0:
                    11:59:95:d3:92:56:53:ef:4b:41:f8:4d:7c:43:21:0a:
                    5f:fe:8d:3d:f0:85:38:9e:19:3a:16:2a:86:50:0c:68:
                    67:3c:d2:90:ed:cb:c8:00:42:d6:98:f9:7f:6d:4a:1c:
                    dd:ec:65:29:8d:78:61:64:11:ff:27:fe:45:71:73:b1:
                    78:ad:29:11:62:bb:25:2f:da:eb:0a:54:cd:14:26:b2:
                    b5:ea:2f:ec:ab:06:43:2b:8c:88:6e:30:4b:fc:03:04:
                    0f:67:87:0e:cf:fe:eb:24:99:3d:3d:55:90:b3:c4:5e:
                    76:4c:fc:7f:b0:a7:e8:be:b0:d5:2c:7d:9e:0d:65:77:
                    1f:00:fe:f0:61:27:7f:4b:17:2d:6c:14:58:a3:7e:12:
                    66:63:1b:d1:fd:cc:4d:28:31:83:2b:87:ae:36:10:c8:
                    83:f2:43:37:96:a8:2a:04:5b:69:eb:95:1b:e0:5b:e3:
                    e2:51:b3:5c:4a:92:b3:52:bd:3c:8e:0a:8e:38:47:98:
                    ce:ad:d0:c4:8a:3e:b6:54:46:a6:97:70:0b:80:45:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:2c:78:c2:f2:9f:b0:6a:a1:f1:14:45:37:49:10:cd:
        07:c1:2a:9b:36:41:87:7c:0b:74:22:a3:ca:f8:e9:bf:
        3a:0d:36:5b:ad:d5:22:36:a1:b0:d3:74:72:c1:aa:49:
        1d:96:c6:b5:30:94:5d:d8:4a:c6:83:15:ed:9a:89:a1:
        15:0b:44:f4:4f:9d:15:47:28:f7:3d:96:97:5e:04:76:
        21:f4:6c:5a:41:b8:56:0d:64:1c:bc:80:6a:2f:35:c2:
        54:a9:67:47:49:0f:f8:b7:98:b9:68:d8:e3:56:c0:af:
        e9:ba:86:b1:44:86:b4:84:cb:26:12:0d:8f:c3:ee:48:
        4d:f4:58:32:72:4a:b4:a0:dd:ab:9b:f2:b9:ae:b7:f3:
        ca:aa:a3:f4:f5:85:b3:a1:64:61:c2:68:c6:06:4c:a3:
        98:33:ba:6e:db:e0:5b:36:9c:0f:0c:21:46:4b:2d:96:
        82:66:cc:49:c8:b5:ec:8a:69:0a:06:6f:c6:bd:cc:31:
        05:9c:20:8a:c8:4e:0e:f2:0b:ae:a3:f5:b1:c2:11:4d:
        5a:64:4d:2c:82:c4:47:0b:60:ac:6a:9c:bf:53:3a:79:
        eb:c3:3c:2c:d3:23:0c:05:81:d7:8c:ea:58:1b:5c:ae:
        9b:b7:5c:55:59:b7:b5:65:2e:36:16:41:db:90:45:20
    Fingerprint (SHA-256):
        F4:1C:77:66:32:A6:67:31:D5:EF:DE:7A:02:2A:41:E8:58:A4:1B:00:5E:2F:4C:78:F5:53:8D:08:BC:11:29:43
    Fingerprint (SHA1):
        2B:50:14:C8:06:63:FD:5C:F4:82:56:9A:83:60:01:87:14:9C:2A:B0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3588: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153096 (0x1dee3f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:56:8d:ac:ff:1e:47:ca:93:26:1e:2e:c5:9b:e9:4b:
                    21:23:69:c9:3e:30:1a:23:54:67:79:d6:fa:8c:d6:83:
                    e0:e2:8c:44:f9:f8:ce:27:d2:5d:8c:72:8f:49:e6:fe:
                    8e:4e:6c:b7:11:a5:44:eb:a9:9c:a7:82:68:d9:a6:56:
                    ec:21:cd:d3:00:1e:41:b8:f3:21:79:ea:1a:b1:30:a1:
                    0a:e5:75:18:5f:48:d0:56:19:8e:de:79:ac:55:2a:bd:
                    b6:6e:cb:36:5f:96:f3:3a:02:d3:4d:87:7a:40:be:ca:
                    de:82:30:89:75:25:88:7b:89:88:e3:01:02:80:b6:db:
                    9f:21:39:fc:4a:b4:f8:f3:2f:3f:6b:54:ee:ea:16:6d:
                    f9:94:05:d3:59:2f:50:db:71:7f:76:75:60:75:ce:4f:
                    b5:1b:95:6c:aa:32:7b:79:fb:01:89:2d:14:54:d9:88:
                    f0:9d:ee:70:6d:3f:b2:5f:d1:13:d4:46:76:69:d0:81:
                    1e:fb:e7:c9:ce:71:8e:e7:b9:6d:43:b8:f6:2d:ab:2a:
                    fc:8d:71:ab:5b:60:20:da:0b:3c:0b:f2:f1:1b:07:89:
                    95:1c:62:f8:71:e2:e9:7f:5b:b5:c4:cc:93:ce:5d:07:
                    f6:ad:f9:f4:71:64:b9:71:5f:8a:24:31:d6:91:05:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:06:fe:77:be:e3:ec:2b:4a:68:c5:9b:4a:ee:8a:b1:
        5b:49:49:2a:1c:b2:8b:cf:9b:8a:6d:72:8a:bd:c2:26:
        30:b7:79:8c:fb:ac:5e:54:7e:64:c7:ad:ec:5a:60:8d:
        c8:64:02:75:15:e8:f3:f6:64:58:62:bd:ae:a6:40:f0:
        ad:b5:81:d4:b0:9c:61:1a:22:8f:3a:14:1e:14:6c:fe:
        d1:ce:aa:69:7a:6b:9f:a2:64:a2:7e:fb:b4:9e:db:01:
        b5:98:50:67:8b:f3:0f:c0:1e:72:0e:a5:71:77:cf:bf:
        1c:da:d8:7d:99:26:10:81:04:d6:18:0f:09:ee:d1:3c:
        bd:d2:bb:74:85:1f:aa:21:2a:24:1e:b4:2d:0c:14:64:
        cf:3b:b6:49:8e:5b:54:34:6d:f9:bd:00:21:9e:78:bd:
        19:da:e4:b2:9c:c3:5d:7e:9e:f7:05:f6:af:30:6f:30:
        69:13:86:c7:12:44:f3:a9:dc:05:7d:0b:e5:3a:9b:51:
        09:c5:32:57:31:33:ec:3c:aa:13:ae:1c:ac:22:8a:1b:
        70:da:b7:1b:b9:b8:94:14:9d:e6:9a:a8:12:28:98:5e:
        c3:ae:66:7a:21:46:43:50:bc:70:a1:cb:4a:96:4f:d4:
        d8:6e:0b:e7:86:f1:85:b4:d7:22:90:aa:3c:da:e9:29
    Fingerprint (SHA-256):
        33:C2:99:7A:A2:FB:45:AD:3A:3D:4D:B0:90:AE:18:F3:4D:C7:2B:A7:5C:CC:90:9D:9B:66:33:54:8A:8E:AA:A2
    Fingerprint (SHA1):
        F5:7C:2C:DC:2B:84:A6:02:1E:AA:C7:A8:CA:C4:E6:FE:CC:19:89:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3589: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153096 (0x1dee3f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:56:8d:ac:ff:1e:47:ca:93:26:1e:2e:c5:9b:e9:4b:
                    21:23:69:c9:3e:30:1a:23:54:67:79:d6:fa:8c:d6:83:
                    e0:e2:8c:44:f9:f8:ce:27:d2:5d:8c:72:8f:49:e6:fe:
                    8e:4e:6c:b7:11:a5:44:eb:a9:9c:a7:82:68:d9:a6:56:
                    ec:21:cd:d3:00:1e:41:b8:f3:21:79:ea:1a:b1:30:a1:
                    0a:e5:75:18:5f:48:d0:56:19:8e:de:79:ac:55:2a:bd:
                    b6:6e:cb:36:5f:96:f3:3a:02:d3:4d:87:7a:40:be:ca:
                    de:82:30:89:75:25:88:7b:89:88:e3:01:02:80:b6:db:
                    9f:21:39:fc:4a:b4:f8:f3:2f:3f:6b:54:ee:ea:16:6d:
                    f9:94:05:d3:59:2f:50:db:71:7f:76:75:60:75:ce:4f:
                    b5:1b:95:6c:aa:32:7b:79:fb:01:89:2d:14:54:d9:88:
                    f0:9d:ee:70:6d:3f:b2:5f:d1:13:d4:46:76:69:d0:81:
                    1e:fb:e7:c9:ce:71:8e:e7:b9:6d:43:b8:f6:2d:ab:2a:
                    fc:8d:71:ab:5b:60:20:da:0b:3c:0b:f2:f1:1b:07:89:
                    95:1c:62:f8:71:e2:e9:7f:5b:b5:c4:cc:93:ce:5d:07:
                    f6:ad:f9:f4:71:64:b9:71:5f:8a:24:31:d6:91:05:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:06:fe:77:be:e3:ec:2b:4a:68:c5:9b:4a:ee:8a:b1:
        5b:49:49:2a:1c:b2:8b:cf:9b:8a:6d:72:8a:bd:c2:26:
        30:b7:79:8c:fb:ac:5e:54:7e:64:c7:ad:ec:5a:60:8d:
        c8:64:02:75:15:e8:f3:f6:64:58:62:bd:ae:a6:40:f0:
        ad:b5:81:d4:b0:9c:61:1a:22:8f:3a:14:1e:14:6c:fe:
        d1:ce:aa:69:7a:6b:9f:a2:64:a2:7e:fb:b4:9e:db:01:
        b5:98:50:67:8b:f3:0f:c0:1e:72:0e:a5:71:77:cf:bf:
        1c:da:d8:7d:99:26:10:81:04:d6:18:0f:09:ee:d1:3c:
        bd:d2:bb:74:85:1f:aa:21:2a:24:1e:b4:2d:0c:14:64:
        cf:3b:b6:49:8e:5b:54:34:6d:f9:bd:00:21:9e:78:bd:
        19:da:e4:b2:9c:c3:5d:7e:9e:f7:05:f6:af:30:6f:30:
        69:13:86:c7:12:44:f3:a9:dc:05:7d:0b:e5:3a:9b:51:
        09:c5:32:57:31:33:ec:3c:aa:13:ae:1c:ac:22:8a:1b:
        70:da:b7:1b:b9:b8:94:14:9d:e6:9a:a8:12:28:98:5e:
        c3:ae:66:7a:21:46:43:50:bc:70:a1:cb:4a:96:4f:d4:
        d8:6e:0b:e7:86:f1:85:b4:d7:22:90:aa:3c:da:e9:29
    Fingerprint (SHA-256):
        33:C2:99:7A:A2:FB:45:AD:3A:3D:4D:B0:90:AE:18:F3:4D:C7:2B:A7:5C:CC:90:9D:9B:66:33:54:8A:8E:AA:A2
    Fingerprint (SHA1):
        F5:7C:2C:DC:2B:84:A6:02:1E:AA:C7:A8:CA:C4:E6:FE:CC:19:89:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3590: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153097 (0x1dee3f89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:e4:50:40:79:e4:70:d9:3a:d9:36:ff:4c:31:54:e6:
                    cd:1e:ab:84:1c:ab:7f:41:ec:dc:cd:ee:08:a2:f0:a7:
                    8d:3a:51:f2:34:f2:9e:ad:af:a1:a3:7f:85:54:8d:6f:
                    4b:4c:8a:69:bf:c7:38:88:44:7a:33:7e:56:43:d0:68:
                    49:b0:fe:0c:87:6e:b3:9b:30:de:8b:01:1c:42:65:96:
                    d6:c7:15:8b:0f:e1:32:c6:2e:22:00:60:65:2a:55:81:
                    4c:11:a7:52:92:35:d6:ce:d0:1b:7c:1d:be:8b:b1:ec:
                    7e:af:1d:cf:e1:04:20:d0:12:2e:20:36:10:79:92:0d:
                    65:7e:56:33:38:b5:6c:6b:2b:4e:3f:34:76:44:94:19:
                    36:6b:3e:00:26:15:51:6d:14:c1:b8:ec:44:98:c4:e6:
                    8d:c2:4c:06:14:f3:b5:5d:2d:14:8b:3c:bf:a6:c3:dc:
                    c1:a6:67:6b:8b:16:2e:09:f1:b2:6a:08:63:96:2f:93:
                    fe:71:db:f8:19:0b:8c:9e:74:77:cc:65:ad:37:8d:fd:
                    21:ae:a6:31:fb:d2:cf:b8:8d:46:cf:3f:b4:65:33:ab:
                    38:b5:f5:6b:23:ec:c6:3d:a4:94:01:e6:f4:7d:93:96:
                    72:65:f6:1e:f4:11:b0:69:d9:03:5a:93:8c:a1:59:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1e:78:24:fd:22:ac:75:b8:1b:e2:e7:3f:03:6a:d3:
        ed:99:79:09:08:16:08:1e:f2:3e:dd:f2:3e:7b:26:88:
        13:1b:6a:c3:44:32:40:30:e1:8c:f3:85:54:2c:20:28:
        90:81:f2:c4:d9:88:a1:0d:43:fc:ea:1f:f2:50:3d:7b:
        1b:7f:15:88:f7:dc:e5:d2:55:82:67:ff:0d:ec:f2:36:
        11:ae:0f:34:57:be:e3:e5:00:c9:2a:69:36:b0:90:ee:
        49:6d:72:9a:11:5e:4f:3c:bf:db:e2:e5:bb:f9:e9:27:
        4c:ee:64:99:99:ee:e5:68:c7:23:48:15:6d:b9:c6:13:
        e6:ce:f8:23:e5:2c:50:d7:44:4a:4a:a6:32:a8:c5:a1:
        6f:78:7b:61:12:93:e6:20:6d:b5:b9:db:31:1c:6f:ee:
        62:05:eb:54:5e:65:66:0b:26:5d:9f:39:74:ea:30:3c:
        f6:41:4d:be:26:70:d6:a3:20:53:4e:da:31:8b:39:68:
        50:99:d9:44:27:84:26:f9:c3:a4:17:f8:6a:b0:d7:88:
        bc:21:e2:09:d9:41:98:e3:e4:8c:ed:e7:5f:ef:0e:46:
        7f:61:15:32:52:42:eb:e4:90:d5:cf:33:01:9b:53:a5:
        b0:9a:64:06:29:a6:f4:de:7a:ba:23:8b:23:a6:78:38
    Fingerprint (SHA-256):
        40:DA:BE:ED:B5:79:DE:FA:1C:E6:E0:53:35:E6:27:7C:A4:9E:39:D1:82:C2:53:36:8C:5D:C9:89:A5:61:53:27
    Fingerprint (SHA1):
        1D:1D:0C:3F:70:14:E0:BC:A1:EC:C4:8B:73:0B:4A:54:7B:5F:14:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3591: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153097 (0x1dee3f89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:38 2017
            Not After : Mon May 02 15:30:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:e4:50:40:79:e4:70:d9:3a:d9:36:ff:4c:31:54:e6:
                    cd:1e:ab:84:1c:ab:7f:41:ec:dc:cd:ee:08:a2:f0:a7:
                    8d:3a:51:f2:34:f2:9e:ad:af:a1:a3:7f:85:54:8d:6f:
                    4b:4c:8a:69:bf:c7:38:88:44:7a:33:7e:56:43:d0:68:
                    49:b0:fe:0c:87:6e:b3:9b:30:de:8b:01:1c:42:65:96:
                    d6:c7:15:8b:0f:e1:32:c6:2e:22:00:60:65:2a:55:81:
                    4c:11:a7:52:92:35:d6:ce:d0:1b:7c:1d:be:8b:b1:ec:
                    7e:af:1d:cf:e1:04:20:d0:12:2e:20:36:10:79:92:0d:
                    65:7e:56:33:38:b5:6c:6b:2b:4e:3f:34:76:44:94:19:
                    36:6b:3e:00:26:15:51:6d:14:c1:b8:ec:44:98:c4:e6:
                    8d:c2:4c:06:14:f3:b5:5d:2d:14:8b:3c:bf:a6:c3:dc:
                    c1:a6:67:6b:8b:16:2e:09:f1:b2:6a:08:63:96:2f:93:
                    fe:71:db:f8:19:0b:8c:9e:74:77:cc:65:ad:37:8d:fd:
                    21:ae:a6:31:fb:d2:cf:b8:8d:46:cf:3f:b4:65:33:ab:
                    38:b5:f5:6b:23:ec:c6:3d:a4:94:01:e6:f4:7d:93:96:
                    72:65:f6:1e:f4:11:b0:69:d9:03:5a:93:8c:a1:59:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1e:78:24:fd:22:ac:75:b8:1b:e2:e7:3f:03:6a:d3:
        ed:99:79:09:08:16:08:1e:f2:3e:dd:f2:3e:7b:26:88:
        13:1b:6a:c3:44:32:40:30:e1:8c:f3:85:54:2c:20:28:
        90:81:f2:c4:d9:88:a1:0d:43:fc:ea:1f:f2:50:3d:7b:
        1b:7f:15:88:f7:dc:e5:d2:55:82:67:ff:0d:ec:f2:36:
        11:ae:0f:34:57:be:e3:e5:00:c9:2a:69:36:b0:90:ee:
        49:6d:72:9a:11:5e:4f:3c:bf:db:e2:e5:bb:f9:e9:27:
        4c:ee:64:99:99:ee:e5:68:c7:23:48:15:6d:b9:c6:13:
        e6:ce:f8:23:e5:2c:50:d7:44:4a:4a:a6:32:a8:c5:a1:
        6f:78:7b:61:12:93:e6:20:6d:b5:b9:db:31:1c:6f:ee:
        62:05:eb:54:5e:65:66:0b:26:5d:9f:39:74:ea:30:3c:
        f6:41:4d:be:26:70:d6:a3:20:53:4e:da:31:8b:39:68:
        50:99:d9:44:27:84:26:f9:c3:a4:17:f8:6a:b0:d7:88:
        bc:21:e2:09:d9:41:98:e3:e4:8c:ed:e7:5f:ef:0e:46:
        7f:61:15:32:52:42:eb:e4:90:d5:cf:33:01:9b:53:a5:
        b0:9a:64:06:29:a6:f4:de:7a:ba:23:8b:23:a6:78:38
    Fingerprint (SHA-256):
        40:DA:BE:ED:B5:79:DE:FA:1C:E6:E0:53:35:E6:27:7C:A4:9E:39:D1:82:C2:53:36:8C:5D:C9:89:A5:61:53:27
    Fingerprint (SHA1):
        1D:1D:0C:3F:70:14:E0:BC:A1:EC:C4:8B:73:0B:4A:54:7B:5F:14:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3592: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3593: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153100 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3594: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3595: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3596: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3597: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153101   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3598: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3599: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3600: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3601: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153102   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3602: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3603: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3604: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3605: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502153103   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3606: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3607: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3608: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3609: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153104   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3610: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3611: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3612: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3613: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153105   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3614: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3615: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #3616: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3617: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502153106   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3618: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3619: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3620: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #3621: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #3622: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3623: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #3624: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153100 (0x1dee3f8c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:40 2017
            Not After : Mon May 02 15:30:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:ef:3b:d4:4b:8e:18:1f:f6:75:87:56:b1:2e:0a:98:
                    80:2d:dd:2c:a9:46:00:be:2f:a5:46:a0:79:95:46:a9:
                    55:55:ca:03:ac:8d:6d:d4:91:d4:6c:09:8f:94:88:13:
                    74:70:3e:6a:6c:78:fc:d8:e7:54:78:f0:7e:bb:cd:4b:
                    67:e3:05:31:05:8a:5e:db:14:4d:65:5f:c4:26:08:ed:
                    8f:31:15:4f:78:46:1d:c7:1e:3e:95:df:c7:1b:91:7c:
                    7a:e0:24:38:37:27:ef:4d:a0:59:45:9f:b9:07:9e:68:
                    8e:39:94:e6:a7:f9:99:8c:79:2a:6b:22:9f:36:a8:7e:
                    f1:17:e0:1b:bb:4d:7f:0a:49:cf:a8:b8:9e:a7:b1:c4:
                    fe:bf:cd:50:ce:45:a8:da:55:79:86:2e:f6:b9:03:ca:
                    d1:44:d5:5c:19:76:ef:8a:6c:67:50:7e:0f:bd:8e:c2:
                    fe:77:c7:85:b3:2a:83:53:f3:9b:2b:c1:b3:e2:85:c6:
                    13:5d:45:c6:ed:41:21:76:77:ad:8e:31:ac:43:71:5e:
                    30:22:7e:d4:cf:5b:f2:1a:e2:f1:18:0f:ad:9a:35:ea:
                    9d:2c:e2:40:d3:a5:3c:e3:85:81:b8:f1:84:34:38:ec:
                    51:ab:1c:8b:34:cd:e0:e0:c9:68:2c:6b:26:1c:cf:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:ed:86:d4:bc:a1:18:e3:23:57:7e:86:d2:b5:e3:60:
        db:62:c3:42:89:ba:76:88:a9:b2:49:49:e9:d4:9b:39:
        74:9a:af:56:47:06:40:fb:22:89:cc:39:54:c0:45:47:
        d3:94:d0:e0:19:71:40:3b:db:1e:1e:99:cf:30:6f:99:
        09:f2:fc:47:21:63:a9:62:c1:e4:53:04:ca:07:a9:4b:
        04:03:7a:da:8f:78:50:fc:21:c4:1e:f5:b7:be:0c:b1:
        6e:0c:32:8c:56:c5:80:01:21:dc:fb:4a:6c:fa:51:37:
        22:c0:e5:63:9d:6b:98:ad:ba:61:f8:1b:e6:fe:06:44:
        b1:01:39:2c:90:bc:96:e0:a3:7b:c1:93:b8:a6:ab:98:
        21:87:16:2c:ce:8d:ba:c6:cd:47:68:90:1e:a8:50:8c:
        0a:70:a9:77:cf:a5:6d:72:87:08:ac:3e:e1:25:31:12:
        b6:33:0d:68:01:41:4b:53:79:90:e7:ff:94:e6:ba:71:
        29:64:8a:ca:d1:e1:2a:11:fb:a5:e0:49:9c:fe:65:01:
        e5:59:ba:08:22:f9:7f:98:d7:6e:fd:6b:a6:ff:6e:e7:
        88:b4:f0:6a:3c:f6:2a:1d:c1:5a:9e:d0:b1:61:eb:39:
        88:a9:6a:7b:88:93:1f:bc:54:96:80:69:39:30:7b:ec
    Fingerprint (SHA-256):
        12:E2:A2:E4:30:28:F4:EB:39:86:0E:32:DF:3D:D3:0A:15:44:9D:83:C9:D7:A8:74:88:FA:38:48:A1:13:67:A8
    Fingerprint (SHA1):
        B6:CA:B1:55:CB:39:F9:73:F8:3B:51:60:4D:9F:0C:50:2C:AD:E6:8C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3625: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3626: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3627: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3628: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153100 (0x1dee3f8c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:40 2017
            Not After : Mon May 02 15:30:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:ef:3b:d4:4b:8e:18:1f:f6:75:87:56:b1:2e:0a:98:
                    80:2d:dd:2c:a9:46:00:be:2f:a5:46:a0:79:95:46:a9:
                    55:55:ca:03:ac:8d:6d:d4:91:d4:6c:09:8f:94:88:13:
                    74:70:3e:6a:6c:78:fc:d8:e7:54:78:f0:7e:bb:cd:4b:
                    67:e3:05:31:05:8a:5e:db:14:4d:65:5f:c4:26:08:ed:
                    8f:31:15:4f:78:46:1d:c7:1e:3e:95:df:c7:1b:91:7c:
                    7a:e0:24:38:37:27:ef:4d:a0:59:45:9f:b9:07:9e:68:
                    8e:39:94:e6:a7:f9:99:8c:79:2a:6b:22:9f:36:a8:7e:
                    f1:17:e0:1b:bb:4d:7f:0a:49:cf:a8:b8:9e:a7:b1:c4:
                    fe:bf:cd:50:ce:45:a8:da:55:79:86:2e:f6:b9:03:ca:
                    d1:44:d5:5c:19:76:ef:8a:6c:67:50:7e:0f:bd:8e:c2:
                    fe:77:c7:85:b3:2a:83:53:f3:9b:2b:c1:b3:e2:85:c6:
                    13:5d:45:c6:ed:41:21:76:77:ad:8e:31:ac:43:71:5e:
                    30:22:7e:d4:cf:5b:f2:1a:e2:f1:18:0f:ad:9a:35:ea:
                    9d:2c:e2:40:d3:a5:3c:e3:85:81:b8:f1:84:34:38:ec:
                    51:ab:1c:8b:34:cd:e0:e0:c9:68:2c:6b:26:1c:cf:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:ed:86:d4:bc:a1:18:e3:23:57:7e:86:d2:b5:e3:60:
        db:62:c3:42:89:ba:76:88:a9:b2:49:49:e9:d4:9b:39:
        74:9a:af:56:47:06:40:fb:22:89:cc:39:54:c0:45:47:
        d3:94:d0:e0:19:71:40:3b:db:1e:1e:99:cf:30:6f:99:
        09:f2:fc:47:21:63:a9:62:c1:e4:53:04:ca:07:a9:4b:
        04:03:7a:da:8f:78:50:fc:21:c4:1e:f5:b7:be:0c:b1:
        6e:0c:32:8c:56:c5:80:01:21:dc:fb:4a:6c:fa:51:37:
        22:c0:e5:63:9d:6b:98:ad:ba:61:f8:1b:e6:fe:06:44:
        b1:01:39:2c:90:bc:96:e0:a3:7b:c1:93:b8:a6:ab:98:
        21:87:16:2c:ce:8d:ba:c6:cd:47:68:90:1e:a8:50:8c:
        0a:70:a9:77:cf:a5:6d:72:87:08:ac:3e:e1:25:31:12:
        b6:33:0d:68:01:41:4b:53:79:90:e7:ff:94:e6:ba:71:
        29:64:8a:ca:d1:e1:2a:11:fb:a5:e0:49:9c:fe:65:01:
        e5:59:ba:08:22:f9:7f:98:d7:6e:fd:6b:a6:ff:6e:e7:
        88:b4:f0:6a:3c:f6:2a:1d:c1:5a:9e:d0:b1:61:eb:39:
        88:a9:6a:7b:88:93:1f:bc:54:96:80:69:39:30:7b:ec
    Fingerprint (SHA-256):
        12:E2:A2:E4:30:28:F4:EB:39:86:0E:32:DF:3D:D3:0A:15:44:9D:83:C9:D7:A8:74:88:FA:38:48:A1:13:67:A8
    Fingerprint (SHA1):
        B6:CA:B1:55:CB:39:F9:73:F8:3B:51:60:4D:9F:0C:50:2C:AD:E6:8C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3629: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3630: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3631: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153107 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3632: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3633: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3634: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3635: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153108   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3636: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3637: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #3638: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3639: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502153109   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3640: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3641: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #3642: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3643: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502153110   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3644: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3645: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3646: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3647: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502153111   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3648: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3649: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #3650: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3651: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502153112   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3652: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3653: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #3654: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3655: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502153113   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3656: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3657: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3658: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3659: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502153114   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3660: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3661: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #3662: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3663: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502153115   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3664: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3665: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #3666: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3667: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502153116   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3668: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3669: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3670: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3671: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502153117   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3672: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3673: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #3674: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3675: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502153118   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3676: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3677: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #3678: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3679: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502153119   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3680: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3681: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3682: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3683: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502153120   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3684: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3685: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #3686: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3687: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502153121   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3688: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3689: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #3690: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3691: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502153122   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3692: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3693: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #3694: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3695: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502153123   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3696: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3697: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #3698: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3699: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502153124   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3700: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3701: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #3702: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3703: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502153125   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3704: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3705: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #3706: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3707: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502153126   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3708: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3709: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #3710: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3711: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502153127   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3712: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3713: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #3714: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3715: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502153128   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3716: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3717: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #3718: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3719: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502153129   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3720: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3721: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #3722: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3723: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502153130   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3724: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3725: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #3726: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3727: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502153131   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3728: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3729: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #3730: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3731: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502153132   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3732: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3733: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #3734: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3735: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502153133   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3736: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3737: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3738: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3739: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502153134   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3740: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3741: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3742: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3743: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502153135   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3744: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3745: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3746: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3747: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502153136   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3748: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3749: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3750: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3751: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3752: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3753: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3754: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3755: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3756: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3757: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3758: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3759: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3760: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3761: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3762: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3763: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3764: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3765: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3766: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3767: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3768: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3769: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3770: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3771: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3772: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153107 (0x1dee3f93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:30:43 2017
            Not After : Mon May 02 15:30:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:39:59:41:12:4f:32:d6:61:6e:76:32:c0:67:4c:c9:
                    b6:8e:05:41:a4:b1:ec:f1:21:af:6d:7a:a5:3b:26:51:
                    5e:bd:a1:a3:b7:57:2d:c6:45:7b:bf:28:2d:71:52:57:
                    9a:65:71:83:50:87:e4:99:6a:46:8e:ad:a1:0b:80:19:
                    e0:39:57:45:5f:e0:62:91:60:15:44:fd:0a:62:3a:dd:
                    bc:72:e4:ee:84:e8:24:92:fc:94:55:c8:e7:08:c0:1c:
                    42:5a:e8:3c:b7:f3:40:2a:b3:67:74:ca:56:6f:07:03:
                    60:31:88:24:1e:f6:84:b5:65:61:56:e3:71:74:d5:00:
                    18:04:0c:5e:4c:3e:06:1b:6d:39:3e:a1:8c:80:a5:d0:
                    c1:20:18:28:83:59:bf:79:32:14:c6:98:2f:44:05:d5:
                    22:3e:33:c5:81:fa:a7:f0:ea:48:c2:4c:f7:57:41:f7:
                    fc:6d:d1:f3:08:cf:ac:4c:45:3c:47:d1:bb:f0:5b:bc:
                    c7:47:1b:30:7f:3f:58:a6:c2:0b:8a:a4:3b:e5:be:d8:
                    7a:fa:d5:f4:f8:d1:cc:ea:a9:42:20:a2:26:48:cf:9f:
                    e2:d9:93:f8:dc:0a:0c:13:7f:8a:2e:dc:12:bd:ae:84:
                    b8:74:b8:71:e7:ff:4c:46:4b:f6:5c:61:0f:6a:1f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:07:23:95:b7:fd:8b:24:8a:37:a4:04:98:39:90:73:
        5b:ad:21:61:54:2f:07:ec:8c:90:35:17:d5:56:e4:bc:
        15:ff:14:f2:2b:4a:23:99:18:50:7c:a9:80:03:b7:f8:
        75:b0:9b:b4:5e:40:eb:68:1b:2e:40:48:bf:56:98:58:
        a8:ae:9c:6b:f4:22:86:a7:ef:e7:ed:32:2d:f4:ec:c4:
        7e:f8:93:e2:19:f2:2b:6e:59:60:a8:3f:6b:5a:87:6a:
        a0:39:94:22:78:00:86:aa:50:47:b0:32:0b:22:c5:dd:
        65:ad:e8:39:ee:fd:5c:01:63:e5:d3:9e:ae:99:7d:78:
        f2:95:d3:26:23:6e:7f:c9:c5:1d:a6:12:7c:89:17:f4:
        1e:ff:91:86:71:b3:0a:a5:d9:97:0b:2a:63:77:f9:07:
        e6:6f:18:1e:1a:8e:93:cd:27:07:d4:61:a0:3b:18:6e:
        a3:dd:18:f0:b7:57:74:23:d4:57:2f:62:a7:c7:ff:97:
        79:2f:01:15:b9:da:1a:a4:4c:62:07:f8:de:d6:8f:48:
        b2:46:20:35:59:5d:bd:48:72:54:96:57:01:28:84:d3:
        36:6c:fd:b7:87:3f:ad:d9:12:1d:f3:68:17:cc:d4:4c:
        8a:3b:a4:89:85:c1:c0:76:5f:63:eb:d4:db:d7:06:a2
    Fingerprint (SHA-256):
        66:E1:7C:1D:E7:B2:CC:A5:B2:95:78:37:84:1F:4B:29:17:72:F6:94:BF:3E:CB:6C:3F:FE:48:82:18:78:6A:90
    Fingerprint (SHA1):
        8C:69:E3:8B:E7:D0:DD:A8:98:13:5E:26:6A:97:36:77:CD:07:28:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3773: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3774: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3775: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153137 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3776: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3777: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3778: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3779: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502153138   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3780: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3781: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3782: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3783: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502153139   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3784: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3785: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3786: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3787: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502153140   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3788: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3789: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3790: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3791: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502153141   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3792: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3793: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3794: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3795: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502153142   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3796: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3797: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3798: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3799: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502153143   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3800: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3801: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3802: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153137 (0x1dee3fb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:52 2017
            Not After : Mon May 02 15:30:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:bd:5f:e4:eb:f0:9a:1c:11:3d:0c:07:b9:72:86:fa:
                    4c:36:59:c9:53:62:11:43:31:21:1c:b1:e4:0c:09:28:
                    3a:f7:27:51:ed:56:a6:fb:e4:cf:6d:17:90:2a:c2:39:
                    a8:26:9a:fe:ad:ec:d8:5a:ec:38:15:15:b2:e0:90:2d:
                    89:6c:31:8a:e9:27:ae:39:a4:b5:38:38:ff:bf:cf:b9:
                    49:c5:6b:1b:5a:95:96:f2:4c:64:10:da:a1:da:d4:c9:
                    1c:16:51:20:c7:57:8e:c9:d0:fb:82:d9:aa:ba:9a:be:
                    d3:40:81:4b:f9:b8:2c:d4:4f:f5:d9:b4:7a:1f:ec:48:
                    85:e5:00:5c:6f:77:1d:6e:f0:3a:0f:7e:f1:e2:56:9f:
                    53:5b:2c:72:d2:38:79:36:0a:79:d6:c5:df:20:04:0f:
                    35:f0:75:c2:ca:17:5e:9b:76:21:1f:9b:bd:69:c9:e2:
                    ac:4a:98:bf:eb:5d:65:63:fb:b6:c0:23:d6:cf:93:d7:
                    85:47:89:75:c8:b2:df:c5:71:06:fd:f8:81:91:12:3a:
                    77:82:09:ff:8f:31:bf:34:40:c2:f7:a0:20:7c:98:52:
                    3f:75:73:c3:6b:cf:1d:8c:45:d5:5f:ad:95:f1:ae:a3:
                    98:47:4a:ae:49:a5:e1:69:f1:14:52:43:cd:fc:b2:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:27:1f:c0:c2:1d:91:9e:ae:92:87:b9:f6:01:97:fc:
        ca:23:81:46:7b:5c:39:31:60:d9:eb:00:63:37:e8:1e:
        c7:23:a4:3c:2c:4b:24:8d:a6:83:1d:cf:53:5c:5d:97:
        48:ee:69:1a:63:b1:a9:89:fb:53:c8:09:e7:7a:cf:c2:
        d8:cb:86:13:c5:d6:68:b8:46:32:d9:f2:90:8f:e7:13:
        7b:74:c3:c2:64:8a:27:9d:e0:3c:b2:36:de:aa:46:97:
        73:2b:6e:a6:11:f2:e6:88:ae:b6:7f:e6:ed:fb:79:55:
        11:51:88:ea:5c:17:09:61:82:e6:89:ad:c6:68:e0:4b:
        2f:71:9c:9b:df:a3:b7:9b:20:04:58:e7:55:56:37:4b:
        6d:b5:4b:42:25:bb:10:94:6a:fd:9a:93:bd:2d:02:58:
        70:cf:6e:96:88:09:71:ae:01:cd:e2:2f:91:b8:47:71:
        ae:d4:5d:05:e9:51:2f:7d:f2:cd:b2:3c:7a:8d:51:92:
        34:14:59:38:ec:93:e2:47:a9:a0:55:5d:05:ca:71:31:
        b5:32:fd:c0:53:1a:71:52:80:ad:e6:1a:e1:0d:cb:22:
        b3:72:3c:a8:e2:7d:c1:a1:75:ac:d0:cc:8e:28:58:4b:
        aa:4f:d5:18:76:77:51:e6:d0:97:d6:5c:df:fc:dc:a5
    Fingerprint (SHA-256):
        E1:A8:90:41:F4:8E:00:ED:E6:FB:2E:A9:E4:83:C3:CE:9B:E5:69:00:B4:0E:36:33:EF:D0:A1:9C:C7:17:98:13
    Fingerprint (SHA1):
        D1:8E:AB:06:03:3B:91:45:D7:CE:B3:51:52:CA:96:AE:1C:59:1B:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3803: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3804: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3805: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3806: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153137 (0x1dee3fb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:52 2017
            Not After : Mon May 02 15:30:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:bd:5f:e4:eb:f0:9a:1c:11:3d:0c:07:b9:72:86:fa:
                    4c:36:59:c9:53:62:11:43:31:21:1c:b1:e4:0c:09:28:
                    3a:f7:27:51:ed:56:a6:fb:e4:cf:6d:17:90:2a:c2:39:
                    a8:26:9a:fe:ad:ec:d8:5a:ec:38:15:15:b2:e0:90:2d:
                    89:6c:31:8a:e9:27:ae:39:a4:b5:38:38:ff:bf:cf:b9:
                    49:c5:6b:1b:5a:95:96:f2:4c:64:10:da:a1:da:d4:c9:
                    1c:16:51:20:c7:57:8e:c9:d0:fb:82:d9:aa:ba:9a:be:
                    d3:40:81:4b:f9:b8:2c:d4:4f:f5:d9:b4:7a:1f:ec:48:
                    85:e5:00:5c:6f:77:1d:6e:f0:3a:0f:7e:f1:e2:56:9f:
                    53:5b:2c:72:d2:38:79:36:0a:79:d6:c5:df:20:04:0f:
                    35:f0:75:c2:ca:17:5e:9b:76:21:1f:9b:bd:69:c9:e2:
                    ac:4a:98:bf:eb:5d:65:63:fb:b6:c0:23:d6:cf:93:d7:
                    85:47:89:75:c8:b2:df:c5:71:06:fd:f8:81:91:12:3a:
                    77:82:09:ff:8f:31:bf:34:40:c2:f7:a0:20:7c:98:52:
                    3f:75:73:c3:6b:cf:1d:8c:45:d5:5f:ad:95:f1:ae:a3:
                    98:47:4a:ae:49:a5:e1:69:f1:14:52:43:cd:fc:b2:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:27:1f:c0:c2:1d:91:9e:ae:92:87:b9:f6:01:97:fc:
        ca:23:81:46:7b:5c:39:31:60:d9:eb:00:63:37:e8:1e:
        c7:23:a4:3c:2c:4b:24:8d:a6:83:1d:cf:53:5c:5d:97:
        48:ee:69:1a:63:b1:a9:89:fb:53:c8:09:e7:7a:cf:c2:
        d8:cb:86:13:c5:d6:68:b8:46:32:d9:f2:90:8f:e7:13:
        7b:74:c3:c2:64:8a:27:9d:e0:3c:b2:36:de:aa:46:97:
        73:2b:6e:a6:11:f2:e6:88:ae:b6:7f:e6:ed:fb:79:55:
        11:51:88:ea:5c:17:09:61:82:e6:89:ad:c6:68:e0:4b:
        2f:71:9c:9b:df:a3:b7:9b:20:04:58:e7:55:56:37:4b:
        6d:b5:4b:42:25:bb:10:94:6a:fd:9a:93:bd:2d:02:58:
        70:cf:6e:96:88:09:71:ae:01:cd:e2:2f:91:b8:47:71:
        ae:d4:5d:05:e9:51:2f:7d:f2:cd:b2:3c:7a:8d:51:92:
        34:14:59:38:ec:93:e2:47:a9:a0:55:5d:05:ca:71:31:
        b5:32:fd:c0:53:1a:71:52:80:ad:e6:1a:e1:0d:cb:22:
        b3:72:3c:a8:e2:7d:c1:a1:75:ac:d0:cc:8e:28:58:4b:
        aa:4f:d5:18:76:77:51:e6:d0:97:d6:5c:df:fc:dc:a5
    Fingerprint (SHA-256):
        E1:A8:90:41:F4:8E:00:ED:E6:FB:2E:A9:E4:83:C3:CE:9B:E5:69:00:B4:0E:36:33:EF:D0:A1:9C:C7:17:98:13
    Fingerprint (SHA1):
        D1:8E:AB:06:03:3B:91:45:D7:CE:B3:51:52:CA:96:AE:1C:59:1B:AA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3807: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3808: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3809: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3810: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153144 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3811: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3812: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3813: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3814: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153145   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3815: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3816: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3817: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3818: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153146   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3819: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3820: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3821: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3822: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153147   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3823: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3824: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3825: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3826: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3827: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3828: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153144 (0x1dee3fb8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:54 2017
            Not After : Mon May 02 15:30:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:9e:ef:3b:a0:bc:64:0d:1b:a6:54:06:74:5d:2e:a9:
                    69:d2:1e:8e:ad:02:69:15:d8:9a:12:73:61:36:91:58:
                    35:2f:24:e3:76:e8:90:af:05:90:98:51:88:2c:75:cc:
                    21:df:f7:4e:12:93:ed:8e:66:a4:2f:50:22:c6:45:90:
                    83:13:b7:ca:3d:b8:15:62:a1:98:0b:4c:58:d6:34:8b:
                    d7:63:b4:fe:00:09:4f:0b:2b:cd:39:30:c9:68:61:2f:
                    3d:74:f1:46:f8:fc:f2:ca:55:f4:65:74:0b:db:bf:8d:
                    3c:c6:ee:ad:5a:ac:7b:2e:54:84:c1:40:85:52:43:a3:
                    12:9f:d3:99:1d:f2:b4:04:90:66:8d:e3:86:e9:2a:d3:
                    26:36:5c:c4:b9:16:48:1f:9b:fc:8f:47:87:66:1f:e8:
                    ca:cf:e4:8a:c3:0f:54:13:af:84:89:95:1f:c2:11:b9:
                    b7:01:1a:12:25:8f:78:46:d3:8e:6a:39:3d:0f:6f:b8:
                    81:71:69:f8:9a:ac:cc:51:b1:6a:bb:87:0d:99:0b:b4:
                    ed:e7:f2:78:9d:77:2b:19:35:3b:9e:9d:04:e4:34:e7:
                    91:27:4c:dd:dd:3f:a6:5b:ed:92:14:84:ca:7e:a0:19:
                    ed:bb:3d:61:3b:55:7c:6f:33:58:d2:d2:d1:85:8e:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:1d:e3:c8:26:3a:0d:6c:2e:25:21:10:b1:b9:bc:1a:
        7c:a6:54:26:07:68:c0:c3:ad:8c:eb:bd:9a:41:d6:c0:
        f7:eb:db:b9:2b:e0:44:c1:6f:a0:9e:0e:6b:6f:9c:8a:
        9a:dd:67:ba:bc:89:86:54:a0:3b:c3:d4:86:e2:19:5a:
        b7:b1:3f:0f:a7:ce:6d:0f:a3:50:94:a0:5c:dc:76:40:
        6b:31:59:e8:1d:2a:d6:4f:5a:bf:5e:5f:df:f1:28:1d:
        cc:06:65:93:05:ff:5a:b2:7c:41:f5:00:e1:5b:3c:db:
        b4:86:0a:44:c1:b8:99:ae:96:74:f6:c7:72:ed:87:0e:
        22:10:35:f1:d8:04:14:15:0b:19:e5:46:a0:6d:e5:6c:
        21:20:6d:b4:76:22:21:71:f1:92:8c:1d:d0:3d:69:d4:
        8c:b2:7e:7f:92:3e:7f:ad:1b:86:f1:fd:76:37:2b:18:
        5c:82:bb:f0:88:01:35:9a:e4:93:76:8d:58:f5:0a:ad:
        09:fe:10:fb:d5:96:10:e2:5c:9b:75:c3:9f:06:06:8e:
        82:f9:64:21:ac:30:f4:37:ea:e9:c0:1f:0f:47:bb:ed:
        67:ba:f2:e1:d9:c9:d1:5c:87:e0:92:d7:27:d5:37:ac:
        5a:30:0a:44:1e:25:b6:6e:06:e3:eb:4d:9d:d1:d4:f6
    Fingerprint (SHA-256):
        F3:61:5E:C8:64:92:C8:74:CF:AB:26:D1:3A:5A:65:6F:4E:EC:8F:43:E1:47:7B:1F:B1:7E:2B:D3:47:DA:44:27
    Fingerprint (SHA1):
        55:CB:C9:23:C4:60:C7:F9:A3:3C:F0:D4:6E:7A:C9:C6:04:68:C1:FD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3829: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3830: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3831: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153145 (0x1dee3fb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:54 2017
            Not After : Mon May 02 15:30:54 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:3a:a8:6b:a5:88:65:fd:4a:ef:49:7b:3c:36:a2:8c:
                    60:af:06:c0:31:ec:1f:c0:44:53:44:c4:29:c1:2f:5f:
                    fa:19:ae:e7:6a:f0:0f:b8:c0:21:36:03:0b:d5:94:3a:
                    9f:0d:5f:c2:f4:08:fb:82:cc:74:47:34:90:79:1a:1b:
                    bc:1c:ea:fd:2e:35:22:51:c7:56:49:23:eb:a8:ce:b8:
                    e2:f8:f8:5b:54:02:82:67:5e:07:24:65:08:45:f5:b4:
                    98:6b:87:01:d6:4b:2c:75:32:0d:46:72:30:c6:ac:45:
                    e7:c1:3e:15:c6:1e:1b:b6:af:15:51:ef:6c:34:16:8f:
                    52:31:f2:ac:3b:9b:ca:19:d9:8d:d0:e7:fd:6b:a1:d6:
                    11:b2:07:49:e7:a5:5d:aa:a0:ae:c7:9c:40:73:bc:58:
                    d9:0c:f9:d3:ae:f5:0b:5b:c3:01:d7:a8:1b:29:8f:fd:
                    11:09:7b:24:8d:19:73:d4:99:6b:06:cb:f3:21:9a:66:
                    e4:3c:0a:1f:79:a4:a2:f3:28:9d:c2:8f:73:43:37:b8:
                    0b:9f:2e:b7:3a:b0:3d:7e:9b:20:07:2f:e7:d3:37:65:
                    73:cf:d1:86:fe:b5:5b:b9:c3:23:68:04:99:5f:11:52:
                    3f:6b:e2:8b:58:a1:12:88:2a:e0:bc:37:cd:84:14:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:bc:5d:25:a0:71:01:ec:64:72:f9:88:b8:7c:5a:72:
        68:6e:7b:25:00:e6:23:2a:d1:0c:a4:bf:0b:e5:a4:23:
        78:71:78:4c:4b:05:1e:bf:3e:bd:de:e6:b8:76:a6:e5:
        44:25:4b:fd:68:4f:24:c9:89:9b:f4:d9:9d:f0:b6:50:
        34:83:8d:be:ce:9f:b2:98:d9:8f:77:97:19:8b:a6:bf:
        ff:8e:8a:01:6a:7b:3b:bd:fd:2e:22:1c:f3:c6:0d:05:
        6d:26:ef:13:da:16:dc:0d:0d:75:d7:75:30:fe:d9:2a:
        c6:b8:87:55:74:ad:2e:8a:b8:79:72:bc:b7:9a:d0:6d:
        45:7e:4d:35:68:a1:25:c0:cf:9f:31:33:79:6f:ad:2d:
        c8:cf:65:5b:50:f3:db:58:8d:39:b9:d3:f5:6a:77:af:
        c2:03:65:8b:07:a2:00:17:95:35:e9:45:db:e3:24:19:
        9e:19:f2:0d:ac:1d:f6:b3:bf:49:81:15:4e:23:40:21:
        55:2b:fa:c2:bf:ee:e2:bb:4c:9e:fc:e8:7f:2d:57:14:
        16:16:5e:57:94:0e:bd:f4:1d:30:2c:e4:56:e7:d1:76:
        f8:ac:14:94:66:c1:1e:b0:a3:ff:5a:5f:18:f3:69:38:
        62:5d:4f:78:a1:ec:c9:46:33:f1:64:85:dc:1e:b7:b2
    Fingerprint (SHA-256):
        82:35:D2:0F:5B:F7:76:03:D7:F7:46:09:C8:79:A9:82:A5:88:28:86:40:4E:C6:DC:5A:73:F6:9B:9A:66:4B:DC
    Fingerprint (SHA1):
        A6:4D:62:14:1B:EB:FC:86:CC:AE:39:AE:19:D5:CD:A1:11:7F:F5:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3832: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3833: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153146 (0x1dee3fba)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:55 2017
            Not After : Mon May 02 15:30:55 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:9c:07:d5:69:9f:20:86:63:0b:68:f7:46:2b:1d:85:
                    02:3c:5a:23:97:ae:eb:c0:7c:99:37:dd:8b:b7:59:ae:
                    42:d3:8d:d2:d4:22:71:58:95:d6:15:d1:bb:51:4e:47:
                    26:67:d0:d6:48:0a:fd:e2:0c:b2:9d:e3:85:bd:88:5b:
                    dd:60:81:5c:8a:8a:7f:99:8a:4c:16:b3:bf:32:58:b4:
                    c8:ff:8f:02:93:d6:f7:c3:ac:4f:08:13:35:86:9a:3d:
                    ab:d7:ef:db:59:ab:5f:78:38:41:f5:32:d1:10:53:0e:
                    f6:30:29:ee:e8:a7:a9:8f:d5:f9:30:08:a2:a6:4a:76:
                    77:93:03:47:14:c3:21:1a:db:37:d1:e4:86:bb:c2:37:
                    01:d5:a9:ae:b6:88:26:e0:c1:7d:3c:be:70:3e:9c:b0:
                    e5:8b:98:30:f2:f6:f3:5c:8d:fc:66:eb:76:57:18:7f:
                    3f:1a:bf:5d:d9:56:9f:67:68:fe:61:b8:05:08:0f:e6:
                    fa:46:7e:7f:d1:6f:87:28:90:89:48:ef:4f:a9:42:74:
                    38:78:90:89:39:33:f9:76:e3:8f:fc:ce:9c:c7:64:50:
                    dd:2d:01:d5:41:67:49:04:a0:fa:7e:63:d9:76:fb:8c:
                    92:be:28:32:d7:a8:ee:0f:62:4a:4e:19:ae:f5:22:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:a4:4a:b9:4c:81:b6:85:99:97:fe:c2:6c:ce:5b:62:
        11:94:d9:eb:01:49:8a:6f:a0:40:b6:98:8e:eb:ed:25:
        5c:bb:bc:36:6f:6d:b0:32:99:a6:b9:7e:c0:c1:5b:47:
        05:9a:b7:cf:f1:59:48:24:ad:81:7a:1c:d8:50:0f:22:
        24:ea:53:01:f4:73:8d:b3:4e:c1:42:a7:bf:3f:1f:4f:
        0c:04:d8:a0:19:a0:98:85:fc:29:f5:b5:0b:50:3e:e6:
        b8:45:86:3b:33:32:d6:88:d6:a2:0c:3b:4a:db:d3:20:
        2e:53:73:92:e9:e7:d2:01:f0:d1:c1:5e:21:38:12:c8:
        07:90:65:4d:fe:4e:73:2c:48:54:65:cc:b3:e2:f2:d1:
        0c:8d:db:2e:bc:53:8f:43:c0:2d:a0:47:25:41:4e:79:
        c0:1d:e5:8e:96:25:f4:12:17:2e:f3:a4:7f:6a:b6:cc:
        1b:b7:c2:dc:8b:12:9a:a2:04:1b:81:c2:89:c3:9b:aa:
        7a:0c:d6:ed:60:96:33:62:55:9a:fc:48:37:db:59:9b:
        e1:2b:2f:00:68:4c:12:b1:ae:7a:67:a2:fd:c1:cf:39:
        fe:e5:cd:5f:b1:04:5f:22:7f:88:57:75:70:98:ae:06:
        8c:3f:7a:4e:d0:b4:11:17:ca:82:23:0d:36:b5:42:48
    Fingerprint (SHA-256):
        AB:B4:96:A9:0F:5F:6A:E7:4F:95:60:1E:28:8A:64:4D:18:30:3A:8E:AE:61:44:D6:CB:77:50:DB:F9:F3:A9:EA
    Fingerprint (SHA1):
        EB:4B:DF:EB:AC:C4:D4:E1:5F:50:7C:E7:32:7C:6F:3F:3D:FB:A8:EC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3834: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3835: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153148 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3836: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3837: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3838: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3839: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153149   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3840: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3841: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3842: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3843: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153150   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3844: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3845: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3846: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3847: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502153151   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3848: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3849: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3850: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3851: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502153152   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3852: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3853: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3854: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3855: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3856: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3857: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3858: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153148 (0x1dee3fbc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:55 2017
            Not After : Mon May 02 15:30:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:ac:fd:4e:94:fb:7e:86:94:1a:3d:42:ab:3b:4a:42:
                    50:31:63:82:d5:b2:b7:ac:aa:14:be:67:0a:d7:3f:31:
                    8d:bb:44:2c:5d:76:9d:a4:77:f9:60:ae:c4:94:ad:91:
                    d6:de:3b:74:5a:38:c9:5f:d1:31:94:8e:01:00:bb:e5:
                    09:ce:08:9a:af:d9:cb:b9:7c:b6:c6:f6:4a:77:e6:98:
                    d7:41:98:80:3f:fa:6d:05:dd:45:6f:1c:13:2d:09:17:
                    b8:fb:f2:e7:35:e5:f3:e6:44:8f:a5:9e:b8:51:5a:a5:
                    0f:86:e4:a1:19:0e:9a:e3:32:be:ba:49:d4:cf:43:86:
                    b6:0c:d1:d6:7c:7f:db:1b:ca:52:87:f7:93:c3:fb:40:
                    ce:ed:d4:43:0a:c5:9a:5a:e3:03:b9:1b:fc:6e:f7:89:
                    96:b6:0a:76:13:91:09:1a:fc:ea:fd:94:97:65:f5:3f:
                    27:bd:e1:38:57:5f:f4:ed:1b:87:17:c9:38:8d:24:68:
                    56:5d:2c:69:c8:fe:ff:81:e7:c5:8e:7b:87:4b:b5:8a:
                    cb:fd:5a:c4:cd:05:04:7d:fb:7d:84:3e:ab:ea:1a:c5:
                    85:d4:48:5f:22:bb:92:4f:2a:85:61:50:d9:98:fc:15:
                    25:3b:97:7a:f7:3a:57:65:af:d7:ee:b7:30:45:20:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:35:7d:c5:16:66:84:b6:2b:fd:b9:a7:a1:b5:a0:a2:
        98:b8:62:ec:33:b0:4e:fa:33:c2:7b:bc:24:61:98:42:
        3c:9d:d5:5f:42:ef:7f:f3:f1:9d:59:9b:84:93:9f:f0:
        df:1b:b6:ce:e4:99:ed:8e:33:99:67:05:44:0c:d5:3e:
        9f:7b:42:a7:c0:2c:1e:2e:4f:3d:ee:0f:86:11:9b:cf:
        ea:2c:73:54:39:bc:b5:b2:0e:16:5d:2d:22:93:6c:4a:
        2a:49:4f:92:54:e8:aa:b8:21:2c:48:66:11:84:a6:59:
        4d:30:0b:c1:3a:22:01:4f:94:8e:9c:c0:88:63:17:70:
        97:85:57:51:97:96:bb:1a:14:f2:81:fa:a9:06:64:41:
        9e:b7:d0:38:68:28:20:85:44:5e:42:d1:d4:c5:f0:f3:
        ea:dd:86:fb:e2:e8:b4:98:d9:c6:9e:08:cb:fe:94:f0:
        9b:ac:fe:fd:9c:7d:3a:21:2a:35:83:62:22:8f:e5:4e:
        bc:7c:d3:a1:ee:5c:4b:fe:31:ff:30:e8:23:b8:c4:20:
        38:ad:b0:6b:87:50:ff:fc:f6:5c:a2:ba:b8:cb:bf:97:
        83:0e:a1:1a:2e:f8:73:33:81:0a:35:7c:b3:35:34:11:
        8c:7e:59:9b:41:62:a1:00:af:fb:d3:49:09:4c:6e:e5
    Fingerprint (SHA-256):
        DF:3A:95:67:E2:42:45:44:3C:35:79:2C:EE:82:DF:2E:2A:83:BB:81:6D:A9:D9:78:F3:FE:90:2A:55:79:8B:34
    Fingerprint (SHA1):
        F6:E2:69:0E:37:79:5E:29:56:6F:BE:52:C1:74:1D:D9:23:9F:B5:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3859: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3860: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153149 (0x1dee3fbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:56 2017
            Not After : Mon May 02 15:30:56 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:15:58:b8:64:42:a6:c5:84:59:e4:91:87:4a:06:fc:
                    45:16:a5:49:16:5e:f3:30:10:61:bb:de:b6:20:97:7d:
                    09:25:3a:8f:f3:2f:07:c7:e9:44:f1:33:dc:3e:d9:d9:
                    95:6f:a7:16:5d:68:9e:80:3a:ed:54:b1:3a:3b:98:c1:
                    3f:8b:8a:a9:f3:e5:8a:0f:4a:57:db:e3:2f:08:18:7f:
                    5b:3c:e5:79:f4:bf:2b:5c:9a:fa:53:7d:30:c0:8c:e5:
                    21:7d:8e:80:37:64:62:7e:0f:3f:13:c3:db:5a:4e:3b:
                    64:75:f1:f3:01:da:3b:b5:f8:27:6f:59:66:2d:3b:e9:
                    7e:00:0b:da:ba:f1:aa:28:e8:28:98:dc:53:ca:fa:12:
                    3d:dd:c7:07:1c:80:10:15:36:e9:b8:3a:07:9d:e2:b1:
                    ed:cb:24:47:ab:12:01:6e:dc:f6:89:95:01:ab:69:53:
                    d2:95:ce:f1:79:a3:2b:00:9c:d6:1b:f1:86:fe:61:28:
                    8f:cb:1b:73:a7:65:9a:fc:a4:fa:aa:7c:b0:ed:b7:da:
                    c0:a1:bf:f5:c5:d7:31:23:e1:e8:8e:ac:c3:16:eb:65:
                    11:7c:18:1d:c5:14:1c:14:25:c1:c9:61:5c:12:2b:4b:
                    82:5b:b1:d2:c3:c0:c6:08:d0:dd:ec:fd:8c:4d:0a:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:b8:cd:8c:f6:fd:bc:b0:64:92:a6:8e:ad:15:24:8a:
        24:f7:ff:91:cb:1a:ab:3a:f7:e1:1f:fc:07:7f:32:13:
        fc:cb:19:aa:a3:1a:ba:34:ce:43:d7:ac:4d:f0:75:cb:
        99:dd:93:39:82:8b:00:2b:21:e2:39:e5:5f:cd:0d:e4:
        ad:14:2c:36:02:9a:5c:3e:80:ad:3f:99:f5:ce:e1:61:
        48:65:a4:30:d5:7d:2c:be:23:f9:d6:bc:88:ce:9a:e3:
        ef:c3:0b:d2:14:03:c6:ad:8e:b0:c1:a9:77:e1:4d:69:
        00:5a:5d:59:42:49:2c:1f:80:2e:b4:8a:c9:c0:1d:d4:
        75:63:34:a4:b8:e0:e6:71:e4:58:ce:ab:15:9a:06:a1:
        7a:9b:81:28:3f:44:9c:cd:e4:1c:67:39:59:4d:01:67:
        b4:c7:87:84:89:62:87:f0:b0:f1:98:e8:8e:a2:aa:20:
        de:1f:71:5f:e8:30:d2:ae:dc:7e:ed:9d:3e:26:b8:69:
        ed:de:4a:5d:bc:16:17:2f:b2:ea:10:e9:9d:6b:d0:e1:
        18:19:c1:93:5b:39:28:1d:b7:5e:10:27:5e:16:e2:94:
        6b:0d:10:ad:41:b9:01:50:08:99:10:2c:e4:18:2b:c0:
        5c:19:7c:35:23:c3:a8:36:b0:1d:54:67:fc:16:5f:e0
    Fingerprint (SHA-256):
        67:A4:65:7D:07:A7:C8:D8:FE:C7:BA:D9:0F:E2:E9:B2:7F:AD:A8:B2:9C:E4:15:9E:5F:A4:6F:23:66:41:40:23
    Fingerprint (SHA1):
        78:E4:FD:18:F7:80:1D:A0:E0:9E:F3:08:1B:E1:A7:70:5E:13:72:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3861: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3862: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3863: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153150 (0x1dee3fbe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:30:56 2017
            Not After : Mon May 02 15:30:56 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:7b:39:2a:7a:50:cb:95:02:05:19:38:66:f1:2a:83:
                    20:2a:61:ee:b7:ab:55:32:83:42:18:12:c9:f0:9d:ac:
                    e0:1b:43:93:67:fd:5c:bd:fa:0e:79:dd:41:10:e1:56:
                    4f:d3:0c:46:d3:11:8b:96:53:13:56:3d:52:c3:ca:72:
                    75:0a:44:3c:d6:18:33:10:9a:5e:bd:1d:ae:6a:9c:fa:
                    26:70:35:2b:fe:66:e3:35:42:25:0a:82:5b:14:6b:47:
                    83:bb:ad:11:3f:64:8a:61:2d:2b:5e:a1:37:05:66:7d:
                    e1:19:fb:a7:a6:ea:11:ad:f7:99:49:26:e9:fe:65:3e:
                    5b:fc:9b:e8:5c:46:31:36:7f:b1:6d:e9:46:20:57:f3:
                    e3:95:00:3b:e6:82:b8:bf:37:27:b3:d4:30:35:03:9f:
                    a3:ac:c4:b2:cc:b6:ba:89:b0:30:2e:9b:3c:ac:c7:cf:
                    aa:07:ab:e8:2d:52:bc:e7:d3:80:ff:6e:45:39:82:ad:
                    d0:06:80:bb:31:71:94:ce:5f:42:3b:5d:06:a9:3d:cd:
                    4f:2d:f5:bb:b2:8a:c0:3c:b4:ce:77:be:74:88:b4:c5:
                    1c:1c:e5:f0:3c:10:7a:7b:2e:fc:68:40:c3:05:a3:ca:
                    56:e1:f9:1e:fe:bc:39:05:81:00:c7:03:51:16:a2:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:1a:c4:7f:15:92:e0:8f:0f:10:66:3f:53:47:22:19:
        98:bc:36:0b:75:4e:f8:7b:38:d7:4a:57:f3:1b:87:93:
        e0:a4:84:f0:26:16:9f:a6:7b:f7:33:56:82:8d:4c:5c:
        6b:52:03:b1:f0:ba:d8:71:d9:cc:a6:7c:b4:4c:a8:c7:
        5a:c5:72:2b:f4:ef:1e:e6:fb:c3:fb:0e:c8:fc:65:73:
        ac:63:29:d6:86:e8:0d:37:67:50:6b:94:22:68:43:0f:
        65:11:46:f5:48:f6:2a:22:61:f9:e5:99:f2:7c:67:10:
        14:09:dd:af:0f:db:b0:a0:bb:2b:b5:07:4a:44:9c:80:
        f8:6e:1a:d9:bf:d2:09:68:2a:04:45:aa:60:d5:ec:02:
        a7:db:70:ed:92:3a:ff:20:d7:03:51:8c:89:22:a8:0a:
        8a:5b:79:66:28:98:c1:85:66:cc:9b:22:1c:40:cf:b7:
        e7:f8:f0:b6:1d:d0:34:32:76:46:ed:ba:ce:d5:95:f5:
        61:d2:42:ed:69:55:ef:13:e7:da:d6:56:58:d5:91:15:
        79:ea:33:cc:05:b9:a9:a1:3b:2b:eb:5f:a1:43:a6:38:
        b7:b8:b5:ea:7c:38:43:9d:93:c4:07:bc:bb:3c:eb:36:
        6a:ae:c8:a7:47:4c:a5:74:52:9d:19:37:80:47:1e:6a
    Fingerprint (SHA-256):
        0D:A9:01:4E:DE:99:AB:01:DA:3E:95:14:38:D4:C6:B4:8E:01:D2:85:9D:6C:54:73:5C:6E:F8:28:60:10:A9:8D
    Fingerprint (SHA1):
        0C:8B:C6:CF:BA:89:D4:22:FE:FA:FB:C8:76:4E:65:68:36:AD:BB:67
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3864: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3865: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153153 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3866: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3867: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3868: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3869: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153154   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3870: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3871: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3872: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3873: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153155   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA1Root-502152932.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3874: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3875: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3876: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3877: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153156   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3878: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3879: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3880: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153153 (0x1dee3fc1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:30:57 2017
            Not After : Mon May 02 15:30:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:a4:27:f8:a4:e6:79:0a:49:bb:0a:38:59:ec:81:dd:
                    30:47:72:96:ab:22:ff:7c:e1:92:cc:8c:ce:8b:d2:5f:
                    65:f4:fa:a7:b3:58:04:38:32:ab:8a:a0:53:2c:7b:11:
                    23:b7:69:78:94:39:e4:3a:be:66:99:e6:29:6f:42:b3:
                    b0:79:37:2e:ef:24:07:cf:0a:88:bd:91:47:e6:ac:a5:
                    0f:c3:34:67:f7:7f:6d:86:7a:0a:c6:3d:88:04:78:28:
                    51:5f:bb:c7:07:f2:7f:4f:8c:21:9a:0d:25:0e:f3:05:
                    7c:03:3a:0b:d5:47:91:e4:ae:5b:bc:53:f3:a2:c5:98:
                    47:31:b7:9f:b9:67:36:a9:26:a7:0a:fb:c4:50:1c:f9:
                    72:89:76:16:bc:b7:ff:92:52:42:c6:c8:e0:e3:ef:bd:
                    15:65:11:90:9d:0f:56:5e:13:ec:da:f5:d1:43:ac:a9:
                    f1:a4:4c:7c:fe:ae:bc:2b:cd:76:b4:cc:8b:0f:94:2d:
                    17:47:3d:eb:e3:a0:22:1b:1b:d6:1f:2a:57:45:bc:5d:
                    ad:dd:46:97:49:de:37:0b:20:c9:b0:d2:9f:44:57:15:
                    ed:05:13:cc:bb:13:5d:43:94:29:02:31:e4:4d:5e:61:
                    ad:ec:81:fb:13:d6:73:6f:a4:ea:fd:1a:c7:03:90:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:a6:f5:5f:c1:c8:b9:95:24:a8:cf:e4:65:73:2b:77:
        e4:c0:17:8e:eb:9f:2e:f9:66:3d:39:bb:44:35:ce:d1:
        af:9e:84:1b:0b:05:54:cd:ed:3d:57:99:d6:06:17:79:
        e9:49:7c:5a:f9:92:dc:53:50:b1:50:c9:2b:8a:59:a9:
        77:5f:63:c3:36:a6:cd:ec:b6:fc:80:6e:ee:cc:3d:d6:
        a2:9d:e7:dc:de:f3:a7:4c:a9:12:88:0a:12:5f:1a:16:
        d4:7b:23:39:48:7e:30:c2:b9:4a:9c:a3:ef:34:18:ee:
        7a:de:0a:35:5a:a6:64:d8:03:77:1b:7e:ec:bc:0f:2d:
        8c:2d:1d:4a:60:bb:3a:9a:a8:1c:84:0a:bf:66:8c:4c:
        00:c6:2d:52:2e:50:7f:8e:32:ff:32:50:75:f6:a3:b0:
        a7:b8:68:f4:72:c2:be:b5:81:5b:e4:69:4c:4b:8b:e0:
        15:9a:61:79:15:9a:c2:79:1b:25:63:73:37:55:e8:cb:
        9d:c4:40:f1:bf:8b:61:50:8f:87:78:a4:b7:49:3c:d3:
        c2:73:4f:e4:af:b6:85:6a:8f:87:c6:a0:2f:f6:59:cd:
        fa:29:b9:06:15:5a:44:79:91:1f:68:81:26:e8:00:f9:
        a6:61:4c:89:61:6b:95:72:bd:4f:0f:b8:80:b4:fd:36
    Fingerprint (SHA-256):
        07:29:74:53:2D:A3:83:13:9F:B7:5D:49:9E:C1:F9:64:B2:9F:5D:77:A6:62:2F:15:2D:30:C7:F8:B7:3F:CE:1B
    Fingerprint (SHA1):
        7B:D0:B3:FA:3B:B4:63:37:11:A5:62:CC:67:65:4F:E6:48:5B:ED:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3881: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3882: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153157 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3883: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3884: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3885: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153158 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3886: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3887: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3888: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3889: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153159 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3890: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3891: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153160 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3892: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3893: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3894: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3895: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3896: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153161   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502152933.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3897: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3898: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3899: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3900: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153162   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3901: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3902: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3903: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3904: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153158 (0x1dee3fc6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:58 2017
            Not After : Mon May 02 15:30:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f1:b0:24:ae:e0:e0:fa:a3:3f:21:19:05:dc:6c:6d:e5:
                    96:51:37:96:24:96:22:96:26:24:35:c3:90:07:49:37:
                    f4:bb:b6:f7:df:ae:1c:d0:08:59:44:d3:1e:a5:13:30:
                    7b:89:7f:5a:4a:b4:9e:12:33:83:ec:5f:52:01:8f:91:
                    a7:ed:4a:67:20:4d:40:7c:43:74:f6:97:d5:8b:49:0b:
                    ae:6b:b7:7f:46:fb:9c:00:20:f3:ed:4a:57:79:eb:fd:
                    d9:07:df:2d:02:a0:17:57:bf:4b:ef:fd:e0:fb:40:82:
                    b7:81:33:14:26:4f:54:03:70:c8:5b:eb:b9:28:40:71:
                    cc:e0:9e:9c:38:89:60:3c:62:a9:9f:3b:fd:d4:f9:16:
                    db:10:06:59:64:a4:64:a4:56:5f:d4:b4:66:ea:32:67:
                    04:71:a8:ac:8b:c3:be:20:0a:fe:3a:b9:2c:0c:d1:bb:
                    17:90:9a:5d:a2:59:77:f1:be:80:bb:e1:a0:7c:1a:1d:
                    29:8b:92:6d:7c:f8:91:b3:ac:09:57:38:f3:86:86:20:
                    b0:93:74:bc:1d:76:37:27:19:e5:79:88:90:40:34:84:
                    63:94:9a:24:95:36:8d:b3:ec:fc:1c:b7:53:80:a5:de:
                    ab:b3:b9:3e:af:54:e7:3f:2b:bc:90:c9:55:7f:ab:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        f1:0d:c6:18:97:50:71:64:3f:40:af:55:3f:e8:6d:3c:
        70:7c:05:e9:29:66:01:60:29:0b:19:70:aa:36:ed:e1:
        32:37:c8:0d:61:e1:58:69:00:04:51:5c:c4:66:9c:d6:
        e0:df:f5:46:e4:29:79:11:0c:c8:93:bd:e5:9c:76:4a:
        ea:4b:c5:70:6c:6a:b8:b4:5f:c2:57:90:c0:19:98:f8:
        2d:7e:f7:39:e9:23:c6:d2:38:c5:d9:fd:d5:07:c2:fa:
        3f:f2:94:91:42:fd:1e:69:74:6a:b0:5f:e8:0a:f6:54:
        1c:67:55:a5:86:b9:1d:bd:6e:f7:c9:6c:73:d0:4e:0e:
        25:e3:11:3a:9e:06:bb:a5:ed:0e:a6:2a:1e:ac:0b:64:
        24:f8:5d:33:7c:a0:e1:ce:01:36:43:56:37:43:dd:eb:
        7e:42:0f:fc:f5:dd:47:fc:6e:4d:54:39:a5:e1:4f:fa:
        d0:61:b9:d5:fe:80:89:44:cc:71:01:33:a8:b7:b7:1f:
        39:06:29:a6:57:d1:10:43:ab:09:35:9c:bb:15:c0:95:
        42:f8:c0:12:fc:94:c6:31:95:2f:9f:da:a5:54:a0:5a:
        9c:59:80:d3:3c:60:b6:ba:79:d5:92:ce:1d:f6:99:36:
        e7:38:b2:75:7c:5b:18:4d:d1:f7:34:b7:36:b0:5f:ce
    Fingerprint (SHA-256):
        EE:F2:DD:B2:7B:F5:CF:85:BC:2E:C1:21:48:EB:9F:14:3B:97:B0:23:18:23:B3:5A:29:38:E7:2D:41:D3:AF:7F
    Fingerprint (SHA1):
        9D:EB:3D:32:D2:AE:5D:1E:5C:8C:3E:74:8A:20:C0:58:EA:C1:91:7C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3905: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153158 (0x1dee3fc6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:30:58 2017
            Not After : Mon May 02 15:30:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f1:b0:24:ae:e0:e0:fa:a3:3f:21:19:05:dc:6c:6d:e5:
                    96:51:37:96:24:96:22:96:26:24:35:c3:90:07:49:37:
                    f4:bb:b6:f7:df:ae:1c:d0:08:59:44:d3:1e:a5:13:30:
                    7b:89:7f:5a:4a:b4:9e:12:33:83:ec:5f:52:01:8f:91:
                    a7:ed:4a:67:20:4d:40:7c:43:74:f6:97:d5:8b:49:0b:
                    ae:6b:b7:7f:46:fb:9c:00:20:f3:ed:4a:57:79:eb:fd:
                    d9:07:df:2d:02:a0:17:57:bf:4b:ef:fd:e0:fb:40:82:
                    b7:81:33:14:26:4f:54:03:70:c8:5b:eb:b9:28:40:71:
                    cc:e0:9e:9c:38:89:60:3c:62:a9:9f:3b:fd:d4:f9:16:
                    db:10:06:59:64:a4:64:a4:56:5f:d4:b4:66:ea:32:67:
                    04:71:a8:ac:8b:c3:be:20:0a:fe:3a:b9:2c:0c:d1:bb:
                    17:90:9a:5d:a2:59:77:f1:be:80:bb:e1:a0:7c:1a:1d:
                    29:8b:92:6d:7c:f8:91:b3:ac:09:57:38:f3:86:86:20:
                    b0:93:74:bc:1d:76:37:27:19:e5:79:88:90:40:34:84:
                    63:94:9a:24:95:36:8d:b3:ec:fc:1c:b7:53:80:a5:de:
                    ab:b3:b9:3e:af:54:e7:3f:2b:bc:90:c9:55:7f:ab:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        f1:0d:c6:18:97:50:71:64:3f:40:af:55:3f:e8:6d:3c:
        70:7c:05:e9:29:66:01:60:29:0b:19:70:aa:36:ed:e1:
        32:37:c8:0d:61:e1:58:69:00:04:51:5c:c4:66:9c:d6:
        e0:df:f5:46:e4:29:79:11:0c:c8:93:bd:e5:9c:76:4a:
        ea:4b:c5:70:6c:6a:b8:b4:5f:c2:57:90:c0:19:98:f8:
        2d:7e:f7:39:e9:23:c6:d2:38:c5:d9:fd:d5:07:c2:fa:
        3f:f2:94:91:42:fd:1e:69:74:6a:b0:5f:e8:0a:f6:54:
        1c:67:55:a5:86:b9:1d:bd:6e:f7:c9:6c:73:d0:4e:0e:
        25:e3:11:3a:9e:06:bb:a5:ed:0e:a6:2a:1e:ac:0b:64:
        24:f8:5d:33:7c:a0:e1:ce:01:36:43:56:37:43:dd:eb:
        7e:42:0f:fc:f5:dd:47:fc:6e:4d:54:39:a5:e1:4f:fa:
        d0:61:b9:d5:fe:80:89:44:cc:71:01:33:a8:b7:b7:1f:
        39:06:29:a6:57:d1:10:43:ab:09:35:9c:bb:15:c0:95:
        42:f8:c0:12:fc:94:c6:31:95:2f:9f:da:a5:54:a0:5a:
        9c:59:80:d3:3c:60:b6:ba:79:d5:92:ce:1d:f6:99:36:
        e7:38:b2:75:7c:5b:18:4d:d1:f7:34:b7:36:b0:5f:ce
    Fingerprint (SHA-256):
        EE:F2:DD:B2:7B:F5:CF:85:BC:2E:C1:21:48:EB:9F:14:3B:97:B0:23:18:23:B3:5A:29:38:E7:2D:41:D3:AF:7F
    Fingerprint (SHA1):
        9D:EB:3D:32:D2:AE:5D:1E:5C:8C:3E:74:8A:20:C0:58:EA:C1:91:7C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3906: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3907: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153163 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3908: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3909: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3910: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153164 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3911: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3912: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3913: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3914: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153165 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3915: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3916: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153166 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3917: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3918: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3919: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3920: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3921: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153167   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502152934.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3922: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3923: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3924: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3925: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153168   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3926: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3927: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3928: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3929: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153169   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-BridgeNavy-502152935.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3930: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3931: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3932: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3933: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153170   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3934: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3935: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3936: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3937: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153164 (0x1dee3fcc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:31:00 2017
            Not After : Mon May 02 15:31:00 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:d9:ae:21:b9:c4:bd:0f:6b:6a:04:f8:75:c9:ef:5d:
                    79:05:13:75:a8:ff:db:85:66:19:bf:81:a7:e9:13:09:
                    9c:92:75:67:95:8c:39:4f:f2:52:37:da:68:53:fd:15:
                    b5:0d:03:67:79:2c:0e:9c:7d:a4:bf:d5:fd:ad:aa:78:
                    11:c0:f1:f6:40:cb:d7:8a:cc:33:9c:18:e8:88:45:9b:
                    5c:1e:2f:94:83:4e:fc:b2:d3:a1:54:ef:25:46:e3:52:
                    db:f0:91:d1:d3:d0:60:33:8f:97:9d:57:39:67:58:82:
                    a2:2f:ae:d6:45:51:68:06:f1:64:8c:45:32:91:80:be:
                    ab:10:fa:0a:db:97:33:0a:e8:c4:64:2d:96:6c:7a:1f:
                    72:8f:14:5e:9f:34:20:a2:23:28:4b:30:35:2c:3e:a9:
                    d5:8e:64:56:ad:4a:a1:62:b0:cc:c8:54:3e:9e:2e:d6:
                    f3:ac:b5:37:bc:3d:46:a9:c3:ca:f9:b0:00:29:a1:66:
                    18:a1:dd:a7:fc:79:7d:be:b5:f9:18:73:bb:0b:9f:85:
                    16:97:74:16:97:1a:23:34:84:ec:e7:f0:5d:a3:7c:5a:
                    91:5d:33:59:45:16:3c:1d:91:a2:ee:e6:c8:97:71:d5:
                    c2:9e:fc:9d:f0:5e:71:77:81:ed:b3:31:69:e5:40:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:c1:ce:a1:77:c4:f3:42:d7:97:6f:b7:d4:ab:ed:5a:
        9f:64:47:c2:d8:02:cd:05:30:89:94:b1:60:90:c4:db:
        f6:58:0b:54:19:1e:6e:47:43:91:73:62:d5:2e:db:1f:
        55:22:87:7f:45:ab:4a:16:e1:39:75:89:27:d1:fe:f5:
        42:36:e1:a4:84:b0:32:62:e7:9c:3c:07:c3:7e:6f:de:
        d9:4f:a5:44:eb:24:fd:a8:35:76:b7:fc:b4:a2:ac:4a:
        03:e9:f0:9c:c2:bd:89:84:a1:93:a6:0d:49:23:71:c7:
        a7:97:f4:57:a0:77:95:cc:7f:a0:84:15:10:b6:40:ae:
        5b:d4:20:5f:51:24:d0:9e:25:5d:8f:d6:57:41:39:d6:
        1a:fa:80:50:63:d0:f6:a0:f2:00:e9:53:41:be:9b:d2:
        be:93:12:a7:af:e5:10:8e:72:43:de:59:d1:0c:10:2f:
        da:76:8b:85:04:c0:cc:71:16:62:63:63:32:0c:85:04:
        a2:5a:62:b7:3c:17:08:2f:13:7e:7a:a2:98:80:0a:75:
        c1:86:d9:72:ed:c1:2c:9b:fb:7a:76:66:be:16:f9:08:
        08:63:00:6e:b9:15:80:1f:e2:f2:b9:4f:a1:10:93:2f:
        80:5a:85:45:25:b0:8b:97:06:b0:81:a7:8f:e5:95:3c
    Fingerprint (SHA-256):
        66:EB:D0:07:E4:BB:5E:F2:03:D9:09:E8:23:C0:31:E8:4A:F9:2B:47:B2:40:2F:36:DC:E1:BB:1D:95:BA:9D:01
    Fingerprint (SHA1):
        DF:F6:D6:78:D1:03:F6:E8:27:2F:1C:CF:04:DA:A9:47:2F:BC:89:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3938: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153164 (0x1dee3fcc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:31:00 2017
            Not After : Mon May 02 15:31:00 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:d9:ae:21:b9:c4:bd:0f:6b:6a:04:f8:75:c9:ef:5d:
                    79:05:13:75:a8:ff:db:85:66:19:bf:81:a7:e9:13:09:
                    9c:92:75:67:95:8c:39:4f:f2:52:37:da:68:53:fd:15:
                    b5:0d:03:67:79:2c:0e:9c:7d:a4:bf:d5:fd:ad:aa:78:
                    11:c0:f1:f6:40:cb:d7:8a:cc:33:9c:18:e8:88:45:9b:
                    5c:1e:2f:94:83:4e:fc:b2:d3:a1:54:ef:25:46:e3:52:
                    db:f0:91:d1:d3:d0:60:33:8f:97:9d:57:39:67:58:82:
                    a2:2f:ae:d6:45:51:68:06:f1:64:8c:45:32:91:80:be:
                    ab:10:fa:0a:db:97:33:0a:e8:c4:64:2d:96:6c:7a:1f:
                    72:8f:14:5e:9f:34:20:a2:23:28:4b:30:35:2c:3e:a9:
                    d5:8e:64:56:ad:4a:a1:62:b0:cc:c8:54:3e:9e:2e:d6:
                    f3:ac:b5:37:bc:3d:46:a9:c3:ca:f9:b0:00:29:a1:66:
                    18:a1:dd:a7:fc:79:7d:be:b5:f9:18:73:bb:0b:9f:85:
                    16:97:74:16:97:1a:23:34:84:ec:e7:f0:5d:a3:7c:5a:
                    91:5d:33:59:45:16:3c:1d:91:a2:ee:e6:c8:97:71:d5:
                    c2:9e:fc:9d:f0:5e:71:77:81:ed:b3:31:69:e5:40:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:c1:ce:a1:77:c4:f3:42:d7:97:6f:b7:d4:ab:ed:5a:
        9f:64:47:c2:d8:02:cd:05:30:89:94:b1:60:90:c4:db:
        f6:58:0b:54:19:1e:6e:47:43:91:73:62:d5:2e:db:1f:
        55:22:87:7f:45:ab:4a:16:e1:39:75:89:27:d1:fe:f5:
        42:36:e1:a4:84:b0:32:62:e7:9c:3c:07:c3:7e:6f:de:
        d9:4f:a5:44:eb:24:fd:a8:35:76:b7:fc:b4:a2:ac:4a:
        03:e9:f0:9c:c2:bd:89:84:a1:93:a6:0d:49:23:71:c7:
        a7:97:f4:57:a0:77:95:cc:7f:a0:84:15:10:b6:40:ae:
        5b:d4:20:5f:51:24:d0:9e:25:5d:8f:d6:57:41:39:d6:
        1a:fa:80:50:63:d0:f6:a0:f2:00:e9:53:41:be:9b:d2:
        be:93:12:a7:af:e5:10:8e:72:43:de:59:d1:0c:10:2f:
        da:76:8b:85:04:c0:cc:71:16:62:63:63:32:0c:85:04:
        a2:5a:62:b7:3c:17:08:2f:13:7e:7a:a2:98:80:0a:75:
        c1:86:d9:72:ed:c1:2c:9b:fb:7a:76:66:be:16:f9:08:
        08:63:00:6e:b9:15:80:1f:e2:f2:b9:4f:a1:10:93:2f:
        80:5a:85:45:25:b0:8b:97:06:b0:81:a7:8f:e5:95:3c
    Fingerprint (SHA-256):
        66:EB:D0:07:E4:BB:5E:F2:03:D9:09:E8:23:C0:31:E8:4A:F9:2B:47:B2:40:2F:36:DC:E1:BB:1D:95:BA:9D:01
    Fingerprint (SHA1):
        DF:F6:D6:78:D1:03:F6:E8:27:2F:1C:CF:04:DA:A9:47:2F:BC:89:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3939: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3940: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153163 (0x1dee3fcb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:31:00 2017
            Not After : Mon May 02 15:31:00 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:c4:60:0e:7a:7a:9e:c2:91:af:59:96:fe:e4:53:e4:
                    11:ef:23:c0:3e:7f:2b:3a:78:72:f4:5c:c1:32:b3:8b:
                    9d:8c:fe:04:32:11:94:ab:cf:2c:e0:6c:1b:ca:77:bc:
                    b3:6b:77:db:ce:30:d7:8e:c7:fa:42:92:02:30:6b:49:
                    c7:48:09:6d:2f:02:42:10:8d:da:83:31:2d:50:63:78:
                    cd:1d:1c:3c:9a:34:8f:e2:5a:29:7a:ee:b4:48:b9:ab:
                    cd:68:1e:10:0a:11:79:5e:ba:89:f6:41:37:b9:3a:e3:
                    0c:19:7a:45:a2:92:68:c8:7f:42:f5:49:ba:dd:1d:22:
                    9f:ba:d0:ce:c1:58:13:73:9d:74:26:6a:8f:7e:eb:8b:
                    2d:94:d6:7f:a8:3b:b8:48:62:0f:f7:5c:a9:47:00:b7:
                    a9:a1:a5:17:41:25:5b:8e:ec:c0:fb:cd:9c:6a:ff:d4:
                    90:23:49:2a:a3:30:c1:34:d8:fb:f3:16:7b:33:c2:96:
                    26:83:4c:df:17:c3:d7:16:b7:b6:10:f3:35:0e:f7:64:
                    e1:5a:a0:f5:77:a6:0a:3e:93:93:f4:f6:ec:d2:ea:85:
                    ab:7a:92:e9:3f:0c:06:96:c9:8a:51:e2:c0:e2:f5:16:
                    35:39:ee:7e:7a:ea:c7:52:20:17:52:53:12:df:c5:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:df:91:36:19:03:43:be:eb:23:70:ca:0d:56:ec:df:
        32:be:38:ae:3e:71:3d:7f:9c:33:7b:87:2c:9e:2b:47:
        a7:b8:78:b6:14:fc:60:88:ce:ba:1c:7c:92:2d:68:33:
        cd:10:af:89:42:c1:5b:97:82:9a:3c:1b:e9:fb:c8:69:
        e6:08:ff:03:70:5f:04:0d:32:37:d4:e7:f1:ed:76:75:
        dc:c7:9a:e8:f3:dd:eb:84:27:53:ea:2a:21:96:c9:25:
        eb:37:0b:08:8c:0a:9d:3a:e6:e0:c0:28:6b:21:2a:4c:
        40:39:9b:cb:aa:1e:06:30:a8:56:54:31:83:47:15:bc:
        77:69:0c:0b:dd:df:da:c6:7b:1f:89:3f:26:7f:8e:6e:
        7c:20:cb:65:b4:3a:15:a1:dc:ad:3b:29:66:b9:30:b5:
        ac:14:0c:64:a8:c6:b6:78:d9:10:80:b3:25:8f:13:e2:
        a7:8a:98:9d:a9:5c:78:0b:8d:51:61:63:bd:34:5d:13:
        9b:44:a4:21:da:87:f2:a8:3e:83:07:bf:43:91:c4:9e:
        5e:d4:1c:bf:59:c8:63:4c:43:73:9e:db:3f:0c:98:90:
        8b:56:6d:38:22:34:c8:74:4c:f8:5d:72:31:9d:cc:77:
        1a:eb:d8:be:e4:df:bd:ec:5e:19:74:e0:ac:3b:42:41
    Fingerprint (SHA-256):
        6B:58:65:92:8B:B7:50:4F:0E:CE:0C:18:DF:E3:13:17:98:82:4C:A0:C7:B6:63:4A:AC:52:79:46:CE:3E:50:C4
    Fingerprint (SHA1):
        D1:9E:0D:8E:F9:75:A4:0B:77:A2:A9:44:C3:71:1B:45:02:FF:CD:C5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3941: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153164 (0x1dee3fcc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:31:00 2017
            Not After : Mon May 02 15:31:00 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:d9:ae:21:b9:c4:bd:0f:6b:6a:04:f8:75:c9:ef:5d:
                    79:05:13:75:a8:ff:db:85:66:19:bf:81:a7:e9:13:09:
                    9c:92:75:67:95:8c:39:4f:f2:52:37:da:68:53:fd:15:
                    b5:0d:03:67:79:2c:0e:9c:7d:a4:bf:d5:fd:ad:aa:78:
                    11:c0:f1:f6:40:cb:d7:8a:cc:33:9c:18:e8:88:45:9b:
                    5c:1e:2f:94:83:4e:fc:b2:d3:a1:54:ef:25:46:e3:52:
                    db:f0:91:d1:d3:d0:60:33:8f:97:9d:57:39:67:58:82:
                    a2:2f:ae:d6:45:51:68:06:f1:64:8c:45:32:91:80:be:
                    ab:10:fa:0a:db:97:33:0a:e8:c4:64:2d:96:6c:7a:1f:
                    72:8f:14:5e:9f:34:20:a2:23:28:4b:30:35:2c:3e:a9:
                    d5:8e:64:56:ad:4a:a1:62:b0:cc:c8:54:3e:9e:2e:d6:
                    f3:ac:b5:37:bc:3d:46:a9:c3:ca:f9:b0:00:29:a1:66:
                    18:a1:dd:a7:fc:79:7d:be:b5:f9:18:73:bb:0b:9f:85:
                    16:97:74:16:97:1a:23:34:84:ec:e7:f0:5d:a3:7c:5a:
                    91:5d:33:59:45:16:3c:1d:91:a2:ee:e6:c8:97:71:d5:
                    c2:9e:fc:9d:f0:5e:71:77:81:ed:b3:31:69:e5:40:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:c1:ce:a1:77:c4:f3:42:d7:97:6f:b7:d4:ab:ed:5a:
        9f:64:47:c2:d8:02:cd:05:30:89:94:b1:60:90:c4:db:
        f6:58:0b:54:19:1e:6e:47:43:91:73:62:d5:2e:db:1f:
        55:22:87:7f:45:ab:4a:16:e1:39:75:89:27:d1:fe:f5:
        42:36:e1:a4:84:b0:32:62:e7:9c:3c:07:c3:7e:6f:de:
        d9:4f:a5:44:eb:24:fd:a8:35:76:b7:fc:b4:a2:ac:4a:
        03:e9:f0:9c:c2:bd:89:84:a1:93:a6:0d:49:23:71:c7:
        a7:97:f4:57:a0:77:95:cc:7f:a0:84:15:10:b6:40:ae:
        5b:d4:20:5f:51:24:d0:9e:25:5d:8f:d6:57:41:39:d6:
        1a:fa:80:50:63:d0:f6:a0:f2:00:e9:53:41:be:9b:d2:
        be:93:12:a7:af:e5:10:8e:72:43:de:59:d1:0c:10:2f:
        da:76:8b:85:04:c0:cc:71:16:62:63:63:32:0c:85:04:
        a2:5a:62:b7:3c:17:08:2f:13:7e:7a:a2:98:80:0a:75:
        c1:86:d9:72:ed:c1:2c:9b:fb:7a:76:66:be:16:f9:08:
        08:63:00:6e:b9:15:80:1f:e2:f2:b9:4f:a1:10:93:2f:
        80:5a:85:45:25:b0:8b:97:06:b0:81:a7:8f:e5:95:3c
    Fingerprint (SHA-256):
        66:EB:D0:07:E4:BB:5E:F2:03:D9:09:E8:23:C0:31:E8:4A:F9:2B:47:B2:40:2F:36:DC:E1:BB:1D:95:BA:9D:01
    Fingerprint (SHA1):
        DF:F6:D6:78:D1:03:F6:E8:27:2F:1C:CF:04:DA:A9:47:2F:BC:89:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3942: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153164 (0x1dee3fcc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:31:00 2017
            Not After : Mon May 02 15:31:00 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:d9:ae:21:b9:c4:bd:0f:6b:6a:04:f8:75:c9:ef:5d:
                    79:05:13:75:a8:ff:db:85:66:19:bf:81:a7:e9:13:09:
                    9c:92:75:67:95:8c:39:4f:f2:52:37:da:68:53:fd:15:
                    b5:0d:03:67:79:2c:0e:9c:7d:a4:bf:d5:fd:ad:aa:78:
                    11:c0:f1:f6:40:cb:d7:8a:cc:33:9c:18:e8:88:45:9b:
                    5c:1e:2f:94:83:4e:fc:b2:d3:a1:54:ef:25:46:e3:52:
                    db:f0:91:d1:d3:d0:60:33:8f:97:9d:57:39:67:58:82:
                    a2:2f:ae:d6:45:51:68:06:f1:64:8c:45:32:91:80:be:
                    ab:10:fa:0a:db:97:33:0a:e8:c4:64:2d:96:6c:7a:1f:
                    72:8f:14:5e:9f:34:20:a2:23:28:4b:30:35:2c:3e:a9:
                    d5:8e:64:56:ad:4a:a1:62:b0:cc:c8:54:3e:9e:2e:d6:
                    f3:ac:b5:37:bc:3d:46:a9:c3:ca:f9:b0:00:29:a1:66:
                    18:a1:dd:a7:fc:79:7d:be:b5:f9:18:73:bb:0b:9f:85:
                    16:97:74:16:97:1a:23:34:84:ec:e7:f0:5d:a3:7c:5a:
                    91:5d:33:59:45:16:3c:1d:91:a2:ee:e6:c8:97:71:d5:
                    c2:9e:fc:9d:f0:5e:71:77:81:ed:b3:31:69:e5:40:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:c1:ce:a1:77:c4:f3:42:d7:97:6f:b7:d4:ab:ed:5a:
        9f:64:47:c2:d8:02:cd:05:30:89:94:b1:60:90:c4:db:
        f6:58:0b:54:19:1e:6e:47:43:91:73:62:d5:2e:db:1f:
        55:22:87:7f:45:ab:4a:16:e1:39:75:89:27:d1:fe:f5:
        42:36:e1:a4:84:b0:32:62:e7:9c:3c:07:c3:7e:6f:de:
        d9:4f:a5:44:eb:24:fd:a8:35:76:b7:fc:b4:a2:ac:4a:
        03:e9:f0:9c:c2:bd:89:84:a1:93:a6:0d:49:23:71:c7:
        a7:97:f4:57:a0:77:95:cc:7f:a0:84:15:10:b6:40:ae:
        5b:d4:20:5f:51:24:d0:9e:25:5d:8f:d6:57:41:39:d6:
        1a:fa:80:50:63:d0:f6:a0:f2:00:e9:53:41:be:9b:d2:
        be:93:12:a7:af:e5:10:8e:72:43:de:59:d1:0c:10:2f:
        da:76:8b:85:04:c0:cc:71:16:62:63:63:32:0c:85:04:
        a2:5a:62:b7:3c:17:08:2f:13:7e:7a:a2:98:80:0a:75:
        c1:86:d9:72:ed:c1:2c:9b:fb:7a:76:66:be:16:f9:08:
        08:63:00:6e:b9:15:80:1f:e2:f2:b9:4f:a1:10:93:2f:
        80:5a:85:45:25:b0:8b:97:06:b0:81:a7:8f:e5:95:3c
    Fingerprint (SHA-256):
        66:EB:D0:07:E4:BB:5E:F2:03:D9:09:E8:23:C0:31:E8:4A:F9:2B:47:B2:40:2F:36:DC:E1:BB:1D:95:BA:9D:01
    Fingerprint (SHA1):
        DF:F6:D6:78:D1:03:F6:E8:27:2F:1C:CF:04:DA:A9:47:2F:BC:89:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3943: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3944: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153171 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3945: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3946: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3947: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153172 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3948: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3949: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3950: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3951: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502153173   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3952: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3953: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3954: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3955: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502153174   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3956: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3957: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3958: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3959: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502153175 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3960: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3961: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502153176 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3962: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3963: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3964: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3965: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3966: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153177   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3967: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3968: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3969: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3970: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153178   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3971: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3972: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3973: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3974: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153179   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3975: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3976: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3977: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3978: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153180   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3979: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3980: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3981: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153171 (0x1dee3fd3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:31:02 2017
            Not After : Mon May 02 15:31:02 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:dd:4b:a9:c9:7f:16:40:cf:a8:96:bc:73:cd:e7:56:
                    46:3b:97:6d:a0:a7:25:32:29:01:74:73:11:34:a2:f7:
                    45:ce:fd:2c:a7:ce:d4:02:b9:2d:55:0c:b1:d6:2b:df:
                    f2:78:2d:6c:89:9f:69:6e:8e:c0:3a:1b:f6:27:09:9c:
                    74:f2:2a:f6:b1:db:05:8b:56:53:ed:7c:19:3e:d1:30:
                    1a:68:54:c8:50:59:2f:79:bb:80:42:7d:a7:ee:d7:9a:
                    5d:89:3a:2c:95:86:15:6e:4d:0c:94:f0:2f:a1:44:83:
                    a1:34:10:27:7e:dd:31:ea:4a:82:56:c7:b6:36:10:ca:
                    cf:38:e8:ac:7c:35:43:00:0e:72:50:2c:f9:a3:6f:02:
                    dd:fa:ad:67:5b:d8:12:27:73:ec:f5:2b:63:c9:96:e5:
                    6c:7e:f0:a6:b6:fb:50:64:3d:a6:81:b2:ac:70:20:05:
                    88:95:53:e8:24:44:52:42:b3:85:4a:eb:13:ec:a2:8b:
                    f8:75:68:56:e3:7a:df:59:40:54:f9:f2:14:ac:69:67:
                    b4:ee:a0:6d:6a:26:88:41:ab:ca:e0:d0:22:0a:a3:11:
                    65:f3:92:cb:b8:dd:18:39:75:ea:e3:74:ba:f2:a1:fc:
                    39:f0:46:05:15:ff:4c:f8:4f:e3:b5:ff:49:74:cb:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:01:59:d2:38:a4:b1:5d:5f:c9:52:23:8e:3b:cb:0a:
        56:31:74:bd:84:43:e5:d9:7b:e9:69:66:30:40:d7:82:
        b7:04:73:32:c3:85:78:f3:7a:b4:ab:25:a0:72:74:96:
        94:86:a5:57:d6:24:d3:28:fd:ec:f9:53:f0:55:11:12:
        2b:12:98:05:53:0b:7e:db:97:db:d8:9e:07:c9:ff:9a:
        36:07:9d:ea:e4:f9:fb:cb:77:2a:a1:e4:89:a5:dc:ba:
        0c:1f:a9:f9:87:5c:14:2e:c5:ac:37:03:bc:a1:f7:86:
        e0:e4:fd:31:90:d3:21:ff:1b:30:c5:9d:3c:81:e7:a8:
        fb:4f:f3:d0:c0:e6:70:74:fc:28:af:f0:98:d6:0c:55:
        82:e8:8c:f1:fa:81:d3:93:62:77:70:11:31:36:26:49:
        4c:4e:2b:f0:ea:b8:ff:8c:2b:b6:ab:88:72:65:17:36:
        f7:95:fd:25:10:33:f8:d5:14:8e:70:9c:dc:59:04:9d:
        36:50:c7:4a:df:b1:1b:e9:c4:f9:58:b1:cf:04:af:3a:
        a1:e7:a9:dc:b8:54:e0:68:93:e3:d0:e3:71:22:bb:86:
        f0:a1:a2:bc:0b:7c:99:47:49:bc:ed:b5:6c:98:1d:10:
        e7:73:6a:05:2c:a4:d1:06:14:10:17:48:8f:dd:7e:37
    Fingerprint (SHA-256):
        44:C6:93:6E:6D:B1:FD:03:37:38:67:23:85:61:AC:09:4B:8F:1D:04:A4:20:94:F1:69:D8:42:3D:8B:64:8F:8C
    Fingerprint (SHA1):
        CF:4B:B6:69:72:33:C0:3A:69:25:6C:D2:93:1F:B4:77:A8:34:9F:4C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3982: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3983: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3984: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3985: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3986: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3987: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3988: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3989: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3990: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153172 (0x1dee3fd4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:31:02 2017
            Not After : Mon May 02 15:31:02 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:47:f7:86:46:50:d8:ea:ee:45:50:5f:98:9a:e9:32:
                    5f:2c:61:3a:3b:a8:5c:f4:45:28:75:7f:5d:df:7c:c6:
                    7d:e5:5a:fa:c1:d0:dd:57:1f:dd:da:85:9c:85:93:9d:
                    a5:91:3c:01:8a:e4:3b:bf:f7:41:f0:38:39:a0:6e:92:
                    6d:4d:0a:5c:a7:0d:be:e1:32:05:d4:b6:0b:03:6c:ac:
                    cd:fa:15:69:2b:d4:23:9d:86:00:84:a8:e7:11:5d:7c:
                    bb:67:64:1f:36:63:d7:93:95:e4:e3:72:aa:93:40:07:
                    bb:97:51:6c:26:ce:e5:c3:e2:28:8e:a6:d5:16:cf:e1:
                    ba:6c:ec:c5:06:e2:26:74:6a:86:52:18:59:8e:17:ca:
                    ca:0a:74:6f:9f:a8:ea:e5:1b:89:9a:9b:70:82:a3:16:
                    4f:11:bb:7a:fb:ed:f1:c8:fc:85:2d:d2:1b:a5:68:2e:
                    9a:c1:2d:6c:15:f7:f7:43:86:f3:e4:74:67:58:4c:71:
                    04:fc:07:5b:1f:73:38:b8:b3:9f:98:33:03:d8:00:f9:
                    9b:59:45:9e:10:dc:af:18:05:29:26:83:bf:a9:a2:5d:
                    77:46:45:f6:1a:e9:83:09:da:53:f7:ca:42:8f:38:d8:
                    3d:cd:1b:ee:64:5c:ea:6b:6c:f5:5b:6c:2d:5f:44:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:46:85:d7:df:09:99:26:2e:4f:49:6d:9b:4a:da:ba:
        44:c2:ca:cf:10:0d:31:45:26:5a:5b:d8:ae:6d:6b:68:
        5f:5c:b4:df:a7:f9:f3:1a:2b:42:1d:ec:c9:4a:e4:0d:
        3b:68:35:90:40:a4:41:39:24:7e:4a:4e:23:fc:ca:a1:
        fb:8a:a0:6d:5d:1f:ed:50:bb:52:a2:db:60:cc:b1:1f:
        52:4c:70:57:f8:e7:fa:ff:43:b2:a6:c7:d0:2c:fb:a4:
        01:71:cb:93:a4:2a:33:85:6d:6a:ed:56:27:c4:a9:ac:
        35:82:8a:5a:a5:08:0a:4f:92:40:14:3f:e0:9d:ff:ef:
        7f:3a:53:32:b4:59:94:3f:61:9d:27:d5:e0:8f:8a:51:
        47:0b:18:51:79:dd:f7:64:b9:06:14:93:a3:fc:29:92:
        33:d4:5e:a8:15:37:da:26:5b:ea:e1:11:59:8d:8a:2e:
        d7:2c:b7:d0:16:07:53:a5:a0:91:10:fb:1c:3e:56:91:
        7e:3a:40:01:a5:79:f6:63:68:7e:92:03:ec:4f:a0:a9:
        2a:38:55:0d:6c:28:3f:f0:42:ea:ca:14:45:9d:77:14:
        fe:ed:f1:30:0e:df:06:98:a7:05:95:58:9f:8e:ef:8c:
        97:11:db:63:af:e0:c6:53:30:97:a6:26:3a:84:91:e4
    Fingerprint (SHA-256):
        DE:A8:E5:1F:DB:73:9F:B4:E7:BC:10:7D:D7:1F:BE:5D:C3:64:DD:16:A8:A0:73:4F:59:29:95:F7:C0:02:FF:89
    Fingerprint (SHA1):
        FA:CF:C7:5F:E2:CB:9D:2B:1F:9F:9C:E8:A2:18:E1:AE:2E:8A:75:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3991: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3992: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3993: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3994: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3995: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3996: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3997: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3998: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3999: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #4000: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #4001: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #4002: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #4003: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #4004: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4005: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4006: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #4007: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #4008: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4009: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153181 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4010: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4011: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4012: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4013: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153182   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4014: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4015: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4016: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4017: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153183   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4018: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4019: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4020: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4021: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502153184   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4022: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4023: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4024: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4025: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153185   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4026: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4027: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #4028: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4029: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502153186   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4030: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4031: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #4032: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4033: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502153187   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4034: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4035: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #4036: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4037: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502153188   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4038: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4039: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #4040: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4041: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502153189   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4042: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4043: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4044: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153181 (0x1dee3fdd)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:31:06 2017
            Not After : Mon May 02 15:31:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    34:92:ce:33:75:4f:2a:1b:a1:f6:f2:81:3d:63:9f:00:
                    20:6d:f6:0b:1a:17:39:b6:89:10:4d:ca:c9:30:9c:26:
                    ba:4f:1e:8b:69:7b:de:2e:e6:8e:10:6a:ae:15:33:42:
                    32:45:ec:a4:f3:58:75:2c:a2:f7:4c:29:09:b3:94:ed:
                    c0:fd:70:9c:14:f3:0d:3f:f2:86:2a:63:fd:88:65:74:
                    d1:fa:0b:ee:84:cc:77:04:98:14:f0:f4:81:04:b0:9b:
                    bb:ed:a4:44:0a:5e:ca:9c:b8:63:71:d7:54:30:69:e0:
                    20:87:80:2a:1d:f8:34:85:0e:09:cf:54:0f:3b:ed:07:
                    f5:c8:38:5e:08:6d:b5:42:3d:47:06:4b:7c:76:f6:cf:
                    40:b5:6f:61:aa:15:02:25:18:54:0f:f4:3d:20:a2:f4:
                    77:ad:1c:c5:24:5f:c6:a6:a4:32:09:c3:b9:f2:4d:ff:
                    74:a3:c4:f9:78:20:0c:f7:9f:9c:92:e8:2a:da:0c:f4:
                    ff:86:69:0e:b6:3e:4d:50:8c:7f:81:62:b3:45:c7:f6:
                    1b:d2:1f:bf:9b:0a:44:83:b8:6c:02:19:dd:57:02:8c:
                    58:79:b6:cd:69:0b:09:08:6b:a8:09:19:da:44:97:fc:
                    94:77:6a:56:f3:33:72:04:01:d6:70:b1:68:75:fd:0a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:3f:ed:41:04:cf:2b:d0:27:0d:5c:6e:30:
        16:c6:dd:72:50:5a:d3:5a:a5:f4:22:9b:90:47:5e:74:
        02:1d:00:84:fd:89:67:eb:51:84:b5:2f:ff:b5:66:9b:
        e3:e4:0a:80:e8:73:22:9e:69:d3:dd:af:19:7a:a8
    Fingerprint (SHA-256):
        DB:FA:73:57:5C:24:F6:59:FB:7F:9D:BB:D5:1E:5F:92:F0:55:70:84:89:90:F1:D3:2A:C3:B9:70:12:A2:BD:AC
    Fingerprint (SHA1):
        7E:70:FE:80:2D:5A:CD:90:9A:D1:CC:98:5C:09:80:03:7D:A1:26:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4045: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153181 (0x1dee3fdd)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:31:06 2017
            Not After : Mon May 02 15:31:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    34:92:ce:33:75:4f:2a:1b:a1:f6:f2:81:3d:63:9f:00:
                    20:6d:f6:0b:1a:17:39:b6:89:10:4d:ca:c9:30:9c:26:
                    ba:4f:1e:8b:69:7b:de:2e:e6:8e:10:6a:ae:15:33:42:
                    32:45:ec:a4:f3:58:75:2c:a2:f7:4c:29:09:b3:94:ed:
                    c0:fd:70:9c:14:f3:0d:3f:f2:86:2a:63:fd:88:65:74:
                    d1:fa:0b:ee:84:cc:77:04:98:14:f0:f4:81:04:b0:9b:
                    bb:ed:a4:44:0a:5e:ca:9c:b8:63:71:d7:54:30:69:e0:
                    20:87:80:2a:1d:f8:34:85:0e:09:cf:54:0f:3b:ed:07:
                    f5:c8:38:5e:08:6d:b5:42:3d:47:06:4b:7c:76:f6:cf:
                    40:b5:6f:61:aa:15:02:25:18:54:0f:f4:3d:20:a2:f4:
                    77:ad:1c:c5:24:5f:c6:a6:a4:32:09:c3:b9:f2:4d:ff:
                    74:a3:c4:f9:78:20:0c:f7:9f:9c:92:e8:2a:da:0c:f4:
                    ff:86:69:0e:b6:3e:4d:50:8c:7f:81:62:b3:45:c7:f6:
                    1b:d2:1f:bf:9b:0a:44:83:b8:6c:02:19:dd:57:02:8c:
                    58:79:b6:cd:69:0b:09:08:6b:a8:09:19:da:44:97:fc:
                    94:77:6a:56:f3:33:72:04:01:d6:70:b1:68:75:fd:0a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:3f:ed:41:04:cf:2b:d0:27:0d:5c:6e:30:
        16:c6:dd:72:50:5a:d3:5a:a5:f4:22:9b:90:47:5e:74:
        02:1d:00:84:fd:89:67:eb:51:84:b5:2f:ff:b5:66:9b:
        e3:e4:0a:80:e8:73:22:9e:69:d3:dd:af:19:7a:a8
    Fingerprint (SHA-256):
        DB:FA:73:57:5C:24:F6:59:FB:7F:9D:BB:D5:1E:5F:92:F0:55:70:84:89:90:F1:D3:2A:C3:B9:70:12:A2:BD:AC
    Fingerprint (SHA1):
        7E:70:FE:80:2D:5A:CD:90:9A:D1:CC:98:5C:09:80:03:7D:A1:26:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4046: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153181 (0x1dee3fdd)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:31:06 2017
            Not After : Mon May 02 15:31:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    34:92:ce:33:75:4f:2a:1b:a1:f6:f2:81:3d:63:9f:00:
                    20:6d:f6:0b:1a:17:39:b6:89:10:4d:ca:c9:30:9c:26:
                    ba:4f:1e:8b:69:7b:de:2e:e6:8e:10:6a:ae:15:33:42:
                    32:45:ec:a4:f3:58:75:2c:a2:f7:4c:29:09:b3:94:ed:
                    c0:fd:70:9c:14:f3:0d:3f:f2:86:2a:63:fd:88:65:74:
                    d1:fa:0b:ee:84:cc:77:04:98:14:f0:f4:81:04:b0:9b:
                    bb:ed:a4:44:0a:5e:ca:9c:b8:63:71:d7:54:30:69:e0:
                    20:87:80:2a:1d:f8:34:85:0e:09:cf:54:0f:3b:ed:07:
                    f5:c8:38:5e:08:6d:b5:42:3d:47:06:4b:7c:76:f6:cf:
                    40:b5:6f:61:aa:15:02:25:18:54:0f:f4:3d:20:a2:f4:
                    77:ad:1c:c5:24:5f:c6:a6:a4:32:09:c3:b9:f2:4d:ff:
                    74:a3:c4:f9:78:20:0c:f7:9f:9c:92:e8:2a:da:0c:f4:
                    ff:86:69:0e:b6:3e:4d:50:8c:7f:81:62:b3:45:c7:f6:
                    1b:d2:1f:bf:9b:0a:44:83:b8:6c:02:19:dd:57:02:8c:
                    58:79:b6:cd:69:0b:09:08:6b:a8:09:19:da:44:97:fc:
                    94:77:6a:56:f3:33:72:04:01:d6:70:b1:68:75:fd:0a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:3f:ed:41:04:cf:2b:d0:27:0d:5c:6e:30:
        16:c6:dd:72:50:5a:d3:5a:a5:f4:22:9b:90:47:5e:74:
        02:1d:00:84:fd:89:67:eb:51:84:b5:2f:ff:b5:66:9b:
        e3:e4:0a:80:e8:73:22:9e:69:d3:dd:af:19:7a:a8
    Fingerprint (SHA-256):
        DB:FA:73:57:5C:24:F6:59:FB:7F:9D:BB:D5:1E:5F:92:F0:55:70:84:89:90:F1:D3:2A:C3:B9:70:12:A2:BD:AC
    Fingerprint (SHA1):
        7E:70:FE:80:2D:5A:CD:90:9A:D1:CC:98:5C:09:80:03:7D:A1:26:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #4047: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153181 (0x1dee3fdd)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:31:06 2017
            Not After : Mon May 02 15:31:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    34:92:ce:33:75:4f:2a:1b:a1:f6:f2:81:3d:63:9f:00:
                    20:6d:f6:0b:1a:17:39:b6:89:10:4d:ca:c9:30:9c:26:
                    ba:4f:1e:8b:69:7b:de:2e:e6:8e:10:6a:ae:15:33:42:
                    32:45:ec:a4:f3:58:75:2c:a2:f7:4c:29:09:b3:94:ed:
                    c0:fd:70:9c:14:f3:0d:3f:f2:86:2a:63:fd:88:65:74:
                    d1:fa:0b:ee:84:cc:77:04:98:14:f0:f4:81:04:b0:9b:
                    bb:ed:a4:44:0a:5e:ca:9c:b8:63:71:d7:54:30:69:e0:
                    20:87:80:2a:1d:f8:34:85:0e:09:cf:54:0f:3b:ed:07:
                    f5:c8:38:5e:08:6d:b5:42:3d:47:06:4b:7c:76:f6:cf:
                    40:b5:6f:61:aa:15:02:25:18:54:0f:f4:3d:20:a2:f4:
                    77:ad:1c:c5:24:5f:c6:a6:a4:32:09:c3:b9:f2:4d:ff:
                    74:a3:c4:f9:78:20:0c:f7:9f:9c:92:e8:2a:da:0c:f4:
                    ff:86:69:0e:b6:3e:4d:50:8c:7f:81:62:b3:45:c7:f6:
                    1b:d2:1f:bf:9b:0a:44:83:b8:6c:02:19:dd:57:02:8c:
                    58:79:b6:cd:69:0b:09:08:6b:a8:09:19:da:44:97:fc:
                    94:77:6a:56:f3:33:72:04:01:d6:70:b1:68:75:fd:0a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:3f:ed:41:04:cf:2b:d0:27:0d:5c:6e:30:
        16:c6:dd:72:50:5a:d3:5a:a5:f4:22:9b:90:47:5e:74:
        02:1d:00:84:fd:89:67:eb:51:84:b5:2f:ff:b5:66:9b:
        e3:e4:0a:80:e8:73:22:9e:69:d3:dd:af:19:7a:a8
    Fingerprint (SHA-256):
        DB:FA:73:57:5C:24:F6:59:FB:7F:9D:BB:D5:1E:5F:92:F0:55:70:84:89:90:F1:D3:2A:C3:B9:70:12:A2:BD:AC
    Fingerprint (SHA1):
        7E:70:FE:80:2D:5A:CD:90:9A:D1:CC:98:5C:09:80:03:7D:A1:26:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #4048: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4049: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4050: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4051: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4052: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4053: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4054: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4055: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4056: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4057: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4058: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4059: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4060: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4061: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4062: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4063: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #4064: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4065: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4066: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4067: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4068: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4069: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4070: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4071: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4072: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4073: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4074: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4075: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153109Z
nextupdate=20180502153109Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:31:09 2017
    Next Update: Wed May 02 15:31:09 2018
    CRL Extensions:
chains.sh: #4076: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153109Z
nextupdate=20180502153109Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:31:09 2017
    Next Update: Wed May 02 15:31:09 2018
    CRL Extensions:
chains.sh: #4077: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153109Z
nextupdate=20180502153109Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:31:09 2017
    Next Update: Wed May 02 15:31:09 2018
    CRL Extensions:
chains.sh: #4078: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153109Z
nextupdate=20180502153109Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:31:09 2017
    Next Update: Wed May 02 15:31:09 2018
    CRL Extensions:
chains.sh: #4079: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153110Z
addcert 14 20170502153110Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:31:10 2017
    Next Update: Wed May 02 15:31:09 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:31:10 2017
    CRL Extensions:
chains.sh: #4080: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153111Z
addcert 15 20170502153111Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:31:11 2017
    Next Update: Wed May 02 15:31:09 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:31:11 2017
    CRL Extensions:
chains.sh: #4081: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4082: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4083: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4084: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #4085: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #4086: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #4087: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #4088: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #4089: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #4090: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:31:07 2017
            Not After : Mon May 02 15:31:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:e2:11:48:3a:14:f0:33:ef:97:6e:b1:34:5e:cf:dd:
                    6d:8f:3c:be:4f:11:d3:7d:5b:ce:7b:6e:be:3e:a3:a5:
                    b5:70:66:8a:56:85:49:a4:08:3c:aa:98:77:57:1e:ab:
                    14:f5:c8:ef:5e:04:fb:da:d4:a9:a9:2f:a5:3d:ad:22:
                    12:8c:0a:c5:bf:0d:80:29:f8:53:48:fc:72:3c:05:7a:
                    f6:a2:bd:10:1e:d3:9f:87:62:4c:fd:27:7e:6a:d8:1b:
                    ce:31:56:a1:2c:5b:c3:db:81:8e:b3:2c:69:f3:d0:59:
                    37:da:4f:92:5e:a9:cd:22:83:2c:be:60:9f:ca:29:6f:
                    5b:bc:0c:d4:e5:bf:dd:53:f8:6d:e9:0f:a2:88:84:d7:
                    d8:15:30:fe:ed:ec:0c:43:9a:1d:be:21:57:a8:d7:a7:
                    8d:0d:16:bf:79:48:e6:9b:27:e5:e7:b1:48:20:11:32:
                    06:ec:61:77:73:cd:24:a8:06:2b:a0:de:40:90:fa:32:
                    2c:db:da:04:70:82:92:17:1d:be:5a:7a:fc:62:2c:c4:
                    87:e6:f8:fc:e4:ed:84:e9:04:88:b3:e0:fa:20:f0:3f:
                    7f:9b:b1:37:80:1f:92:9a:63:a3:13:e9:12:e7:74:69:
                    51:fa:1a:84:ac:c7:41:88:80:ca:80:4f:c3:f0:9c:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:0c:1b:4e:19:d2:de:f4:5f:8d:0f:38:cf:96:48:9e:
        6b:3f:dc:73:c8:87:3c:8b:c9:1d:78:b5:d1:70:d7:b7:
        1a:f5:07:d9:0a:ee:62:89:a7:87:33:80:67:8b:7e:93:
        0e:79:7a:2e:78:0e:aa:7a:35:39:ce:92:07:e2:61:ef:
        5d:05:4e:fe:e9:f4:84:95:5b:10:dd:fd:89:3f:08:2f:
        be:66:16:da:5e:41:a1:a5:4b:a1:92:e0:5d:30:ba:9c:
        9d:12:64:f5:19:c2:9d:d3:3b:05:c1:ff:fc:eb:f6:d3:
        bd:06:f3:57:1e:20:e4:d2:d5:aa:89:36:e2:df:6a:12:
        52:7a:bd:e3:48:e4:dc:d5:72:62:b0:ca:10:d0:3d:a2:
        75:8f:8c:ec:f9:58:59:d6:eb:1b:c5:22:b6:7b:64:c5:
        04:79:a0:18:dc:fe:9f:44:b0:68:c7:0d:04:c3:f5:0c:
        97:dd:e7:5d:51:3b:cd:9b:53:21:7f:c6:07:04:18:75:
        00:bc:67:8b:d6:73:a5:10:2d:88:0f:96:e7:61:19:f1:
        82:9b:94:cf:25:6a:9f:76:0c:71:30:94:9a:db:45:cd:
        8d:fa:72:07:6f:ab:03:9c:81:b3:68:8a:ec:7c:0b:14:
        6e:ed:57:91:9c:2d:96:ed:ef:ea:0d:8f:8b:16:6e:ff
    Fingerprint (SHA-256):
        6C:85:5A:B2:1C:9F:1D:ED:5E:DF:A1:40:0D:F9:8F:05:91:73:DE:9F:81:C1:CF:CE:7C:82:F0:6A:B5:3A:4D:F8
    Fingerprint (SHA1):
        6A:58:31:83:E9:55:77:8C:47:B4:63:EF:28:4A:DE:6C:95:B9:10:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4091: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4092: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:31:07 2017
            Not After : Mon May 02 15:31:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:e2:11:48:3a:14:f0:33:ef:97:6e:b1:34:5e:cf:dd:
                    6d:8f:3c:be:4f:11:d3:7d:5b:ce:7b:6e:be:3e:a3:a5:
                    b5:70:66:8a:56:85:49:a4:08:3c:aa:98:77:57:1e:ab:
                    14:f5:c8:ef:5e:04:fb:da:d4:a9:a9:2f:a5:3d:ad:22:
                    12:8c:0a:c5:bf:0d:80:29:f8:53:48:fc:72:3c:05:7a:
                    f6:a2:bd:10:1e:d3:9f:87:62:4c:fd:27:7e:6a:d8:1b:
                    ce:31:56:a1:2c:5b:c3:db:81:8e:b3:2c:69:f3:d0:59:
                    37:da:4f:92:5e:a9:cd:22:83:2c:be:60:9f:ca:29:6f:
                    5b:bc:0c:d4:e5:bf:dd:53:f8:6d:e9:0f:a2:88:84:d7:
                    d8:15:30:fe:ed:ec:0c:43:9a:1d:be:21:57:a8:d7:a7:
                    8d:0d:16:bf:79:48:e6:9b:27:e5:e7:b1:48:20:11:32:
                    06:ec:61:77:73:cd:24:a8:06:2b:a0:de:40:90:fa:32:
                    2c:db:da:04:70:82:92:17:1d:be:5a:7a:fc:62:2c:c4:
                    87:e6:f8:fc:e4:ed:84:e9:04:88:b3:e0:fa:20:f0:3f:
                    7f:9b:b1:37:80:1f:92:9a:63:a3:13:e9:12:e7:74:69:
                    51:fa:1a:84:ac:c7:41:88:80:ca:80:4f:c3:f0:9c:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:0c:1b:4e:19:d2:de:f4:5f:8d:0f:38:cf:96:48:9e:
        6b:3f:dc:73:c8:87:3c:8b:c9:1d:78:b5:d1:70:d7:b7:
        1a:f5:07:d9:0a:ee:62:89:a7:87:33:80:67:8b:7e:93:
        0e:79:7a:2e:78:0e:aa:7a:35:39:ce:92:07:e2:61:ef:
        5d:05:4e:fe:e9:f4:84:95:5b:10:dd:fd:89:3f:08:2f:
        be:66:16:da:5e:41:a1:a5:4b:a1:92:e0:5d:30:ba:9c:
        9d:12:64:f5:19:c2:9d:d3:3b:05:c1:ff:fc:eb:f6:d3:
        bd:06:f3:57:1e:20:e4:d2:d5:aa:89:36:e2:df:6a:12:
        52:7a:bd:e3:48:e4:dc:d5:72:62:b0:ca:10:d0:3d:a2:
        75:8f:8c:ec:f9:58:59:d6:eb:1b:c5:22:b6:7b:64:c5:
        04:79:a0:18:dc:fe:9f:44:b0:68:c7:0d:04:c3:f5:0c:
        97:dd:e7:5d:51:3b:cd:9b:53:21:7f:c6:07:04:18:75:
        00:bc:67:8b:d6:73:a5:10:2d:88:0f:96:e7:61:19:f1:
        82:9b:94:cf:25:6a:9f:76:0c:71:30:94:9a:db:45:cd:
        8d:fa:72:07:6f:ab:03:9c:81:b3:68:8a:ec:7c:0b:14:
        6e:ed:57:91:9c:2d:96:ed:ef:ea:0d:8f:8b:16:6e:ff
    Fingerprint (SHA-256):
        6C:85:5A:B2:1C:9F:1D:ED:5E:DF:A1:40:0D:F9:8F:05:91:73:DE:9F:81:C1:CF:CE:7C:82:F0:6A:B5:3A:4D:F8
    Fingerprint (SHA1):
        6A:58:31:83:E9:55:77:8C:47:B4:63:EF:28:4A:DE:6C:95:B9:10:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4093: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4094: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4095: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153190 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4096: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4097: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4098: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4099: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502153191   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4100: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4101: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4102: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152962.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4103: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502152936.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4104: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4105: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4106: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152962.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4107: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502153192   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4108: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4109: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4110: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152962.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4111: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502152937.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4112: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4113: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4114: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4115: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502153193   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4116: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4117: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4118: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152962.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4119: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502152938.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4120: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4121: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4122: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502152962.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4123: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502152939.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4124: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4125: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153114Z
nextupdate=20180502153114Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:31:14 2017
    Next Update: Wed May 02 15:31:14 2018
    CRL Extensions:
chains.sh: #4126: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153114Z
nextupdate=20180502153114Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:31:14 2017
    Next Update: Wed May 02 15:31:14 2018
    CRL Extensions:
chains.sh: #4127: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153114Z
nextupdate=20180502153114Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:31:14 2017
    Next Update: Wed May 02 15:31:14 2018
    CRL Extensions:
chains.sh: #4128: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153114Z
nextupdate=20180502153114Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:31:14 2017
    Next Update: Wed May 02 15:31:14 2018
    CRL Extensions:
chains.sh: #4129: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153115Z
addcert 20 20170502153115Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:31:15 2017
    Next Update: Wed May 02 15:31:14 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:31:15 2017
    CRL Extensions:
chains.sh: #4130: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153116Z
addcert 40 20170502153116Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:31:16 2017
    Next Update: Wed May 02 15:31:14 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:31:15 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:31:16 2017
    CRL Extensions:
chains.sh: #4131: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4132: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4133: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4134: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153190 (0x1dee3fe6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:31:12 2017
            Not After : Mon May 02 15:31:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:16:08:fb:53:a8:0f:af:fc:e7:b5:11:1e:4e:f3:d6:
                    f8:e2:56:d5:32:fb:fb:97:07:6a:22:ce:b4:9b:17:59:
                    80:92:81:4f:09:d8:d9:32:88:36:8f:43:df:fc:bb:37:
                    88:a4:9b:f2:8b:2f:39:80:17:b3:5f:d8:f4:97:38:b5:
                    86:f5:0d:29:78:e6:a5:df:3a:3b:78:00:cd:69:ac:96:
                    73:f1:85:c2:ae:2b:c5:c0:15:b8:81:b6:53:e3:c3:84:
                    96:63:6e:a1:99:58:38:a3:1f:5b:4d:58:ad:3a:f9:bc:
                    ce:86:73:64:1d:20:45:97:1f:bd:f6:92:96:86:eb:bd:
                    9d:92:ff:05:bc:24:ae:e8:fc:8c:70:a3:fe:de:3e:19:
                    18:b9:70:f4:b7:0b:c4:a5:31:06:f0:0e:ee:71:86:1f:
                    cb:6b:b2:74:cd:e4:c8:e7:a1:7d:c2:f5:2b:1a:80:60:
                    14:c1:9d:bc:ac:75:1c:ce:3a:c1:91:e9:c5:0c:ce:4a:
                    58:0a:e0:51:57:78:ed:a9:48:ae:2d:53:6c:e8:60:31:
                    6b:2f:3b:d1:99:d3:fb:4e:97:a9:59:b6:fa:04:95:47:
                    a5:b1:2d:63:96:f4:59:f2:c1:37:e2:a4:de:ce:51:4f:
                    11:6f:da:6a:25:28:e7:cc:e0:c3:6a:b8:57:87:84:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:2b:68:c4:81:71:64:0a:c1:9f:f2:ae:a2:95:e7:3c:
        1f:90:b8:a5:1c:ca:cf:cc:15:3d:4f:6f:88:b4:26:bc:
        43:0d:ab:4d:da:7c:46:39:89:59:44:e7:b1:25:d2:83:
        36:f6:d0:6d:1b:a1:2e:61:e5:e5:e0:5d:11:50:52:06:
        8c:20:fd:98:45:0d:3e:b5:ac:1c:94:62:62:02:1c:de:
        fa:f7:5f:76:ba:d5:ae:5f:10:3b:33:2c:2f:c8:7d:98:
        1c:ec:15:a1:ef:4c:62:62:8d:dd:b4:88:fd:f9:56:a9:
        5c:11:2a:b2:c7:56:a4:83:28:25:dd:4a:77:17:ce:73:
        80:1d:a9:70:e1:39:2b:b8:b4:11:5c:01:b0:f6:ee:88:
        9f:ea:fc:58:68:93:36:4a:51:7c:cd:02:d9:54:c6:65:
        2c:a8:d4:78:d4:cb:57:38:7c:0d:fa:13:90:ee:a6:b6:
        f3:2c:a5:36:e1:26:f9:70:a6:a1:42:1a:fb:36:e8:45:
        ed:53:4c:a2:20:8f:1d:cd:09:08:f1:29:59:cc:6a:67:
        64:cf:d4:d9:49:2f:de:4b:8e:48:36:08:d4:7f:78:55:
        1a:4f:91:21:aa:7a:57:1c:16:c3:d2:5c:02:e1:af:cb:
        7d:e2:b2:c5:9c:c3:7d:73:f6:a7:74:70:19:a9:b8:c6
    Fingerprint (SHA-256):
        57:3E:B7:B2:3B:D8:43:EC:0B:C7:C7:16:95:CA:6B:3D:9D:EA:CE:9A:19:08:95:D0:DF:07:7A:54:41:CB:4D:E2
    Fingerprint (SHA1):
        58:6F:54:F5:D5:A6:01:87:91:7C:29:BA:E2:1B:59:CF:1D:A8:66:70
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4135: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4136: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153190 (0x1dee3fe6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:31:12 2017
            Not After : Mon May 02 15:31:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:16:08:fb:53:a8:0f:af:fc:e7:b5:11:1e:4e:f3:d6:
                    f8:e2:56:d5:32:fb:fb:97:07:6a:22:ce:b4:9b:17:59:
                    80:92:81:4f:09:d8:d9:32:88:36:8f:43:df:fc:bb:37:
                    88:a4:9b:f2:8b:2f:39:80:17:b3:5f:d8:f4:97:38:b5:
                    86:f5:0d:29:78:e6:a5:df:3a:3b:78:00:cd:69:ac:96:
                    73:f1:85:c2:ae:2b:c5:c0:15:b8:81:b6:53:e3:c3:84:
                    96:63:6e:a1:99:58:38:a3:1f:5b:4d:58:ad:3a:f9:bc:
                    ce:86:73:64:1d:20:45:97:1f:bd:f6:92:96:86:eb:bd:
                    9d:92:ff:05:bc:24:ae:e8:fc:8c:70:a3:fe:de:3e:19:
                    18:b9:70:f4:b7:0b:c4:a5:31:06:f0:0e:ee:71:86:1f:
                    cb:6b:b2:74:cd:e4:c8:e7:a1:7d:c2:f5:2b:1a:80:60:
                    14:c1:9d:bc:ac:75:1c:ce:3a:c1:91:e9:c5:0c:ce:4a:
                    58:0a:e0:51:57:78:ed:a9:48:ae:2d:53:6c:e8:60:31:
                    6b:2f:3b:d1:99:d3:fb:4e:97:a9:59:b6:fa:04:95:47:
                    a5:b1:2d:63:96:f4:59:f2:c1:37:e2:a4:de:ce:51:4f:
                    11:6f:da:6a:25:28:e7:cc:e0:c3:6a:b8:57:87:84:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:2b:68:c4:81:71:64:0a:c1:9f:f2:ae:a2:95:e7:3c:
        1f:90:b8:a5:1c:ca:cf:cc:15:3d:4f:6f:88:b4:26:bc:
        43:0d:ab:4d:da:7c:46:39:89:59:44:e7:b1:25:d2:83:
        36:f6:d0:6d:1b:a1:2e:61:e5:e5:e0:5d:11:50:52:06:
        8c:20:fd:98:45:0d:3e:b5:ac:1c:94:62:62:02:1c:de:
        fa:f7:5f:76:ba:d5:ae:5f:10:3b:33:2c:2f:c8:7d:98:
        1c:ec:15:a1:ef:4c:62:62:8d:dd:b4:88:fd:f9:56:a9:
        5c:11:2a:b2:c7:56:a4:83:28:25:dd:4a:77:17:ce:73:
        80:1d:a9:70:e1:39:2b:b8:b4:11:5c:01:b0:f6:ee:88:
        9f:ea:fc:58:68:93:36:4a:51:7c:cd:02:d9:54:c6:65:
        2c:a8:d4:78:d4:cb:57:38:7c:0d:fa:13:90:ee:a6:b6:
        f3:2c:a5:36:e1:26:f9:70:a6:a1:42:1a:fb:36:e8:45:
        ed:53:4c:a2:20:8f:1d:cd:09:08:f1:29:59:cc:6a:67:
        64:cf:d4:d9:49:2f:de:4b:8e:48:36:08:d4:7f:78:55:
        1a:4f:91:21:aa:7a:57:1c:16:c3:d2:5c:02:e1:af:cb:
        7d:e2:b2:c5:9c:c3:7d:73:f6:a7:74:70:19:a9:b8:c6
    Fingerprint (SHA-256):
        57:3E:B7:B2:3B:D8:43:EC:0B:C7:C7:16:95:CA:6B:3D:9D:EA:CE:9A:19:08:95:D0:DF:07:7A:54:41:CB:4D:E2
    Fingerprint (SHA1):
        58:6F:54:F5:D5:A6:01:87:91:7C:29:BA:E2:1B:59:CF:1D:A8:66:70
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4137: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4138: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #4139: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153194 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4140: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #4141: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4142: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4143: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153195   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4144: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4145: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4146: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4147: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153196   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4148: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4149: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4150: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4151: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502153197   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4152: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4153: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #4154: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153198 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4155: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #4156: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #4157: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4158: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502153199   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4159: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4160: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4161: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4162: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502153200   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4163: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4164: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #4165: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #4166: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #4167: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153194 (0x1dee3fea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:31:16 2017
            Not After : Mon May 02 15:31:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:ef:c3:34:1c:b1:18:68:ac:e5:0e:54:78:45:b1:26:
                    71:77:6b:87:c3:79:77:12:8d:9c:11:04:a9:4a:60:c7:
                    e5:7f:de:8b:86:7c:b6:17:40:5f:02:72:38:b2:fe:12:
                    6a:b3:8a:b8:9e:c2:44:44:ba:a8:c3:dd:d3:fd:d1:8c:
                    8b:33:0f:2b:a7:47:60:08:9e:cc:49:56:b3:f8:e8:b0:
                    ee:bd:96:7f:bb:23:82:4d:c9:50:f0:10:33:c1:94:34:
                    63:f0:cb:38:4c:89:2b:4e:c9:d4:8c:85:09:19:04:25:
                    4c:b1:73:d3:cc:69:fc:bb:65:9d:05:41:6b:aa:ab:aa:
                    ad:26:af:fb:08:0a:5a:f2:ca:b4:cb:1b:6b:73:3c:99:
                    fa:75:43:67:cb:4c:bc:70:13:99:83:10:4d:ff:78:da:
                    ce:78:09:20:6c:ec:82:2b:62:bc:40:26:4c:a8:85:6c:
                    03:a4:0b:0a:1b:bc:5f:a6:db:bd:45:0b:1a:0a:b0:ff:
                    23:87:87:b6:17:98:12:ee:4c:e1:b1:02:f9:bb:f8:e1:
                    1d:c1:bd:53:3e:9d:f7:a3:e1:5d:b0:87:e6:7f:4c:e6:
                    5c:3f:6b:76:ed:f9:7b:32:dd:67:62:0d:ca:84:ce:e4:
                    ac:5c:89:1c:38:e5:4e:f9:bc:74:d2:0b:af:85:73:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:57:e8:ed:a6:eb:3c:26:bd:b9:08:74:99:e3:a9:7d:
        b8:ff:79:65:4f:47:84:28:4d:59:11:30:aa:81:f1:63:
        36:e7:35:6c:eb:d2:2a:20:d3:9a:dc:2c:b3:5a:d9:fa:
        cc:9f:dc:76:40:24:eb:6e:ea:54:7f:23:15:64:66:ed:
        ee:b0:c3:39:f9:80:7b:ca:04:a5:85:51:97:ac:d7:dd:
        01:04:93:a4:d0:4f:26:e8:42:b2:5e:16:67:6b:a1:1f:
        c8:11:51:ea:4f:50:37:15:a2:6e:7e:a2:1e:78:84:85:
        8d:18:6d:36:68:f8:fa:73:52:91:6c:53:6e:28:3a:96:
        11:b5:0b:3c:23:0a:b4:62:5a:f7:bb:db:02:e8:ae:9b:
        ef:87:97:f6:09:29:af:3a:95:96:5e:1f:51:20:0c:37:
        af:2f:f3:85:37:64:51:28:f5:08:f7:7c:c3:36:6a:44:
        7f:de:8c:af:fe:49:10:75:bf:9d:44:42:bf:cc:16:b3:
        50:07:e1:98:c9:34:df:d8:39:bd:2c:9f:d7:aa:62:a5:
        aa:d1:ea:2b:3a:b5:75:94:fa:c6:0a:2f:0c:80:03:0c:
        0b:6b:9c:ad:0f:23:36:d4:6f:db:e4:5a:c8:5c:8a:94:
        b8:18:b4:bf:2c:96:a1:25:65:5b:03:2b:c4:6e:c6:95
    Fingerprint (SHA-256):
        A6:5E:1E:7E:2F:80:61:5F:CF:60:CD:2F:50:6C:5C:FB:AB:04:E9:74:F5:61:5F:B0:FB:51:B4:47:97:97:DB:86
    Fingerprint (SHA1):
        1B:0E:61:B4:4B:89:4C:E5:69:0E:BC:8B:6B:45:B4:1F:03:6D:57:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4168: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153196 (0x1dee3fec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:31:17 2017
            Not After : Mon May 02 15:31:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:00:a8:f9:7c:d3:39:41:0b:08:10:04:ca:24:43:0f:
                    a8:28:77:be:24:cb:21:f7:48:41:d1:82:fc:3b:17:68:
                    93:ab:39:e4:c3:bd:c6:45:f6:57:58:f8:5b:2c:a5:ac:
                    df:18:92:96:a8:f5:eb:0d:21:4a:3a:e2:74:c7:01:fe:
                    55:ec:c1:5e:3f:35:a7:6d:f6:e7:9f:b0:d3:88:e9:b4:
                    fa:14:40:76:1d:8b:16:3e:37:94:76:e2:ba:ba:00:1f:
                    06:37:02:27:bb:d9:68:69:57:0d:4a:91:9f:ac:38:8d:
                    06:80:59:16:60:cf:84:ea:5f:00:98:df:59:d4:52:83:
                    ac:7b:d4:68:56:e7:f3:b3:39:e3:6c:1c:72:83:f0:87:
                    26:05:37:40:00:65:78:54:31:5f:b6:47:c5:23:99:5e:
                    0a:d4:12:c6:a7:13:a2:5c:7d:62:79:72:94:1e:7d:7b:
                    cd:c8:4d:f3:f5:c1:e3:cd:7f:ef:67:70:30:47:ef:1e:
                    68:6f:73:82:1b:c4:1e:2d:5f:93:81:0e:a0:4d:5f:c3:
                    6d:a8:ee:d5:01:27:18:bb:b4:53:23:2e:14:15:40:2b:
                    64:8a:ef:57:e2:1d:0e:ef:cf:5f:58:d4:53:f9:9f:fa:
                    fd:76:1a:ef:ab:69:b7:e6:38:e0:50:8c:25:51:13:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:26:0f:f8:ef:50:c7:e9:7d:60:e3:f2:a8:f4:05:46:
        22:98:15:4a:db:42:23:e6:3a:88:1f:c8:4e:98:40:7c:
        32:24:73:62:b2:9a:30:d0:5c:19:0a:59:76:2c:13:a4:
        53:a7:51:56:d0:8f:37:ea:12:86:a5:d8:4e:17:bc:e2:
        89:1b:86:e1:b3:13:e7:64:29:c5:a3:e9:2a:6c:63:c4:
        62:bf:70:9d:ed:c6:fc:5e:29:fb:d6:50:b8:cc:b3:81:
        08:12:e0:d7:b6:6a:2e:79:e9:61:f7:2f:58:2d:50:e1:
        60:8b:63:31:7e:17:83:e7:3a:22:3e:4e:52:9a:83:95:
        62:72:69:95:1d:f9:c8:75:29:24:2c:ab:e4:3c:e8:f8:
        07:d3:6f:6e:0a:64:f2:d0:c3:c5:97:f9:5c:a1:e4:5d:
        66:d8:72:64:91:3c:cd:bb:95:81:70:dd:79:d0:ab:9f:
        e4:20:42:3f:2a:d1:26:21:19:da:d8:c0:8e:45:55:58:
        7e:eb:ca:63:91:2d:30:c4:fc:4b:c1:f6:bf:e3:c1:21:
        d3:83:6d:d7:b1:15:42:1c:52:79:27:9d:fd:b8:4d:c6:
        7c:36:ba:bf:e9:1a:36:b9:a3:47:91:ad:2b:7d:0f:26:
        8e:76:ea:0e:63:9d:44:ce:16:75:9f:41:6a:8e:8a:f6
    Fingerprint (SHA-256):
        02:5B:9C:47:19:B6:EA:ED:99:36:FB:75:7B:CA:01:F5:0C:6F:A6:50:33:02:D3:5F:42:36:30:E0:E1:F8:13:54
    Fingerprint (SHA1):
        1A:5D:65:96:A7:27:E4:5D:14:1E:B0:A5:84:63:AB:31:80:AA:C2:6F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4169: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153194 (0x1dee3fea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:31:16 2017
            Not After : Mon May 02 15:31:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:ef:c3:34:1c:b1:18:68:ac:e5:0e:54:78:45:b1:26:
                    71:77:6b:87:c3:79:77:12:8d:9c:11:04:a9:4a:60:c7:
                    e5:7f:de:8b:86:7c:b6:17:40:5f:02:72:38:b2:fe:12:
                    6a:b3:8a:b8:9e:c2:44:44:ba:a8:c3:dd:d3:fd:d1:8c:
                    8b:33:0f:2b:a7:47:60:08:9e:cc:49:56:b3:f8:e8:b0:
                    ee:bd:96:7f:bb:23:82:4d:c9:50:f0:10:33:c1:94:34:
                    63:f0:cb:38:4c:89:2b:4e:c9:d4:8c:85:09:19:04:25:
                    4c:b1:73:d3:cc:69:fc:bb:65:9d:05:41:6b:aa:ab:aa:
                    ad:26:af:fb:08:0a:5a:f2:ca:b4:cb:1b:6b:73:3c:99:
                    fa:75:43:67:cb:4c:bc:70:13:99:83:10:4d:ff:78:da:
                    ce:78:09:20:6c:ec:82:2b:62:bc:40:26:4c:a8:85:6c:
                    03:a4:0b:0a:1b:bc:5f:a6:db:bd:45:0b:1a:0a:b0:ff:
                    23:87:87:b6:17:98:12:ee:4c:e1:b1:02:f9:bb:f8:e1:
                    1d:c1:bd:53:3e:9d:f7:a3:e1:5d:b0:87:e6:7f:4c:e6:
                    5c:3f:6b:76:ed:f9:7b:32:dd:67:62:0d:ca:84:ce:e4:
                    ac:5c:89:1c:38:e5:4e:f9:bc:74:d2:0b:af:85:73:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:57:e8:ed:a6:eb:3c:26:bd:b9:08:74:99:e3:a9:7d:
        b8:ff:79:65:4f:47:84:28:4d:59:11:30:aa:81:f1:63:
        36:e7:35:6c:eb:d2:2a:20:d3:9a:dc:2c:b3:5a:d9:fa:
        cc:9f:dc:76:40:24:eb:6e:ea:54:7f:23:15:64:66:ed:
        ee:b0:c3:39:f9:80:7b:ca:04:a5:85:51:97:ac:d7:dd:
        01:04:93:a4:d0:4f:26:e8:42:b2:5e:16:67:6b:a1:1f:
        c8:11:51:ea:4f:50:37:15:a2:6e:7e:a2:1e:78:84:85:
        8d:18:6d:36:68:f8:fa:73:52:91:6c:53:6e:28:3a:96:
        11:b5:0b:3c:23:0a:b4:62:5a:f7:bb:db:02:e8:ae:9b:
        ef:87:97:f6:09:29:af:3a:95:96:5e:1f:51:20:0c:37:
        af:2f:f3:85:37:64:51:28:f5:08:f7:7c:c3:36:6a:44:
        7f:de:8c:af:fe:49:10:75:bf:9d:44:42:bf:cc:16:b3:
        50:07:e1:98:c9:34:df:d8:39:bd:2c:9f:d7:aa:62:a5:
        aa:d1:ea:2b:3a:b5:75:94:fa:c6:0a:2f:0c:80:03:0c:
        0b:6b:9c:ad:0f:23:36:d4:6f:db:e4:5a:c8:5c:8a:94:
        b8:18:b4:bf:2c:96:a1:25:65:5b:03:2b:c4:6e:c6:95
    Fingerprint (SHA-256):
        A6:5E:1E:7E:2F:80:61:5F:CF:60:CD:2F:50:6C:5C:FB:AB:04:E9:74:F5:61:5F:B0:FB:51:B4:47:97:97:DB:86
    Fingerprint (SHA1):
        1B:0E:61:B4:4B:89:4C:E5:69:0E:BC:8B:6B:45:B4:1F:03:6D:57:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4170: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #4171: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153194 (0x1dee3fea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:31:16 2017
            Not After : Mon May 02 15:31:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:ef:c3:34:1c:b1:18:68:ac:e5:0e:54:78:45:b1:26:
                    71:77:6b:87:c3:79:77:12:8d:9c:11:04:a9:4a:60:c7:
                    e5:7f:de:8b:86:7c:b6:17:40:5f:02:72:38:b2:fe:12:
                    6a:b3:8a:b8:9e:c2:44:44:ba:a8:c3:dd:d3:fd:d1:8c:
                    8b:33:0f:2b:a7:47:60:08:9e:cc:49:56:b3:f8:e8:b0:
                    ee:bd:96:7f:bb:23:82:4d:c9:50:f0:10:33:c1:94:34:
                    63:f0:cb:38:4c:89:2b:4e:c9:d4:8c:85:09:19:04:25:
                    4c:b1:73:d3:cc:69:fc:bb:65:9d:05:41:6b:aa:ab:aa:
                    ad:26:af:fb:08:0a:5a:f2:ca:b4:cb:1b:6b:73:3c:99:
                    fa:75:43:67:cb:4c:bc:70:13:99:83:10:4d:ff:78:da:
                    ce:78:09:20:6c:ec:82:2b:62:bc:40:26:4c:a8:85:6c:
                    03:a4:0b:0a:1b:bc:5f:a6:db:bd:45:0b:1a:0a:b0:ff:
                    23:87:87:b6:17:98:12:ee:4c:e1:b1:02:f9:bb:f8:e1:
                    1d:c1:bd:53:3e:9d:f7:a3:e1:5d:b0:87:e6:7f:4c:e6:
                    5c:3f:6b:76:ed:f9:7b:32:dd:67:62:0d:ca:84:ce:e4:
                    ac:5c:89:1c:38:e5:4e:f9:bc:74:d2:0b:af:85:73:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:57:e8:ed:a6:eb:3c:26:bd:b9:08:74:99:e3:a9:7d:
        b8:ff:79:65:4f:47:84:28:4d:59:11:30:aa:81:f1:63:
        36:e7:35:6c:eb:d2:2a:20:d3:9a:dc:2c:b3:5a:d9:fa:
        cc:9f:dc:76:40:24:eb:6e:ea:54:7f:23:15:64:66:ed:
        ee:b0:c3:39:f9:80:7b:ca:04:a5:85:51:97:ac:d7:dd:
        01:04:93:a4:d0:4f:26:e8:42:b2:5e:16:67:6b:a1:1f:
        c8:11:51:ea:4f:50:37:15:a2:6e:7e:a2:1e:78:84:85:
        8d:18:6d:36:68:f8:fa:73:52:91:6c:53:6e:28:3a:96:
        11:b5:0b:3c:23:0a:b4:62:5a:f7:bb:db:02:e8:ae:9b:
        ef:87:97:f6:09:29:af:3a:95:96:5e:1f:51:20:0c:37:
        af:2f:f3:85:37:64:51:28:f5:08:f7:7c:c3:36:6a:44:
        7f:de:8c:af:fe:49:10:75:bf:9d:44:42:bf:cc:16:b3:
        50:07:e1:98:c9:34:df:d8:39:bd:2c:9f:d7:aa:62:a5:
        aa:d1:ea:2b:3a:b5:75:94:fa:c6:0a:2f:0c:80:03:0c:
        0b:6b:9c:ad:0f:23:36:d4:6f:db:e4:5a:c8:5c:8a:94:
        b8:18:b4:bf:2c:96:a1:25:65:5b:03:2b:c4:6e:c6:95
    Fingerprint (SHA-256):
        A6:5E:1E:7E:2F:80:61:5F:CF:60:CD:2F:50:6C:5C:FB:AB:04:E9:74:F5:61:5F:B0:FB:51:B4:47:97:97:DB:86
    Fingerprint (SHA1):
        1B:0E:61:B4:4B:89:4C:E5:69:0E:BC:8B:6B:45:B4:1F:03:6D:57:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4172: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153196 (0x1dee3fec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:31:17 2017
            Not After : Mon May 02 15:31:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:00:a8:f9:7c:d3:39:41:0b:08:10:04:ca:24:43:0f:
                    a8:28:77:be:24:cb:21:f7:48:41:d1:82:fc:3b:17:68:
                    93:ab:39:e4:c3:bd:c6:45:f6:57:58:f8:5b:2c:a5:ac:
                    df:18:92:96:a8:f5:eb:0d:21:4a:3a:e2:74:c7:01:fe:
                    55:ec:c1:5e:3f:35:a7:6d:f6:e7:9f:b0:d3:88:e9:b4:
                    fa:14:40:76:1d:8b:16:3e:37:94:76:e2:ba:ba:00:1f:
                    06:37:02:27:bb:d9:68:69:57:0d:4a:91:9f:ac:38:8d:
                    06:80:59:16:60:cf:84:ea:5f:00:98:df:59:d4:52:83:
                    ac:7b:d4:68:56:e7:f3:b3:39:e3:6c:1c:72:83:f0:87:
                    26:05:37:40:00:65:78:54:31:5f:b6:47:c5:23:99:5e:
                    0a:d4:12:c6:a7:13:a2:5c:7d:62:79:72:94:1e:7d:7b:
                    cd:c8:4d:f3:f5:c1:e3:cd:7f:ef:67:70:30:47:ef:1e:
                    68:6f:73:82:1b:c4:1e:2d:5f:93:81:0e:a0:4d:5f:c3:
                    6d:a8:ee:d5:01:27:18:bb:b4:53:23:2e:14:15:40:2b:
                    64:8a:ef:57:e2:1d:0e:ef:cf:5f:58:d4:53:f9:9f:fa:
                    fd:76:1a:ef:ab:69:b7:e6:38:e0:50:8c:25:51:13:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:26:0f:f8:ef:50:c7:e9:7d:60:e3:f2:a8:f4:05:46:
        22:98:15:4a:db:42:23:e6:3a:88:1f:c8:4e:98:40:7c:
        32:24:73:62:b2:9a:30:d0:5c:19:0a:59:76:2c:13:a4:
        53:a7:51:56:d0:8f:37:ea:12:86:a5:d8:4e:17:bc:e2:
        89:1b:86:e1:b3:13:e7:64:29:c5:a3:e9:2a:6c:63:c4:
        62:bf:70:9d:ed:c6:fc:5e:29:fb:d6:50:b8:cc:b3:81:
        08:12:e0:d7:b6:6a:2e:79:e9:61:f7:2f:58:2d:50:e1:
        60:8b:63:31:7e:17:83:e7:3a:22:3e:4e:52:9a:83:95:
        62:72:69:95:1d:f9:c8:75:29:24:2c:ab:e4:3c:e8:f8:
        07:d3:6f:6e:0a:64:f2:d0:c3:c5:97:f9:5c:a1:e4:5d:
        66:d8:72:64:91:3c:cd:bb:95:81:70:dd:79:d0:ab:9f:
        e4:20:42:3f:2a:d1:26:21:19:da:d8:c0:8e:45:55:58:
        7e:eb:ca:63:91:2d:30:c4:fc:4b:c1:f6:bf:e3:c1:21:
        d3:83:6d:d7:b1:15:42:1c:52:79:27:9d:fd:b8:4d:c6:
        7c:36:ba:bf:e9:1a:36:b9:a3:47:91:ad:2b:7d:0f:26:
        8e:76:ea:0e:63:9d:44:ce:16:75:9f:41:6a:8e:8a:f6
    Fingerprint (SHA-256):
        02:5B:9C:47:19:B6:EA:ED:99:36:FB:75:7B:CA:01:F5:0C:6F:A6:50:33:02:D3:5F:42:36:30:E0:E1:F8:13:54
    Fingerprint (SHA1):
        1A:5D:65:96:A7:27:E4:5D:14:1E:B0:A5:84:63:AB:31:80:AA:C2:6F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4173: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #4174: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #4175: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #4176: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153194 (0x1dee3fea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:31:16 2017
            Not After : Mon May 02 15:31:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:ef:c3:34:1c:b1:18:68:ac:e5:0e:54:78:45:b1:26:
                    71:77:6b:87:c3:79:77:12:8d:9c:11:04:a9:4a:60:c7:
                    e5:7f:de:8b:86:7c:b6:17:40:5f:02:72:38:b2:fe:12:
                    6a:b3:8a:b8:9e:c2:44:44:ba:a8:c3:dd:d3:fd:d1:8c:
                    8b:33:0f:2b:a7:47:60:08:9e:cc:49:56:b3:f8:e8:b0:
                    ee:bd:96:7f:bb:23:82:4d:c9:50:f0:10:33:c1:94:34:
                    63:f0:cb:38:4c:89:2b:4e:c9:d4:8c:85:09:19:04:25:
                    4c:b1:73:d3:cc:69:fc:bb:65:9d:05:41:6b:aa:ab:aa:
                    ad:26:af:fb:08:0a:5a:f2:ca:b4:cb:1b:6b:73:3c:99:
                    fa:75:43:67:cb:4c:bc:70:13:99:83:10:4d:ff:78:da:
                    ce:78:09:20:6c:ec:82:2b:62:bc:40:26:4c:a8:85:6c:
                    03:a4:0b:0a:1b:bc:5f:a6:db:bd:45:0b:1a:0a:b0:ff:
                    23:87:87:b6:17:98:12:ee:4c:e1:b1:02:f9:bb:f8:e1:
                    1d:c1:bd:53:3e:9d:f7:a3:e1:5d:b0:87:e6:7f:4c:e6:
                    5c:3f:6b:76:ed:f9:7b:32:dd:67:62:0d:ca:84:ce:e4:
                    ac:5c:89:1c:38:e5:4e:f9:bc:74:d2:0b:af:85:73:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:57:e8:ed:a6:eb:3c:26:bd:b9:08:74:99:e3:a9:7d:
        b8:ff:79:65:4f:47:84:28:4d:59:11:30:aa:81:f1:63:
        36:e7:35:6c:eb:d2:2a:20:d3:9a:dc:2c:b3:5a:d9:fa:
        cc:9f:dc:76:40:24:eb:6e:ea:54:7f:23:15:64:66:ed:
        ee:b0:c3:39:f9:80:7b:ca:04:a5:85:51:97:ac:d7:dd:
        01:04:93:a4:d0:4f:26:e8:42:b2:5e:16:67:6b:a1:1f:
        c8:11:51:ea:4f:50:37:15:a2:6e:7e:a2:1e:78:84:85:
        8d:18:6d:36:68:f8:fa:73:52:91:6c:53:6e:28:3a:96:
        11:b5:0b:3c:23:0a:b4:62:5a:f7:bb:db:02:e8:ae:9b:
        ef:87:97:f6:09:29:af:3a:95:96:5e:1f:51:20:0c:37:
        af:2f:f3:85:37:64:51:28:f5:08:f7:7c:c3:36:6a:44:
        7f:de:8c:af:fe:49:10:75:bf:9d:44:42:bf:cc:16:b3:
        50:07:e1:98:c9:34:df:d8:39:bd:2c:9f:d7:aa:62:a5:
        aa:d1:ea:2b:3a:b5:75:94:fa:c6:0a:2f:0c:80:03:0c:
        0b:6b:9c:ad:0f:23:36:d4:6f:db:e4:5a:c8:5c:8a:94:
        b8:18:b4:bf:2c:96:a1:25:65:5b:03:2b:c4:6e:c6:95
    Fingerprint (SHA-256):
        A6:5E:1E:7E:2F:80:61:5F:CF:60:CD:2F:50:6C:5C:FB:AB:04:E9:74:F5:61:5F:B0:FB:51:B4:47:97:97:DB:86
    Fingerprint (SHA1):
        1B:0E:61:B4:4B:89:4C:E5:69:0E:BC:8B:6B:45:B4:1F:03:6D:57:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4177: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153198 (0x1dee3fee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:31:17 2017
            Not After : Mon May 02 15:31:17 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:63:03:c5:c9:28:64:c5:1b:a7:d8:d7:82:f9:96:b4:
                    d5:6c:25:71:fc:76:3f:ab:1c:71:72:8e:97:3c:01:40:
                    35:f5:46:de:2a:1a:92:93:d4:25:c2:d2:e3:10:f7:c1:
                    6a:d3:37:24:da:84:83:be:75:75:94:d5:6d:5d:9c:eb:
                    31:07:7c:2f:c8:77:e1:52:5c:54:77:33:04:a1:59:0c:
                    9c:a7:54:86:ec:cf:8e:13:49:fb:7a:5d:f4:d3:46:e2:
                    f4:f4:1d:80:30:ae:94:f7:4d:e6:cf:09:ef:fb:f6:f9:
                    68:f4:38:29:3d:cd:37:8d:33:c4:5b:fc:fb:d5:a3:cb:
                    2b:be:0d:61:aa:16:01:9b:63:09:f9:f3:5b:ac:08:a8:
                    a7:f0:b6:17:ae:4f:d8:bd:29:df:2e:8e:61:56:5d:53:
                    91:52:5d:a1:8e:31:a4:dd:14:d3:dd:54:7c:04:8a:6b:
                    db:51:31:c0:31:50:06:28:b6:bc:87:7e:fb:e5:02:72:
                    97:d5:ac:15:5e:98:3f:9d:7b:10:74:dd:7b:7b:8f:11:
                    55:5b:77:3c:42:6a:5d:41:44:55:2e:01:fb:c0:52:ec:
                    15:b2:df:07:7d:27:ec:c0:7c:f4:56:07:e0:43:e7:11:
                    9f:01:84:38:4b:f8:92:60:cf:a5:74:ac:ee:f7:ab:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:ca:ec:fe:7f:d2:f2:cd:22:cc:92:25:e9:99:c9:90:
        db:78:1b:74:17:3f:df:9c:14:20:4a:49:b7:9e:48:e0:
        1f:07:ef:a9:9e:d4:c4:4b:ef:88:b6:3c:b5:e8:39:e8:
        52:4b:6f:7c:6a:d6:05:e1:48:22:61:9c:d9:51:78:e6:
        00:2e:60:45:f0:cd:19:ef:62:23:68:69:eb:c2:94:5e:
        6c:d9:a1:98:33:16:e9:f3:97:8e:99:4c:50:8a:af:b9:
        83:59:d2:5f:01:f5:69:e2:5c:64:23:30:14:ea:61:2f:
        7a:96:b6:a0:7e:fb:4b:26:7d:c0:91:3e:ab:61:c9:7f:
        27:02:e7:c3:97:c5:34:e3:41:5d:08:ca:91:ef:7a:ea:
        c5:7d:82:b4:89:f5:c5:0a:d2:49:de:e4:ef:df:b1:ff:
        2e:7d:fe:84:3c:f0:11:b7:19:10:3a:5f:b8:f9:e8:ac:
        ee:89:04:15:7f:34:48:50:ec:9c:ab:71:e2:d5:c1:54:
        3a:95:78:5f:a1:0e:c9:59:d0:6f:28:2a:ee:f8:af:36:
        d8:34:5b:e1:d0:64:c5:3b:d9:02:e4:5d:f7:47:c0:56:
        ca:bd:39:2d:90:97:63:17:91:71:c9:80:4e:ac:5c:db:
        20:84:0f:2e:5e:10:d1:de:de:2e:e0:75:b1:c2:b1:d7
    Fingerprint (SHA-256):
        0C:FA:E5:31:9B:05:25:48:83:6E:0B:87:01:87:F2:5A:B0:E3:C8:1C:DF:B0:FF:41:1B:CD:E2:78:2A:C2:3B:43
    Fingerprint (SHA1):
        AC:22:0D:3D:AB:52:BD:D9:93:AD:81:46:AE:7B:17:FA:CC:9E:46:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #4178: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153194 (0x1dee3fea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:31:16 2017
            Not After : Mon May 02 15:31:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:ef:c3:34:1c:b1:18:68:ac:e5:0e:54:78:45:b1:26:
                    71:77:6b:87:c3:79:77:12:8d:9c:11:04:a9:4a:60:c7:
                    e5:7f:de:8b:86:7c:b6:17:40:5f:02:72:38:b2:fe:12:
                    6a:b3:8a:b8:9e:c2:44:44:ba:a8:c3:dd:d3:fd:d1:8c:
                    8b:33:0f:2b:a7:47:60:08:9e:cc:49:56:b3:f8:e8:b0:
                    ee:bd:96:7f:bb:23:82:4d:c9:50:f0:10:33:c1:94:34:
                    63:f0:cb:38:4c:89:2b:4e:c9:d4:8c:85:09:19:04:25:
                    4c:b1:73:d3:cc:69:fc:bb:65:9d:05:41:6b:aa:ab:aa:
                    ad:26:af:fb:08:0a:5a:f2:ca:b4:cb:1b:6b:73:3c:99:
                    fa:75:43:67:cb:4c:bc:70:13:99:83:10:4d:ff:78:da:
                    ce:78:09:20:6c:ec:82:2b:62:bc:40:26:4c:a8:85:6c:
                    03:a4:0b:0a:1b:bc:5f:a6:db:bd:45:0b:1a:0a:b0:ff:
                    23:87:87:b6:17:98:12:ee:4c:e1:b1:02:f9:bb:f8:e1:
                    1d:c1:bd:53:3e:9d:f7:a3:e1:5d:b0:87:e6:7f:4c:e6:
                    5c:3f:6b:76:ed:f9:7b:32:dd:67:62:0d:ca:84:ce:e4:
                    ac:5c:89:1c:38:e5:4e:f9:bc:74:d2:0b:af:85:73:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:57:e8:ed:a6:eb:3c:26:bd:b9:08:74:99:e3:a9:7d:
        b8:ff:79:65:4f:47:84:28:4d:59:11:30:aa:81:f1:63:
        36:e7:35:6c:eb:d2:2a:20:d3:9a:dc:2c:b3:5a:d9:fa:
        cc:9f:dc:76:40:24:eb:6e:ea:54:7f:23:15:64:66:ed:
        ee:b0:c3:39:f9:80:7b:ca:04:a5:85:51:97:ac:d7:dd:
        01:04:93:a4:d0:4f:26:e8:42:b2:5e:16:67:6b:a1:1f:
        c8:11:51:ea:4f:50:37:15:a2:6e:7e:a2:1e:78:84:85:
        8d:18:6d:36:68:f8:fa:73:52:91:6c:53:6e:28:3a:96:
        11:b5:0b:3c:23:0a:b4:62:5a:f7:bb:db:02:e8:ae:9b:
        ef:87:97:f6:09:29:af:3a:95:96:5e:1f:51:20:0c:37:
        af:2f:f3:85:37:64:51:28:f5:08:f7:7c:c3:36:6a:44:
        7f:de:8c:af:fe:49:10:75:bf:9d:44:42:bf:cc:16:b3:
        50:07:e1:98:c9:34:df:d8:39:bd:2c:9f:d7:aa:62:a5:
        aa:d1:ea:2b:3a:b5:75:94:fa:c6:0a:2f:0c:80:03:0c:
        0b:6b:9c:ad:0f:23:36:d4:6f:db:e4:5a:c8:5c:8a:94:
        b8:18:b4:bf:2c:96:a1:25:65:5b:03:2b:c4:6e:c6:95
    Fingerprint (SHA-256):
        A6:5E:1E:7E:2F:80:61:5F:CF:60:CD:2F:50:6C:5C:FB:AB:04:E9:74:F5:61:5F:B0:FB:51:B4:47:97:97:DB:86
    Fingerprint (SHA1):
        1B:0E:61:B4:4B:89:4C:E5:69:0E:BC:8B:6B:45:B4:1F:03:6D:57:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4179: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #4180: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #4181: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #4182: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #4183: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #4184: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153199 (0x1dee3fef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:31:18 2017
            Not After : Mon May 02 15:31:18 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:34:b3:e5:a4:c0:e1:fe:03:7b:c2:e7:ba:c6:0c:d0:
                    69:21:89:1a:fe:d0:23:75:cd:29:56:26:4a:f3:b5:38:
                    4f:80:92:fd:27:2d:6b:31:93:26:cb:7c:0b:4a:7f:f8:
                    44:f9:0a:b9:7b:e4:22:d2:ee:7c:d9:61:01:f3:95:8b:
                    13:98:50:ff:4f:44:7f:1a:19:e7:67:ab:f2:8a:0d:da:
                    c6:03:68:ee:92:9d:3b:78:14:ef:09:b6:86:40:4b:b8:
                    4c:fd:8c:63:80:50:e9:a8:a1:49:62:07:cf:74:68:33:
                    41:3a:73:3f:e0:b1:58:43:62:85:fa:bc:a5:8f:57:85:
                    5a:7c:b4:9f:1a:71:32:63:53:50:26:80:54:41:d7:48:
                    8c:10:8f:69:f4:b6:86:cb:1c:18:5e:c4:bf:85:58:7f:
                    f9:22:f6:39:22:29:4a:e4:dc:ee:4b:0d:5a:57:b4:bb:
                    a2:34:c7:89:b8:bf:19:27:8e:38:ad:e3:3f:ca:4c:aa:
                    71:12:28:94:f6:4d:cc:f9:d6:20:0c:fb:0b:21:7f:b9:
                    0e:68:db:76:b6:29:10:3b:c2:da:a0:43:4a:35:3a:86:
                    b5:41:ae:77:44:be:bf:a0:12:d9:f4:99:d3:9e:36:87:
                    4a:9b:4f:c4:3c:a9:fd:ca:fc:2c:aa:3e:5f:81:0b:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:eb:99:2c:c9:b2:21:c2:37:65:26:ed:6d:1f:9e:a1:
        23:60:59:ee:f8:f6:ae:c6:88:55:bf:a7:52:ed:f9:4c:
        49:f9:2e:bf:dc:73:23:1b:ea:9a:af:b9:8a:a6:c0:6c:
        0d:4f:a3:91:45:59:87:cb:e6:42:54:d8:ec:d8:02:4e:
        ab:b5:93:49:46:be:89:c4:0c:6b:ce:9a:d2:22:9c:f7:
        71:74:0c:82:bb:69:1b:52:12:b0:4c:0e:60:75:ab:d8:
        22:40:56:7f:93:1b:46:36:a5:f3:d0:f7:e1:f3:36:67:
        91:a2:2b:3f:79:7d:b5:62:b3:63:f5:34:ac:4e:5c:79:
        0d:21:53:1e:3d:40:81:ae:9c:f3:6a:05:a3:b5:b9:8d:
        55:20:33:16:be:44:88:5b:42:c6:60:62:ca:aa:41:f4:
        19:00:6d:82:0c:3e:69:42:fd:02:3c:e1:69:0a:69:b3:
        f0:a3:48:40:91:fa:92:2b:42:d7:ac:00:ec:54:7b:22:
        07:82:b5:de:b8:0a:50:87:9e:a5:4b:b6:d9:49:e0:6f:
        b0:1f:2b:11:73:b9:bf:d8:14:9c:95:c8:cb:cb:18:1a:
        0b:2e:ae:7b:56:cd:c6:78:37:0f:b0:21:e2:40:a2:44:
        92:c2:ee:fe:57:eb:19:00:00:d2:fc:b2:77:58:84:bc
    Fingerprint (SHA-256):
        B9:B3:9C:DA:B2:2C:CB:2C:A3:C9:C8:AB:2C:71:B4:09:EB:59:A7:7D:83:49:04:60:0B:16:A1:61:15:B7:86:63
    Fingerprint (SHA1):
        09:24:68:4E:B4:10:99:D0:A6:D1:0E:F4:48:88:41:19:20:40:7F:D0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4185: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #4186: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #4187: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #4188: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #4189: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4190: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4191: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4192: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4193: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4194: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4195: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4196: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4197: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4198: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4199: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4200: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4201: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4202: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4203: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #4204: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4205: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4206: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4207: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4208: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 30941 at Tue May  2 15:31:20 UTC 2017
kill -USR1 30941
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 30941 killed at Tue May  2 15:31:20 UTC 2017
TIMESTAMP chains END: Tue May  2 15:31:20 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:31:20 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:31:20 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #4209: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:31:20 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:31:20 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4210: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4211: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4212: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4213: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #4214: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #4215: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:31:20 UTC 2017
TIMESTAMP ec END: Tue May  2 15:31:20 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:31:20 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #4216: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4217: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #4218: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #4219: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #4220: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #4221: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #4222: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #4223: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #4224: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #4225: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #4226: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #4227: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #4228: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #4229: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #4230: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #4231: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #4232: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #4233: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #4234: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:31:21 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:31:21 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #4235: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4236: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4237: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4238: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4239: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4240: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4241: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4242: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4243: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4244: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4245: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4246: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4247: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4248: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4249: create certificate: sign  - PASSED
ssl_gtest.sh: #4250: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:31:22 UTC 2017
ssl_gtests.sh: Testing with PKIX ===============================
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Tue May  2 15:31:22 UTC 2017
TIMESTAMP libpkix END: Tue May  2 15:31:22 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:31:22 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #4251: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -f ../tests.pw
cert.sh: #4252: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4253: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4254: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4255: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -f ../tests.pw
cert.sh: #4256: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4257: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4258: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4259: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4260: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4261: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4262: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4263: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -f ../tests.pw
cert.sh: #4264: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4265: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4266: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4267: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4268: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4269: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4270: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4271: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4272: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4273: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4274: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4275: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4276: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4277: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4278: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4279: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4280: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4281: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4282: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4283: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4284: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4285: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4286: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #4287: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4288: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4289: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4290: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4291: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4292: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4293: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4294: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4295: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4296: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4297: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4298: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4299: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw
cert.sh: #4300: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4301: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4302: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #4303: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4304: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4305: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4306: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #4307: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4308: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4309: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4310: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #4311: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4312: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4313: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #4314: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4315: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4316: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4317: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #4318: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4319: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4320: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4321: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4322: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4323: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4324: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4325: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4326: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4327: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4328: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw
cert.sh: #4329: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4330: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4331: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #4332: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4333: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4334: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4335: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #4336: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4337: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4338: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4339: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #4340: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4341: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4342: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #4343: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4344: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4345: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4346: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #4347: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4348: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4349: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4350: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4351: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4352: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4353: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4354: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4355: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4356: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4357: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw
cert.sh: #4358: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4359: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA.ca.cert
cert.sh: #4360: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4361: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #4362: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4363: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #4364: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4365: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4366: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #4367: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4368: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4369: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #4370: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4371: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4372: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #4373: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4374: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4375: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #4376: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4377: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4378: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4379: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA.ca.cert
cert.sh: #4380: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4381: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #4382: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4383: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #4384: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4385: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4386: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4387: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4388: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4389: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4390: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4391: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4392: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4393: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4394: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4395: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4396: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4397: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4398: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #4399: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4400: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4401: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4402: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4403: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4404: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4405: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4406: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4407: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4408: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4409: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4410: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4411: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4412: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4413: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4414: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4415: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw
cert.sh: #4416: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4417: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #4418: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4419: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4420: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4421: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #4422: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4423: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4424: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #4425: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4426: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4427: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #4428: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4429: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4430: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #4431: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4432: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4433: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #4434: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4435: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw
cert.sh: #4436: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4437: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #4438: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4439: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4440: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4441: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #4442: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4443: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4444: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #4445: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4446: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4447: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #4448: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4449: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4450: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #4451: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4452: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4453: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #4454: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4455: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw
cert.sh: #4456: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4457: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA.ca.cert
cert.sh: #4458: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4459: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #4460: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4461: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #4462: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4463: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4464: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #4465: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4466: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4467: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #4468: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4469: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4470: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #4471: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4472: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4473: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #4474: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4475: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw
cert.sh: #4476: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4477: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA.ca.cert
cert.sh: #4478: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4479: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #4480: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4481: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4482: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4483: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4484: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4485: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4486: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4487: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4488: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4489: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4490: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4491: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4492: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4493: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4494: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4495: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #4496: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4497: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4498: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4499: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4500: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #4501: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4502: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4503: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw
cert.sh: #4504: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4505: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #4506: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4507: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw
cert.sh: #4508: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4509: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #4510: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4511: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #4512: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4513: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4514: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #4515: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4516: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4517: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #4518: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4519: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw
cert.sh: #4520: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4521: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #4522: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4523: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #4524: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4525: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #4526: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4527: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4528: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #4529: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4530: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4531: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #4532: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4533: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4534: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #4535: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4536: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4537: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #4538: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4539: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:80
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:32 2017
            Not After : Wed Aug 02 15:31:32 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:e0:3c:68:3d:46:97:8e:5c:63:eb:ba:1d:8f:a3:97:
                    a4:0d:99:b3:bc:93:f2:59:09:14:cc:b0:49:28:73:d1:
                    6e:f6:9d:f8:e9:e2:19:48:76:e6:34:f8:6e:01:56:51:
                    d0:5a:17:c5:c8:f2:05:4c:42:fa:7e:a5:6b:a6:70:c5:
                    45:8c:19:7f:82:96:1c:48:05:7d:93:d4:69:77:d5:45:
                    87:93:7f:15:6c:a5:4e:4d:da:d8:38:41:c9:29:f6:92:
                    f8:3c:15:54:13:22:0b:08:d1:f0:04:d1:c4:53:cc:6e:
                    f3:1d:e0:8c:59:da:f2:c2:2c:6c:0b:e5:bf:21:77:7b:
                    26:2d:e3:2f:a5:83:9d:ae:cc:f0:b2:89:e9:69:eb:43:
                    c1:f5:4f:03:c0:b5:89:53:15:9d:3e:bf:39:42:b4:f5:
                    c8:00:12:5b:81:8f:1c:b6:2f:5a:20:4d:c3:0f:c7:61:
                    38:56:f7:a3:14:8e:06:31:47:d0:fa:8d:eb:d2:ea:de:
                    af:97:78:f8:42:96:45:73:16:4c:19:22:38:85:db:6c:
                    18:7b:38:a9:c3:f7:92:ea:aa:79:51:ff:86:dd:f4:4a:
                    aa:ab:ac:4b:ac:c0:25:cc:45:17:d1:54:ca:ae:a4:6f:
                    07:0a:2c:15:d8:c2:ee:93:7b:ea:46:21:61:b0:5c:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:1a:24:9a:f0:fe:b6:8c:64:0c:ca:70:7e:1b:00:e8:
        ed:32:b1:a9:13:f4:4d:2a:10:f4:46:48:e4:80:54:70:
        96:5d:61:b8:70:59:36:cf:42:af:62:7c:de:35:f8:a7:
        2d:a0:47:02:1d:6c:57:05:6d:29:b2:f9:2c:62:01:db:
        9b:7d:40:6d:04:86:30:7b:f1:0d:ee:51:fb:8a:41:77:
        7e:03:ad:8d:05:31:d2:ab:d4:1a:d1:71:49:eb:b0:16:
        0a:85:da:5f:b7:2c:c6:14:f0:fe:e5:25:f8:14:5f:9e:
        f8:53:80:40:8e:f8:27:c2:1e:db:c4:16:a0:6b:63:6f:
        77:d7:b6:ac:eb:5f:7a:b0:e6:6f:41:74:f7:7d:4f:e8:
        d6:64:d5:f4:91:66:97:ec:41:7d:44:3d:73:d9:7d:4e:
        ec:e1:9a:c8:13:d4:69:5d:ea:c6:22:d6:7f:86:f4:56:
        f3:b9:04:44:e7:cd:da:16:dc:35:9a:00:41:03:5f:c5:
        a3:5d:b6:c8:a6:03:a9:cc:e7:43:91:38:43:7f:a5:d8:
        5e:af:15:a5:07:05:3b:68:76:5d:01:da:cd:2d:0b:23:
        9f:a4:8c:23:45:f5:21:f3:e4:f9:15:73:f7:71:a2:cb:
        3b:c3:86:25:25:51:d1:1a:9a:48:8d:b8:3c:71:5c:93
    Fingerprint (SHA-256):
        B4:F5:A4:0F:68:FC:81:43:F4:94:F7:01:CB:97:A9:62:BB:D2:EC:EB:16:2A:F2:E0:8A:79:AD:9F:F5:B8:0C:27
    Fingerprint (SHA1):
        0F:40:40:D6:B0:F2:3D:A7:E8:78:DD:0E:78:A6:DB:70:F1:F5:BB:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4540: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:80
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:33 2017
            Not After : Wed Aug 02 15:31:33 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:f8:d2:fe:06:7d:12:61:2c:25:e3:99:a3:d4:c3:70:
                    de:59:21:f6:8a:f3:f6:29:85:3c:a7:b2:71:d4:49:10:
                    f3:ec:c0:52:65:d4:57:79:5b:be:47:9b:48:20:f1:02:
                    ee:0a:15:c5:5c:f5:6d:06:f5:d6:46:a9:b0:2e:84:e2:
                    74:8a:fc:af:75:40:3a:d2:ce:78:fb:76:45:a2:9d:c4:
                    39:ba:f9:d1:3d:dd:0a:9e:22:0b:e5:1f:c1:65:75:d1:
                    80:fa:4c:1f:aa:d6:60:67:35:21:af:9b:e1:8b:aa:38:
                    e8:8b:87:f1:5c:81:f0:ed:14:6f:57:1c:fe:d0:7a:de:
                    d4:ad:45:c8:6c:22:1d:c4:b3:d3:42:ea:df:c2:d1:71:
                    55:a1:40:a9:50:3e:34:3e:33:e6:21:a1:71:46:78:33:
                    1f:07:b0:bd:ef:07:d7:32:a3:29:72:a4:39:1c:28:d7:
                    7b:ac:73:52:cb:7d:36:f7:61:6d:18:84:59:88:a7:7f:
                    5a:bd:b8:fe:5b:24:d4:bf:17:3c:90:80:b6:49:a3:7a:
                    e5:78:c9:a8:36:77:a5:2f:85:2a:7a:23:8e:7d:a5:16:
                    c9:c6:b2:e0:71:bc:89:af:53:82:69:8d:a2:c8:47:70:
                    07:d8:67:1c:1c:0b:32:ac:5e:1c:46:36:cd:15:f2:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:dc:47:06:30:9b:33:2a:69:bd:a0:fb:01:c9:19:d0:
        52:7d:18:00:1f:48:90:a4:2f:e4:18:3e:da:1c:a6:4c:
        72:55:81:b7:90:e8:b5:a7:fa:07:25:89:40:8d:a3:93:
        4f:6c:96:36:6b:e8:73:ea:c7:20:bb:b9:43:73:6c:bc:
        c4:d6:4d:62:65:4b:08:f5:b6:33:d0:1d:1e:21:7b:d3:
        2a:4a:cc:b5:27:bb:e8:81:a9:2b:45:29:bf:7a:55:59:
        ce:75:1c:0e:9d:aa:7c:a2:2c:80:cc:42:04:fe:1c:40:
        74:8f:60:16:1b:d5:2e:86:60:74:c2:5e:e4:02:e3:f5:
        63:2a:44:c1:a8:a8:c2:75:78:6d:1e:a5:5b:ff:ff:06:
        b1:68:31:25:29:35:df:3f:99:11:2e:b6:eb:32:27:e8:
        3a:30:c0:cb:00:34:98:77:e5:f4:b3:69:6b:c0:ee:61:
        0e:24:10:46:43:af:9a:35:9c:53:87:1c:06:ff:47:af:
        85:1c:87:d5:8c:fb:60:b6:75:fd:e2:c2:d3:ed:df:cd:
        78:33:21:9d:34:d4:f0:0d:ec:5d:48:07:7a:7d:7f:c5:
        47:5e:a6:69:26:79:e9:6f:7d:7d:8d:d4:ae:01:40:b0:
        b6:30:83:dc:6b:40:60:4f:b9:b5:9f:ce:11:77:d6:65
    Fingerprint (SHA-256):
        7A:71:0E:05:40:AA:9F:70:16:95:B9:F7:77:1F:A2:16:E3:B3:EB:7B:DC:0B:83:7A:96:5A:15:AD:6D:BF:DC:27
    Fingerprint (SHA1):
        D7:A8:23:37:62:C4:2C:04:02:7B:25:10:4E:04:1D:AC:53:D4:FB:D9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4541: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:81
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:33 2017
            Not After : Wed Aug 02 15:31:33 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:0c:d1:ac:39:1f:67:c7:5c:34:0c:dc:f0:69:a6:b5:
                    6c:bb:85:03:98:e8:5d:c7:25:54:bc:64:32:f4:e3:3e:
                    a3:25:25:58:1d:67:df:80:7a:ec:95:15:4a:2a:fa:36:
                    2b:90:46:43:5f:ab:ec:1e:4a:b7:cc:cf:6e:e4:49:03:
                    1c:62:01:1c:28:93:31:72:e4:cb:94:b6:21:d4:84:da:
                    3c:7a:9b:f0:6d:85:05:fc:0d:a9:ed:f1:b0:c6:79:87:
                    d0:9a:1b:83:e9:81:ab:dc:54:15:8f:01:ea:b6:89:7c:
                    36:5a:0f:41:58:c1:8d:a8:d3:82:e9:d1:ec:6c:2d:70:
                    3c:07:17:36:83:54:a2:fa:5b:b0:2d:52:cb:06:be:61:
                    5b:6e:af:3d:e0:d9:ba:67:55:90:a2:a7:01:f6:60:21:
                    54:07:95:5d:bd:a8:30:44:6c:fc:b4:e3:4d:42:08:c5:
                    ef:a5:cf:71:3f:11:3e:27:7e:44:08:03:f9:88:04:b6:
                    64:67:11:57:d2:40:0e:a5:37:ea:8b:62:38:db:4d:58:
                    c6:db:f4:f8:3a:9f:a5:e1:eb:f3:71:75:bf:7b:ca:9b:
                    e7:82:9a:07:e6:91:59:66:db:bc:a5:e3:de:2e:80:99:
                    96:72:d8:da:d8:d0:ee:64:c8:60:ee:45:36:7c:0e:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:f3:4a:bf:42:db:d7:5e:b7:e4:67:9a:6d:73:74:00:
        3e:c7:d5:10:21:a4:fe:97:cd:0f:fc:c9:f1:dc:30:6a:
        92:28:d9:c2:fd:34:1a:02:7e:29:51:42:62:16:47:61:
        30:05:be:47:68:97:2a:42:de:9d:ba:9b:4d:7a:7b:eb:
        0a:24:03:3d:71:1c:4f:79:46:7a:39:24:92:fb:b8:cb:
        70:a1:04:bc:eb:10:b6:dd:9e:47:a2:6f:47:a2:73:37:
        df:a8:e0:8b:f4:e1:7e:f5:88:9c:a9:aa:ff:db:3b:f3:
        95:20:40:7d:16:a2:8f:e2:ac:35:27:41:13:a4:f6:f9:
        d3:55:56:24:c1:0a:4e:ea:d8:4c:3e:56:81:bc:89:9f:
        68:c9:07:be:9a:24:93:d2:57:a6:01:62:da:8f:24:93:
        96:d8:d8:29:3d:b3:eb:1f:ac:10:bc:ba:2e:ce:40:93:
        2a:e5:6d:30:0c:73:dc:1b:32:11:88:df:df:7c:fe:7e:
        9f:69:f5:fb:db:9f:0a:bb:ac:c9:ad:16:cf:70:0f:6d:
        24:2e:da:87:49:68:b9:c8:dc:87:e2:7b:36:2c:d6:40:
        25:8e:1b:16:06:86:7a:04:69:6c:9b:31:ea:79:cf:24:
        47:0d:70:da:f6:53:80:65:59:bd:c2:41:2d:72:82:90
    Fingerprint (SHA-256):
        AE:95:85:35:7A:CD:0A:96:CA:B4:0D:7B:23:3D:1A:E5:65:B1:15:DC:E4:C7:57:8F:91:B6:14:92:57:1F:CA:52
    Fingerprint (SHA1):
        62:1F:91:B4:E7:D6:3F:36:38:B3:59:7B:FE:FC:F7:B0:FE:98:69:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4542: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:81
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:33 2017
            Not After : Wed Aug 02 15:31:33 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:57:46:84:34:f5:b1:8e:d9:14:dd:f8:52:42:30:45:
                    d9:4f:3e:ec:50:f5:2a:9a:00:8e:da:15:93:40:0c:cc:
                    80:79:dc:49:ba:78:a0:50:dc:6c:27:20:25:df:40:a5:
                    bc:4c:3e:a3:9e:f9:a7:37:39:e4:94:77:ea:cb:b2:73:
                    0c:6f:86:70:14:1b:d0:db:00:0f:88:ec:d7:33:5c:af:
                    2b:8b:6f:ca:fb:c2:5c:9a:b8:85:db:e4:30:31:83:c6:
                    76:60:ac:9f:2b:cc:ec:70:3a:0a:9f:f1:5e:a6:2b:8c:
                    45:d8:76:94:1d:a4:8f:ee:fa:7a:16:11:8b:95:29:ac:
                    64:c0:13:b2:a7:ae:81:1b:0d:88:0d:8e:b3:54:9d:54:
                    87:6a:94:d5:61:04:e5:7c:e3:72:45:b6:aa:65:a2:5f:
                    be:78:59:e9:e3:f1:af:d9:64:bd:8a:f3:c4:9e:68:6b:
                    1b:61:23:78:77:1b:a3:81:53:b1:58:bc:67:7b:04:3a:
                    8b:46:e0:2b:1d:8b:58:56:7e:3d:1d:30:fa:11:e9:da:
                    ec:29:de:7f:97:db:77:31:3c:83:ae:89:64:ef:b4:0b:
                    c6:71:31:3d:ba:a3:eb:98:d9:cb:54:e6:32:dc:6d:bf:
                    0c:a6:61:3a:c8:a4:0f:e7:57:63:e1:fa:d3:6b:13:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:d1:66:88:ae:0b:d5:c0:31:37:26:12:da:36:57:f6:
        f2:b1:43:b5:b0:61:e3:f8:a0:ad:cd:b6:34:41:4d:f0:
        42:13:43:b3:bf:2c:e3:9d:9e:d9:3e:4f:f5:ba:27:46:
        29:e4:50:62:53:d9:fe:5c:1a:e7:fd:8b:e3:2d:7e:2a:
        46:f3:b2:1e:cc:2c:4d:9a:4a:38:00:19:bb:65:59:e6:
        d1:fb:e0:ec:45:3a:e3:6b:6a:e6:eb:c8:ec:10:ca:5d:
        43:67:f5:be:62:23:9b:3e:bc:39:f2:f2:f5:23:00:b0:
        6f:63:78:54:e9:09:ad:bd:eb:bd:2f:53:14:96:46:cd:
        e6:36:29:7d:a5:dc:9a:ed:2d:e4:1e:b2:22:2a:d2:7f:
        06:c6:f3:c2:37:c1:f1:2d:ef:71:52:eb:a6:7a:5a:9d:
        25:d0:82:6f:99:20:46:64:7d:e9:fa:81:ac:2a:06:22:
        84:ed:cd:46:c2:c3:93:a4:c9:0f:85:71:b0:d8:34:00:
        0c:78:45:8f:b5:6b:1c:b9:22:89:5a:56:ea:78:89:81:
        3a:74:59:13:01:b6:1a:36:7a:61:79:33:14:34:e3:32:
        2d:85:6b:58:72:ba:1e:a8:18:99:aa:e2:44:dd:66:21:
        29:34:d1:cd:f7:02:5f:8e:97:d7:fa:28:b0:de:cb:68
    Fingerprint (SHA-256):
        7E:A2:FB:91:EE:C5:79:5A:80:2F:00:BB:E2:D7:06:4B:50:85:11:61:F1:A5:B3:F6:AD:35:B9:A3:D6:07:2F:02
    Fingerprint (SHA1):
        F6:F2:9F:E7:48:5A:50:2E:CC:89:8E:26:7D:1D:A0:DE:2F:81:E5:4C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4543: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:82
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:33 2017
            Not After : Wed Aug 02 15:31:33 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:a2:64:9e:d6:8d:13:39:14:88:e6:dd:58:8b:0b:34:
                    7c:ea:e3:39:b0:eb:4a:ed:a0:cc:74:1e:7e:40:e1:c8:
                    04:e2:03:27:ac:9f:ff:c3:ef:4e:18:11:28:8d:b2:e6:
                    42:0c:5a:2e:05:6f:c2:ce:47:e1:39:6d:d4:ae:b7:1d:
                    9e:fd:eb:1d:19:5d:c9:0b:03:a5:88:9b:a3:d0:68:19:
                    74:5b:66:6b:14:bd:3e:9c:b0:f3:a9:00:28:f2:8f:73:
                    ee:1c:b6:72:f7:c3:f8:d9:92:ea:87:69:5d:d1:cf:a9:
                    e3:e5:71:3e:c5:ae:67:a0:e3:8b:0c:c2:e4:34:d5:ef:
                    2d:d3:08:88:77:fa:c7:b3:f2:e0:27:12:b2:de:68:b6:
                    9f:f7:01:ed:b9:7b:da:81:13:fd:31:73:78:72:c3:5f:
                    47:ba:40:72:96:f9:40:23:25:a4:95:08:61:bf:65:55:
                    79:12:9c:54:73:2f:57:5c:3b:66:e4:34:0e:07:14:18:
                    b0:37:82:b6:f2:15:41:ec:da:68:47:5f:92:df:b8:31:
                    3e:fc:8f:9a:32:f8:82:26:17:11:dc:9b:de:d8:cb:39:
                    96:7f:1c:a7:41:f5:ac:d5:eb:c5:ac:08:1e:8d:94:1f:
                    6f:0c:05:a9:1d:03:ad:14:59:aa:b1:b0:f4:43:d3:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cf:1d:21:c0:a9:c5:d5:61:02:b6:3e:22:fa:54:23:21:
        7f:aa:fc:43:88:98:e1:3c:0f:82:30:00:a6:39:9f:8d:
        55:69:1c:66:bc:e8:a2:75:2a:c0:1b:9e:ca:c4:78:cc:
        12:b0:a7:b6:10:d4:1c:87:72:6e:d0:e6:2e:0f:14:dd:
        52:de:fc:95:8b:14:6f:f6:26:30:85:68:f8:fb:43:2e:
        2f:61:d1:4d:01:a8:15:d2:6f:02:cb:04:a8:cb:5e:a0:
        8b:6d:1a:c3:80:d3:3c:d2:0f:df:91:b9:d6:6b:9d:60:
        44:5f:04:cd:cd:ea:29:5f:c9:f9:54:6f:c5:43:00:18:
        f0:b8:1b:a7:e3:37:69:23:ca:75:c5:70:a1:26:00:66:
        f8:f3:17:5d:d6:3b:67:a4:e0:f2:58:9b:04:73:24:1d:
        46:7f:88:8b:91:f2:ed:e2:6d:c8:1f:6d:38:ee:cf:a9:
        45:e6:56:a4:a8:e4:0e:3b:cd:ee:e6:06:5d:bc:01:2d:
        2a:af:1c:ca:20:a8:a8:ae:a3:e0:89:99:5a:44:a7:af:
        ba:6e:28:ca:e5:50:1f:33:d6:e0:df:e4:77:c5:61:aa:
        a9:ba:89:0f:40:01:e2:54:bc:bb:77:54:65:a1:4c:60:
        ba:42:75:8c:96:64:66:07:c7:df:cf:7a:01:91:18:6c
    Fingerprint (SHA-256):
        E0:FE:13:C6:75:DE:C4:D7:BF:65:8E:05:2F:5A:83:E9:1B:96:06:76:FF:F0:9F:B6:F8:48:60:7E:DC:ED:E5:38
    Fingerprint (SHA1):
        DA:8C:8D:79:FF:56:01:B3:AB:E5:49:51:84:2C:BB:5D:05:7E:74:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4544: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:82
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:34 2017
            Not After : Wed Aug 02 15:31:34 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:94:41:9a:a7:75:be:b2:f3:3c:ef:21:00:c5:d1:98:
                    d2:c0:a6:b2:c9:55:84:ea:3d:be:54:9e:c6:22:ee:2d:
                    81:54:45:9e:ae:96:eb:27:51:3d:2e:3b:92:e5:b9:48:
                    b2:82:33:e5:5e:1a:2c:f4:92:c6:8e:75:ba:ff:82:de:
                    c5:4c:70:e6:5b:0e:1d:c6:64:a6:c7:e4:d9:0c:35:ed:
                    04:3e:f6:01:00:27:50:4f:4a:7c:97:80:cc:53:7d:e5:
                    4a:b7:f9:96:59:12:92:42:88:76:ef:ab:3e:ab:f4:00:
                    c8:7f:12:41:c4:dd:15:8d:d1:df:c9:ba:8a:b8:ff:10:
                    7d:10:99:38:24:0f:eb:2c:70:73:2d:74:22:35:37:a4:
                    09:fe:4e:72:9e:8a:c4:c0:97:97:cc:99:12:8e:1a:99:
                    d1:70:19:d2:aa:e8:6c:a4:30:6e:2c:d4:4b:0f:06:86:
                    f5:f0:c3:78:f6:ab:c4:0f:26:3c:e4:a6:8c:e7:e7:67:
                    87:bc:d4:3a:83:b2:24:88:f4:52:a6:8a:71:28:12:9d:
                    fc:af:20:32:e6:12:ed:eb:ab:9c:b1:55:7a:56:4a:76:
                    89:e5:e1:cd:c4:7d:2e:e0:75:d5:60:d6:51:be:38:94:
                    2e:be:56:4f:94:63:bd:a5:c1:c6:01:a9:c4:d0:32:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:d9:01:f7:8d:e8:4c:4e:12:1c:54:32:cd:14:19:25:
        da:a9:ab:9b:13:db:03:d1:00:9d:7b:6d:03:44:21:ec:
        c8:27:f5:50:38:4a:89:8c:49:73:22:a8:c3:0e:60:a6:
        d5:a4:b0:66:af:4a:e6:46:15:93:07:b4:9f:8e:50:8a:
        5d:44:e6:0c:60:9c:c8:6c:c1:91:76:1c:34:37:39:82:
        06:f9:77:4e:0c:dc:56:6d:87:7e:93:ff:e0:20:b9:ca:
        85:5c:4d:a4:e9:d1:6a:1c:fc:44:d2:0d:50:32:c4:9f:
        dd:36:75:5e:e1:40:03:a5:fa:56:88:2b:6f:75:c8:21:
        b1:ae:a9:9b:84:a3:d4:f0:3b:2d:1d:4f:a7:47:f2:a5:
        ce:fd:69:b1:6a:24:1f:93:25:f5:4c:99:c8:74:e5:d4:
        3b:af:ab:b0:4f:ac:a9:7e:2f:7e:13:80:ab:a3:64:cd:
        12:77:0e:55:bb:ed:5a:c8:dd:7e:23:b7:ce:04:c0:0e:
        47:59:33:ed:ee:01:fc:e1:69:b4:5a:c6:22:93:43:b0:
        12:71:1f:ab:2a:83:3d:8d:1c:da:04:a5:9a:1e:d8:9f:
        5f:e2:ca:83:c0:dc:d8:88:71:3d:b3:28:a6:68:c1:d3:
        03:d1:c7:2d:f4:88:64:58:8f:44:6e:9a:0e:5c:89:2d
    Fingerprint (SHA-256):
        CC:1C:11:42:5B:6C:7F:1E:CB:1C:B5:99:50:52:7C:76:12:71:23:35:40:EC:D8:96:50:CC:8D:9D:6B:FD:5F:F7
    Fingerprint (SHA1):
        B6:41:0C:F6:B2:0E:A2:44:DF:CC:A6:41:F2:1A:8F:71:0A:EC:8F:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4545: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:83
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:34 2017
            Not After : Wed Aug 02 15:31:34 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:c2:26:31:56:95:3d:98:eb:be:3c:ca:92:bb:b2:9b:
                    f4:fa:16:38:1e:cd:1a:12:55:36:f6:e8:2e:2e:76:ae:
                    34:50:6c:dd:68:79:e8:e4:e9:12:a0:15:c4:bb:b3:ba:
                    07:16:09:9d:fa:1c:be:85:69:e1:fd:e4:a9:4e:64:74:
                    99:30:46:ba:fb:64:8c:0b:39:bc:02:b6:6f:eb:3b:d8:
                    7f:8e:e0:88:fd:30:f8:8b:5c:1f:28:28:3d:36:13:70:
                    d0:89:e7:a4:a4:c3:04:df:3e:44:1b:b3:9e:c7:58:a1:
                    f5:58:ed:a2:57:09:a7:08:34:b4:f7:e2:21:20:5d:b0:
                    09:1b:ab:bb:73:3b:6f:8d:18:04:16:18:a1:55:45:0e:
                    79:3f:1f:9c:11:e9:64:f7:a1:20:26:9e:07:46:8b:36:
                    77:f5:cf:05:7c:e0:15:a4:e6:72:94:22:f5:b6:e0:3e:
                    14:68:de:e2:5d:d1:62:da:8d:c2:75:1a:b4:7b:40:39:
                    72:b6:01:b4:b7:ca:d7:3e:03:3c:14:5c:14:b8:e5:da:
                    a3:f5:82:93:00:fb:c7:c0:4d:40:69:26:2d:6a:ff:f4:
                    db:e5:39:16:8c:98:18:06:e2:21:3e:27:94:2b:c0:84:
                    b8:ee:6b:46:5e:c4:56:d7:3d:c0:fe:99:2f:d8:6c:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:94:e1:c5:a0:08:2b:45:db:8e:6d:66:69:8d:df:dd:
        f6:2c:82:fb:63:1c:73:a8:06:70:8e:34:8f:c5:f7:8e:
        77:22:28:92:85:0b:45:b0:f2:10:1a:cb:60:b5:ae:c6:
        83:6f:29:78:fe:fc:af:23:21:55:9a:8b:72:9d:c3:37:
        54:fb:d1:74:46:a6:8a:a4:84:ff:32:3f:b1:09:1e:2e:
        c0:7b:9c:87:44:bb:60:33:d5:83:d6:34:a7:5f:79:d1:
        af:28:b7:19:f1:e3:b0:a2:0f:3e:3f:01:b9:cd:27:4f:
        1f:26:29:ad:fa:0b:25:13:51:4d:c3:cb:9f:ad:9c:ab:
        8b:8a:3d:59:f7:4d:95:8d:f9:1b:5c:22:85:1d:b2:a8:
        e1:a7:6c:a3:2c:e6:8d:f1:53:c5:7b:89:e7:32:46:d7:
        06:ee:d8:38:d9:52:b3:64:5d:9a:fc:70:d3:23:9b:60:
        d2:4f:f6:63:81:19:01:e4:07:11:7c:0a:fa:88:b5:cf:
        f2:6a:8c:d2:74:e0:d5:03:76:b2:89:ae:48:2c:15:37:
        9e:7a:8a:0f:be:0f:4a:58:87:52:8c:c5:93:a0:8b:28:
        fd:a2:01:b0:d9:8f:16:34:2c:09:f9:38:1a:2d:22:51:
        ed:52:8b:88:92:90:25:c4:7d:bb:77:25:ca:7b:9e:5f
    Fingerprint (SHA-256):
        B0:7A:BE:84:9F:85:48:FB:D7:57:A5:D4:47:6D:24:33:F3:F2:1B:9E:4C:FA:DB:AD:28:DE:9E:B3:FB:16:21:7D
    Fingerprint (SHA1):
        BD:8D:E5:1D:0B:0F:52:38:37:0D:F6:E4:93:29:2F:4D:8D:18:8F:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4546: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:83
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:34 2017
            Not After : Wed Aug 02 15:31:34 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:0e:30:b3:c8:f9:e1:be:28:92:29:4a:9d:31:51:06:
                    cd:76:68:66:7c:d6:b8:38:8a:f3:b6:30:f4:fa:ae:f7:
                    ba:ca:7f:0d:dc:6b:b0:6d:70:98:b8:04:e4:ba:20:8c:
                    17:86:1a:13:f5:e6:1a:16:a6:ae:f3:bc:a7:49:03:8d:
                    2a:3c:2a:7c:26:8a:f2:53:62:48:92:ef:88:68:68:67:
                    eb:76:d3:84:12:51:47:89:a6:84:0d:4f:5d:c0:ea:57:
                    ca:8d:9e:15:51:5c:0b:55:08:fe:97:a3:80:8f:5f:23:
                    ca:3a:48:a0:1f:1e:d9:ac:27:fe:6a:0a:b6:f5:98:ab:
                    c8:25:db:32:0e:bb:dd:f7:74:35:7a:4d:0d:75:6c:af:
                    55:06:ea:b1:02:e5:99:bb:7c:aa:78:8c:60:e2:fc:c9:
                    27:50:fc:a2:c9:82:c0:5f:fc:e1:06:19:5e:6c:1e:30:
                    1e:08:a2:b0:1f:eb:60:3d:bc:94:20:38:f1:33:df:1d:
                    e2:68:9a:4c:a0:ad:c7:e7:e1:e8:27:30:52:4f:03:55:
                    05:dd:f1:dd:b2:74:75:3c:1d:cc:e9:da:e0:2b:7e:9b:
                    dc:e1:86:34:fa:a4:2e:5e:00:66:83:e4:d6:b7:99:2f:
                    b2:82:99:c8:cb:6f:ee:60:f1:50:36:95:b8:9c:31:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:31:56:c6:e7:85:c8:69:73:af:d1:e8:0d:6d:75:20:
        24:b8:e9:8e:8f:68:12:f4:9f:80:60:ea:c2:4b:0e:54:
        0f:7c:57:5b:38:a6:a7:f5:a7:e4:5e:63:ee:17:6b:1c:
        c3:12:ac:b3:30:9f:c4:27:57:3a:37:ac:0d:68:83:dc:
        c7:f3:fe:3a:c9:84:b0:f0:1e:ef:66:95:34:11:d1:96:
        b0:9e:47:0a:26:dd:e4:2a:89:b9:c1:ea:50:c2:83:99:
        bb:9a:0c:67:5b:1c:b4:9b:69:a3:29:8f:4a:4b:ff:5e:
        d8:0a:ad:c8:9f:3a:a4:7f:7b:78:f6:75:35:8b:fc:58:
        af:35:a7:7d:29:6c:06:9e:9a:05:10:dd:66:24:f7:37:
        63:ac:ea:7a:be:c5:7c:a2:e3:77:9f:df:46:92:3f:a8:
        c2:ae:f7:62:b2:41:df:27:02:8a:2e:bc:3c:d9:b2:35:
        d3:d3:1e:06:13:1c:80:2f:53:5c:0c:a2:9f:76:79:79:
        78:7a:ad:d4:c4:d9:83:e0:e6:2f:a2:63:e0:92:97:77:
        d8:06:19:0d:14:9d:77:83:e7:fe:c9:b7:26:b4:86:fd:
        34:0e:82:d8:96:f0:f1:17:ea:45:80:2a:d8:6d:ea:fd:
        99:f1:ab:78:2e:90:92:3c:86:4b:2d:5b:d0:46:b2:93
    Fingerprint (SHA-256):
        02:93:CB:B4:AB:04:77:02:45:49:BB:98:02:19:F6:6A:03:C7:AB:0D:EB:63:66:0A:22:E6:02:8D:BF:87:E6:C9
    Fingerprint (SHA1):
        F1:18:5D:ED:97:D4:4D:33:51:F7:73:0B:AB:21:40:D6:E8:BC:C1:56
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4547: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:84
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:34 2017
            Not After : Wed Aug 02 15:31:34 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:b1:34:51:5c:6e:5a:75:11:49:6b:16:52:91:00:fb:
                    d4:f2:37:29:1d:c4:85:13:e1:64:a2:30:df:1b:60:ff:
                    e2:35:ed:61:a8:99:25:dd:91:33:ed:09:3f:9b:2f:34:
                    9a:97:ee:96:d6:30:35:79:92:7f:67:b9:a6:26:08:a6:
                    1f:d0:ac:ab:a1:b5:96:3d:a4:a9:ca:8b:01:b0:88:f7:
                    2d:d7:2b:e4:c6:67:02:03:ee:5f:24:7f:f6:0a:71:89:
                    6c:c4:e5:1b:6b:17:ed:14:df:bb:c2:1e:46:70:7f:cb:
                    d7:59:e0:99:93:c7:4a:a7:eb:cf:7d:c8:e5:6e:c5:7f:
                    c9:96:bd:78:08:26:44:01:38:ee:47:8b:a6:cc:4d:e1:
                    65:a6:95:e0:81:32:b5:6b:2a:8f:d6:c0:05:aa:16:8e:
                    b1:0a:c5:62:de:53:c8:70:4c:71:6a:63:83:c1:b9:39:
                    91:65:4b:3a:6f:24:6d:1b:15:99:3e:5f:e9:8a:68:2a:
                    48:da:37:10:05:d9:98:81:a7:fc:43:76:f0:80:77:64:
                    6e:35:34:16:8d:5e:8f:0d:4b:3d:ac:35:06:b5:5b:6a:
                    34:cb:51:02:dc:76:77:2d:a1:ea:75:9e:79:ca:6e:1c:
                    1e:9a:77:f0:43:06:4c:19:b3:db:91:70:44:4e:aa:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:a1:52:36:09:77:28:02:ad:7d:31:33:f5:cc:86:30:
        48:f6:7a:d5:ba:06:0e:73:dd:e1:ea:3b:51:f0:b2:89:
        bf:25:8e:31:c3:b5:45:dd:d7:91:47:0a:58:55:5e:ef:
        b0:58:92:92:71:da:54:a5:ff:9b:cc:9c:45:4e:1a:ad:
        71:87:f4:3e:df:c8:92:a4:84:16:02:f8:f1:44:0a:e7:
        86:e7:9d:5d:78:cd:9e:c5:7b:70:71:9a:3b:57:69:4b:
        0c:ba:1a:40:c5:29:7b:4b:b5:56:64:52:fd:73:4c:e4:
        10:82:da:01:0c:52:6f:18:71:f5:30:31:0e:be:f6:21:
        4a:91:09:0d:39:93:9f:7e:c9:3d:0b:9f:b6:88:30:0b:
        8b:d6:78:72:b6:b5:9b:49:a0:51:88:8c:03:3c:f8:83:
        8c:c5:48:84:41:60:15:fa:10:13:ad:ad:cc:c9:07:c6:
        1b:97:58:41:8c:12:c2:cd:9f:8c:60:25:5b:ed:1f:88:
        84:ff:ad:63:64:24:16:12:9c:4f:27:72:8f:78:f0:1a:
        26:06:50:74:56:8d:df:0b:b8:f3:17:0c:6b:89:59:e6:
        a6:ec:cb:14:43:2a:0b:8b:bb:da:97:68:33:79:ab:bb:
        28:e5:17:b3:33:d0:95:2c:db:9b:d7:94:6d:1a:21:0a
    Fingerprint (SHA-256):
        5F:33:E1:84:22:D6:6F:B2:F7:2A:0A:2B:51:3B:84:CB:36:B1:DD:7E:42:9B:5E:E8:1A:A9:7E:F4:73:CC:64:5C
    Fingerprint (SHA1):
        64:0B:AD:AF:46:BD:23:F4:51:0C:12:6F:18:85:3F:6B:4C:DB:32:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4548: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:84
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:35 2017
            Not After : Wed Aug 02 15:31:35 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:42:ba:5c:12:f9:52:4e:1b:5f:74:4c:93:45:c6:80:
                    42:af:b6:8b:0f:50:4b:61:c9:69:90:96:5e:c2:5c:8f:
                    5b:85:5e:e4:99:e2:26:ea:60:e6:17:a5:4d:46:bc:9e:
                    a5:14:0b:b0:45:99:06:77:d4:2e:78:8d:9f:99:36:f3:
                    58:88:c0:86:8b:e4:c4:0a:66:61:e7:ff:58:da:9e:b2:
                    b4:90:ec:51:9f:42:50:7e:e2:fd:15:85:83:8a:6e:9b:
                    09:2a:32:3b:12:cd:7c:80:ba:ed:e2:7c:25:7a:cc:1f:
                    2b:96:ec:dc:0a:3d:48:a6:1e:25:3c:26:73:2c:24:53:
                    fd:b6:c5:43:53:7a:fd:98:6c:8c:39:ca:8d:d8:f3:c1:
                    f0:c1:87:08:e8:4b:28:6a:06:29:9e:b4:3b:9a:96:d6:
                    d7:94:04:d0:2d:f5:25:8a:7f:73:e0:2f:05:a0:8a:1a:
                    00:7b:ec:61:0c:38:b7:49:30:1e:28:ca:11:de:b6:f4:
                    76:e4:9e:22:e6:c4:a2:bf:6a:3e:54:6b:10:6f:fe:8b:
                    be:16:ae:fc:e0:18:eb:0b:26:f4:70:03:a5:cc:76:4c:
                    10:43:c0:61:e2:90:de:15:19:1c:4a:a9:2a:78:a5:0c:
                    fb:76:cc:f0:51:74:5a:04:d3:50:cc:c1:f0:4e:4d:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:e3:06:b0:8f:78:06:4a:1c:48:bd:2f:86:72:d7:bd:
        87:91:1e:ee:50:d2:dd:3b:67:1e:8d:24:fb:b3:d2:0e:
        37:15:51:49:2d:e2:5c:08:dd:c7:ab:c5:10:ae:f2:80:
        89:24:9d:b8:de:a8:fa:61:c8:ed:e9:9c:4f:1e:8c:80:
        88:ad:21:04:8b:61:f4:c7:ea:07:ed:48:7d:77:eb:07:
        ee:c5:86:94:66:6d:90:cb:26:80:ca:be:3c:ba:96:84:
        b4:06:5d:10:fc:22:8a:f0:62:3c:26:c8:db:35:f7:2e:
        98:a4:b2:14:7b:c1:9c:18:d1:17:14:eb:61:52:9a:93:
        b6:4f:4f:16:62:db:ee:6b:ff:3e:13:f5:9e:8f:ba:c7:
        62:ec:b7:5b:d1:da:24:d8:39:8c:ec:d5:65:11:46:50:
        c9:55:6c:46:fe:db:e6:69:e0:c3:32:bc:3a:ea:d3:f5:
        bc:b0:62:ea:45:91:f3:0e:ff:a7:f9:11:b0:73:42:c7:
        9c:87:0b:c5:79:13:46:68:6f:5d:b0:70:88:65:71:0b:
        69:0f:92:31:b4:9f:21:b8:82:a1:b7:93:4e:e5:cb:c4:
        f6:ff:56:38:b8:0d:3e:bc:a4:a0:ef:b9:3a:dd:71:c3:
        01:fe:26:d6:04:50:2d:d3:57:29:2b:c0:9b:89:06:ca
    Fingerprint (SHA-256):
        BB:06:71:F5:DA:39:D9:E2:50:FF:5F:D1:95:0E:D5:52:F7:07:64:83:B4:B1:2F:A5:E0:62:5B:24:6B:A9:6B:F2
    Fingerprint (SHA1):
        88:C0:D6:29:F6:71:17:F3:01:1F:8E:21:89:DF:88:A5:B8:2E:33:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4549: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:85
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:31:35 2017
            Not After : Wed Aug 02 15:31:35 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:6b:a2:0e:71:e3:fc:59:48:4b:86:07:9a:45:72:ac:
                    16:e6:f0:78:0f:eb:41:ae:07:97:18:5f:ec:2d:94:86:
                    f5:12:b0:21:18:fc:13:7a:f6:fc:ef:2b:2a:ba:62:89:
                    f1:7f:9a:e9:36:76:f3:e4:6d:72:e2:c8:6d:6a:09:84:
                    a7:45:e3:3f:be:79:79:c2:58:a4:9f:77:09:34:bb:25:
                    46:da:6f:1d:f0:ee:96:6c:38:f6:91:f5:51:0d:09:ef:
                    9a:f3:6a:db:33:4f:5a:c8:66:90:e7:fa:a5:61:13:33:
                    da:3b:91:05:38:25:13:df:79:c0:e7:3a:01:4f:7d:1a:
                    b9:c9:24:0c:b1:1a:02:28:7a:21:cc:f8:c4:71:2b:a0:
                    38:3f:e8:2d:6a:f7:28:24:10:e0:e6:83:e4:29:d8:9a:
                    ca:84:5a:e5:49:dc:32:7d:d9:bc:c2:b2:a1:a2:4a:6f:
                    44:73:ae:db:9c:b8:69:c3:5c:74:df:bf:ce:22:71:7e:
                    cf:1f:e9:77:9a:fe:04:29:e1:f5:2d:b7:ae:1e:eb:f6:
                    b0:18:8a:54:8c:11:43:3b:63:f5:46:4b:38:4c:1b:0d:
                    12:aa:7e:bf:a6:03:9b:75:98:83:6d:0d:dd:0e:c5:9c:
                    7d:27:0e:d3:bb:32:d4:e4:1b:0d:b6:d3:ec:82:2a:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:84:1e:1e:51:97:5d:d8:5e:59:6c:cb:9d:4a:33:d5:
        be:04:bc:c4:8c:3c:dd:de:52:c5:5a:56:24:b2:f9:13:
        0b:cd:cb:e8:2f:a4:98:44:c4:df:d1:37:54:f0:af:e7:
        c4:a8:0c:35:90:2f:7b:f5:2c:82:a1:43:a1:c4:0d:55:
        28:8a:a9:bd:08:39:3a:53:89:78:dc:03:56:5e:b1:9a:
        98:ad:ed:38:e6:2e:05:35:7e:4f:7f:a4:09:5c:c8:d5:
        35:be:d7:40:1f:5e:b1:af:25:80:d7:3f:05:f2:87:84:
        fa:b8:47:fa:4a:08:e9:2a:1b:9c:6e:fd:16:41:6c:f0:
        ab:62:74:8f:ed:1b:0e:22:a9:3a:1b:3c:de:13:e1:02:
        31:97:97:e0:79:d2:5d:75:c7:02:01:2e:90:f8:cb:3a:
        85:c4:7c:0e:77:e9:54:aa:76:60:8f:3b:85:54:54:0c:
        02:f1:db:09:56:c8:fe:b1:c0:b3:44:16:1e:cf:d4:1e:
        90:88:4e:1f:30:05:46:78:0c:0a:bc:f1:ab:a5:d3:6e:
        c2:e5:a8:f5:0d:89:94:a4:b4:08:79:b7:da:1c:f9:20:
        01:8c:62:c5:3c:b3:f0:a6:4f:00:de:ad:5e:c3:51:1d:
        d1:23:23:5c:8e:54:28:e7:f9:5e:9f:c2:83:6c:da:6f
    Fingerprint (SHA-256):
        85:A0:98:07:AB:BF:54:49:5E:7D:94:DD:88:91:AC:94:85:86:2A:3A:E2:1B:3A:A5:7D:B7:EB:94:C3:09:26:9E
    Fingerprint (SHA1):
        9F:42:4C:0D:85:C1:21:91:44:3D:12:F6:2D:FE:0D:8F:AB:77:11:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4550: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4551: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4552: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #4553: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:86
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:31:36 2017
            Not After : Wed Aug 02 15:31:36 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:f7:e2:dc:0b:62:01:40:87:5c:30:fa:e3:5e:dc:2e:
                    e9:5c:60:55:f6:8f:7e:ab:fc:ea:d8:4e:78:8e:2f:c2:
                    73:5e:d3:7a:fa:fd:ec:ee:5a:cd:9b:97:47:a5:a2:41:
                    25:11:11:75:d8:f9:e3:6e:1a:ed:1a:3c:12:c6:ce:39:
                    b2:b8:98:dd:a3:51:07:1e:6b:d5:44:5d:b6:e4:b4:dd:
                    a8:5a:29:ec:8b:6c:71:61:e1:66:6b:9c:68:b8:b5:f5:
                    2c:fe:85:64:4c:cb:33:61:be:cb:94:a5:39:89:1e:c8:
                    56:07:cf:4a:95:37:48:3d:3d:d5:f2:4f:00:6a:73:3f:
                    6f:6a:26:d8:0e:89:dc:9d:d5:a8:37:14:80:08:de:5b:
                    32:db:ba:a2:58:9c:49:9b:1b:8c:66:bb:a8:c4:11:d2:
                    66:41:67:d2:84:b2:2e:a0:ae:9b:b7:44:80:f1:a8:b8:
                    6a:fb:24:d5:12:ed:ba:3b:8a:93:0f:8f:b3:c8:07:b5:
                    14:a0:bc:51:d0:02:1b:a1:95:31:8a:33:81:38:48:3b:
                    8f:0f:54:cb:d7:e8:cd:18:9a:42:62:f9:ba:36:d1:1b:
                    0e:ec:bb:ed:34:bc:4a:66:53:fc:22:be:8e:12:f5:f0:
                    ae:0b:80:b1:af:6b:99:4a:42:7b:c3:89:cd:49:a5:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:86:12:f9:eb:5f:b5:b0:86:51:a0:74:4e:56:74:e2:
        6b:26:c9:06:35:05:10:b4:5f:d8:3f:55:d2:d5:d2:be:
        76:55:2f:ee:40:ad:71:43:7e:b7:9b:72:94:7b:67:5f:
        82:e7:39:c9:59:6a:df:d5:fd:2e:c5:6a:3f:46:33:72:
        53:3f:a2:6e:40:63:78:df:06:95:b3:10:28:94:b2:87:
        d5:4c:0b:30:93:85:fe:2e:58:4d:93:0f:29:45:04:fc:
        83:0b:39:3a:37:94:4d:c6:8e:05:15:6c:53:83:a4:fe:
        95:49:b8:76:36:7f:76:17:b6:ec:b9:c9:71:07:a6:3e:
        bb:08:3c:9b:e3:7d:b2:9e:29:c5:e9:41:c1:b4:b7:6a:
        43:89:cc:81:b7:d5:2c:08:14:3a:40:d4:21:d0:5d:72:
        84:a1:17:a4:60:50:7c:43:c0:d9:3c:f6:54:38:63:e7:
        5d:66:19:75:6a:9a:04:81:b1:88:b8:14:bd:e0:0e:c7:
        4a:15:17:c0:8d:fe:e1:73:d8:d2:ff:4a:17:80:f5:f6:
        90:b0:2e:e0:8b:8e:97:23:df:00:49:87:49:4d:25:41:
        48:9e:5a:8e:f2:e7:56:f3:7b:79:e2:8f:32:ae:4c:1f:
        97:02:47:34:42:35:c0:48:a9:53:8e:5e:57:e4:79:0e
    Fingerprint (SHA-256):
        09:B2:07:DD:59:11:ED:36:7C:15:21:EA:A9:64:90:42:67:13:72:D1:F1:1C:15:09:3E:1B:2C:F8:E7:44:65:8D
    Fingerprint (SHA1):
        F0:73:7C:27:2A:56:4F:82:CF:33:6F:6F:E8:EF:57:31:64:8D:C5:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4554: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
cert.sh: #4555: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4556: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4557: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4558: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4559: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4560: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #4561: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:87:87
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:31:36 2017
            Not After : Wed Aug 02 15:31:36 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:e8:01:ac:30:e1:19:80:27:46:54:a7:77:de:33:8c:
                    09:44:e5:00:a8:81:5e:b6:82:52:5f:d0:8c:65:d4:02:
                    1a:d3:88:a8:7b:31:6a:3c:00:22:d0:a2:cb:95:d7:f3:
                    71:49:e1:8e:25:50:d8:16:de:77:ec:1b:75:39:41:fc:
                    72:99:61:aa:a1:92:dc:d4:1e:cc:24:d8:b0:ef:cd:5f:
                    58:d5:ae:23:35:79:1b:d2:c1:6e:5f:23:14:ba:b1:24:
                    90:d8:b5:39:14:26:89:80:82:e2:c4:ad:5f:15:0b:4f:
                    22:8d:04:d2:f2:3c:4f:4f:4b:8b:7c:94:d8:44:f2:07:
                    cf:bd:6f:5c:95:74:b7:5d:8a:5b:d7:85:3d:b2:ea:40:
                    2d:72:6a:6b:40:fa:23:39:9a:3e:26:72:93:6e:c6:4b:
                    80:a0:5a:7a:16:8a:68:fc:ec:0a:3e:4a:aa:5f:ff:3e:
                    0a:ad:93:40:f6:5e:1f:6a:34:56:a7:5f:a1:4e:34:f0:
                    b6:52:05:e6:b6:b5:a1:27:91:44:2d:82:9b:25:ad:05:
                    2a:d8:39:8d:dd:d5:19:e7:2c:17:4e:3b:c4:eb:c8:82:
                    40:25:46:77:e0:18:5f:25:15:f2:09:89:5f:5a:3d:a9:
                    ee:cf:de:b6:34:3e:73:60:cb:75:72:4c:83:b2:0b:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:ad:2f:1c:0c:61:da:83:a3:dc:df:7a:92:50:3c:86:
        30:52:95:0d:0d:7a:49:34:82:98:c7:cd:d8:d6:58:fc:
        11:c4:05:6f:5b:35:17:9c:8d:61:69:9a:a4:da:06:a1:
        0e:13:75:de:c1:a8:42:0e:e8:c3:ad:c3:ed:a9:cd:f7:
        45:a4:3e:47:e9:34:9c:5a:91:3a:c7:3c:cf:5c:7e:af:
        d1:e0:53:51:d4:c7:89:e9:7b:86:95:c1:53:3e:c1:cf:
        c2:6a:0e:09:d2:10:af:a9:83:37:3d:f3:6d:b0:bc:18:
        06:31:65:9a:1d:9e:af:82:27:ce:c0:7d:3b:9a:91:18:
        e2:b6:8f:b9:70:5c:e7:25:e5:34:18:98:f9:35:6b:29:
        ec:b5:de:82:d0:20:61:9c:ce:16:fe:4b:b0:76:3a:75:
        e7:95:22:87:25:00:63:bc:6d:0d:5c:45:ef:ec:c2:f2:
        f6:2a:2f:90:e0:96:ad:04:58:c9:fd:95:4f:25:01:db:
        2b:fe:95:58:c2:8d:c8:30:63:12:c7:68:5f:91:18:92:
        3b:48:30:05:a6:94:03:26:e8:c2:59:58:17:36:02:4b:
        85:f3:66:74:7a:97:e2:af:cd:59:0b:e8:d5:43:2a:9f:
        fa:9c:b1:fa:40:ed:be:1f:c5:d7:f8:83:84:77:44:cf
    Fingerprint (SHA-256):
        46:BE:8A:C3:E5:8F:0D:6D:54:DE:EC:5A:31:2D:45:AC:D3:C8:C5:8C:91:46:65:BE:4C:7F:7C:16:32:E2:D1:1F
    Fingerprint (SHA1):
        13:7D:85:E8:01:D9:98:58:65:F9:37:53:A8:31:03:3E:0F:AB:F2:03
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4562: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4563: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4564: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw
cert.sh: #4565: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4566: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4567: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -o root.cert
cert.sh: #4568: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #4569: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4570: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #4571: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4572: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4573: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA.ca.cert
cert.sh: #4574: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4575: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #4576: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4577: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #4578: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4579: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4580: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #4581: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4582: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4583: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #4584: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4585: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4586: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #4587: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4588: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4589: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #4590: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4591: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4592: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #4593: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4594: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #4595: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4596: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #4597: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4598: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4599: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4600: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4601: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4602: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4603: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4604: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4605: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4606: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4607: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4608: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4609: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4610: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #4611: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4612: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #4613: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4614: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4615: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #4616: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4617: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4618: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #4619: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4620: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4621: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #4622: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4623: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4624: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #4625: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4626: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4627: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #4628: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4629: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4630: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #4631: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4632: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4633: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #4634: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4635: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4636: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #4637: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4638: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4639: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #4640: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4641: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4642: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #4643: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4644: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4645: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #4646: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4647: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4648: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #4649: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4650: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4651: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #4652: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4653: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4654: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #4655: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4656: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4657: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #4658: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4659: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4660: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #4661: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4662: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4663: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #4664: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4665: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4666: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #4667: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4668: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4669: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #4670: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4671: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4672: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #4673: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4674: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4675: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #4676: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4677: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4678: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #4679: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4680: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4681: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #4682: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4683: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4684: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #4685: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4686: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4687: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #4688: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4689: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4690: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #4691: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4692: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4693: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #4694: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4695: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4696: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #4697: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4698: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4699: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #4700: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4701: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4702: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #4703: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4704: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4705: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #4706: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4707: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4708: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #4709: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4710: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4711: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #4712: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4713: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4714: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #4715: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4716: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4717: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #4718: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4719: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4720: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #4721: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4722: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4723: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #4724: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4725: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4726: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #4727: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4728: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4729: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #4730: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4731: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4732: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #4733: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4734: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4735: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #4736: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4737: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4738: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #4739: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4740: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4741: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #4742: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4743: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4744: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #4745: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4746: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4747: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #4748: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4749: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4750: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #4751: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4752: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4753: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #4754: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4755: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4756: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #4757: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4758: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4759: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #4760: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4761: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4762: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #4763: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4764: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4765: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #4766: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4767: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4768: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #4769: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4770: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4771: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #4772: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4773: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4774: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #4775: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4776: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4777: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #4778: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4779: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4780: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #4781: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4782: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4783: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #4784: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4785: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4786: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #4787: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4788: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4789: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #4790: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4791: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4792: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #4793: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4794: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4795: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #4796: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4797: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4798: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #4799: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4800: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4801: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #4802: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4803: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4804: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #4805: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4806: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #4807: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #4808: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #4809: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #4810: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #4811: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #4812: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4813: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4814: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #4815: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #4816: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #4817: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #4818: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #4819: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4820: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #4821: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4822: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #4823: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 15:31:56 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:31:56 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4824: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                65:74:6b:50:b8:53:82:f0:42:ec:9a:08:eb:41:85:1a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4825: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4826: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4827: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4828: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f1:00:50:dd:6f:88:dd:70:43:5b:10:39:94:c3:6d:06
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:31:23 2017
            Not After : Mon May 02 15:31:23 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:79:3a:6d:c8:de:95:8f:d9:1d:c3:2d:e4:71:fd:
                    a1:a3:ce:a1:d9:f4:9e:a7:82:48:df:66:fe:24:2e:2e:
                    1f:5c:14:1f:e8:1d:ce:7c:62:57:89:cf:b0:9e:63:4f:
                    88:fd:f3:60:fe:56:9b:ae:28:da:a2:cc:e1:45:be:be:
                    dc:a8:bd:00:bc:d6:f6:1d:33:d4:89:da:19:63:cb:ed:
                    54:4e:8b:8c:28:5a:8a:b9:37:d9:c0:81:63:49:68:7c:
                    0a:e7:3a:a4:31:8d:2f:db:77:c1:8f:24:6c:72:38:77:
                    07:de:86:3d:69:95:b6:8c:06:24:fe:72:27:f7:cc:37:
                    91:fe:87:e1:87
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:bd:9f:a4:32:1c:1c:88:60:8a:a8:
        87:73:f0:3b:aa:76:92:a7:08:2c:79:a7:be:d4:ed:17:
        36:7f:c1:09:6c:74:81:06:90:fd:f3:2d:1c:f0:14:69:
        14:63:1c:64:c9:02:71:71:cf:7c:c6:d2:a0:19:63:ee:
        30:3e:2d:a9:e6:57:ea:02:42:01:89:85:21:fe:24:15:
        a8:28:ff:45:9e:a2:61:15:6b:59:0e:ef:bc:53:3d:65:
        24:9d:d7:61:54:57:32:6b:de:c1:bb:a8:5c:b4:6e:ab:
        61:93:7d:bf:4c:36:1e:96:74:a7:13:0f:c5:8f:ab:1d:
        bc:4f:d9:4c:45:b0:f7:dd:dd:63:86
    Fingerprint (SHA-256):
        AF:0A:DE:18:BC:82:27:1A:E3:13:1A:52:97:F1:5F:12:DA:99:32:89:0A:16:B7:28:EE:CA:7E:35:6F:96:0C:E4
    Fingerprint (SHA1):
        0F:9D:0D:B1:1C:B2:BB:27:A4:4E:9A:F1:20:4D:F7:D5:74:E3:14:4B
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:58:02:13:ac:e2:d6:a0:ff:f8:af:ef:ca:24:fe:b9:
                    43:12:7e:1f:92:15:19:d0:00:05:ce:d5:0e:bf:e3:cf:
                    ba:c9:78:36:ea:48:cd:18:83:fe:65:43:8a:fb:0a:a1:
                    88:30:cc:cd:19:84:28:2e:ae:01:e5:7d:20:12:6f:f5:
                    ee:bb:50:55:31:fb:36:38:72:a2:b4:c2:67:9b:00:e1:
                    c9:e1:de:f4:5b:33:11:56:02:c8:03:25:fd:36:55:37:
                    90
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:d8:a7:5b:04:74:56:ba:8e:2d:ed:
        92:44:a9:6f:67:99:6f:22:2d:01:56:2b:48:ab:26:5f:
        a5:4e:25:83:b3:da:00:85:65:c8:19:ec:38:87:e4:b4:
        2e:f1:5b:41:fb:ea:71:94:50:9c:72:cd:d0:30:e9:82:
        b0:88:d5:4e:51:6d:68:02:42:01:ea:87:62:73:ba:c4:
        9a:f1:78:88:34:67:e8:18:da:6b:00:47:0c:08:6b:e6:
        56:c5:4d:80:f0:2a:f6:60:1f:50:5b:f8:b9:dc:a8:2b:
        63:94:b2:3d:1e:43:d9:e0:65:56:5b:18:d1:ba:34:ca:
        8d:e5:a1:10:21:d1:dc:00:14:4b:53
    Fingerprint (SHA-256):
        F5:FF:22:F5:09:69:15:08:7A:8F:25:50:2A:FD:B1:9F:31:54:2A:8B:67:D3:94:F9:E8:BE:15:E6:66:0E:62:D0
    Fingerprint (SHA1):
        BE:CB:18:F3:C2:2A:7D:25:B4:44:0F:B2:AC:1D:D5:62:3C:BF:D2:1D
    Friendly Name: Alice-ec
tools.sh: #4829: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4830: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                db:a1:fb:df:4d:c7:11:0c:f1:87:d9:9a:00:51:a1:5a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4831: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4832: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4833: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                87:5b:4a:27:8f:c6:c1:da:65:ad:a6:b3:b4:f0:58:ed
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4834: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4835: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4836: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                2b:b3:ca:0c:12:a7:09:22:21:cd:0b:31:0b:fc:13:4c
            Iteration Count: 2000 (0x7d0)
tools.sh: #4837: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4838: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4839: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fb:7f:4d:cb:7a:ec:3a:26:38:f3:09:75:0d:50:9d:14
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4840: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4841: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4842: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                83:df:72:d1:c3:a1:1a:67:9a:ec:54:6f:95:35:35:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4843: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4844: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4845: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fd:98:98:5e:85:f9:9b:9f:64:89:8b:89:0d:7b:dd:f3
            Iteration Count: 2000 (0x7d0)
tools.sh: #4846: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4847: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4848: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        13:80:3a:b9:cb:af:37:07:09:35:a7:2d:b1:07:ca:19
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:7c:55:0a:bb:90:c6:6c:f6:43:1a:9c:7b:b9:d7:
                    09:c4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4849: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4850: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4851: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a6:20:75:6d:b5:3d:90:89:80:88:92:cd:b6:5a:49:e9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:bf:56:57:86:dd:7c:87:8f:4b:3f:40:3e:c5:4c:
                    f2:ce
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4852: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4853: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4854: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        18:33:5c:a1:e5:c9:63:d3:17:dc:ae:bf:5f:46:d6:e3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:6a:c4:33:55:fd:64:28:e0:e8:ef:a1:5e:dc:ef:
                    83:f0
tools.sh: #4855: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4856: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4857: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        87:6d:59:47:80:7f:11:f4:7a:3d:0c:a8:1a:9f:e3:7c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:3d:dd:37:b1:30:3d:7b:be:d0:8a:d9:10:b6:8f:
                    74:3e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4858: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4859: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4860: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        29:eb:84:60:9a:b8:41:3c:43:5c:9c:89:e9:65:80:f6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d7:af:8f:e8:8e:51:e4:7a:75:0a:27:87:2b:35:
                    6c:93
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4861: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4862: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4863: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3b:b5:f6:42:ee:70:ab:e3:61:e0:1a:4e:fa:11:e6:57
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:55:58:ec:5f:ea:0d:50:fc:d0:4d:98:aa:5d:92:
                    b8:ce
tools.sh: #4864: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4865: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4866: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        47:f4:26:ed:40:69:33:fc:da:b8:2d:72:f0:59:16:d8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:70:8c:3f:8b:34:78:fa:bb:90:66:35:68:63:13:
                    51:25
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4867: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4868: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4869: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        08:18:95:c9:95:2e:39:3f:3d:80:f5:e0:da:a1:e2:1d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:7c:89:9d:25:51:ac:21:d4:e9:b3:81:79:c5:0f:
                    5e:37
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4870: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4871: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4872: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d4:c9:53:21:e9:65:0a:d5:30:ff:16:eb:c5:aa:bd:7a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:54:2c:03:b7:a5:a2:e4:27:bb:0d:c6:a6:dc:f3:
                    4e:e9
tools.sh: #4873: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4874: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4875: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:22:f1:64:eb:23:ef:b9:05:0b:8b:b4:fc:f2:7c:bb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:1c:7a:f6:a8:fe:01:ce:54:ef:a2:aa:40:17:14:
                    3d:71
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4876: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4877: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4878: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fe:46:38:33:30:3d:27:93:2a:5d:43:e2:27:3d:ca:d2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:15:f2:6a:de:8a:a3:28:bd:84:42:9f:e5:3b:c3:
                    18:fa
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4879: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4880: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4881: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d8:db:95:a4:63:f0:a4:8f:e5:a6:1d:81:ae:d1:fe:23
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:ec:3a:af:88:c2:ad:df:dc:b8:16:87:e7:8a:9b:
                    fe:3d
tools.sh: #4882: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4883: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4884: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a7:db:a2:91:0d:f9:83:a5:2b:bf:d3:31:c2:b9:f2:fe
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:fb:2c:5b:3e:c1:ec:4c:b5:44:48:aa:cd:b8:d1:
                    00:dc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4885: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4886: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4887: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:4e:da:1f:62:bc:50:32:87:0c:0b:5a:59:e8:91:b2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:dc:e8:50:52:ee:55:e6:18:89:35:01:56:3a:ad:
                    21:55
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4888: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4889: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4890: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        65:b5:8c:95:50:06:f8:49:7c:8e:12:c2:78:c1:82:0d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:5c:9e:e8:67:3d:94:b8:db:b0:dd:a9:73:c1:c4:
                    46:d2
tools.sh: #4891: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4892: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4893: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c6:96:92:ef:61:f9:67:6f:77:fb:88:ba:5f:a6:f1:d0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:2d:bd:0b:8e:df:41:00:6d:1e:33:6a:7d:ce:09:
                    f5:31
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4894: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4895: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4896: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        df:67:2c:e1:f4:be:38:cb:9e:85:01:c0:31:3e:55:00
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:bb:6c:0c:66:69:75:8f:54:47:13:bb:5d:15:eb:
                    5a:32
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4897: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4898: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4899: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a9:94:25:e9:46:dc:57:81:1b:ca:8a:e6:80:76:60:48
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ff:62:4b:2b:da:c7:33:69:45:1a:71:5d:39:0b:
                    3a:8a
tools.sh: #4900: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4901: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4902: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                a5:77:3c:b1:02:9a:13:ab:d0:3d:7c:2e:0c:c8:5f:95
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4903: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4904: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4905: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                dc:d1:30:0b:50:3f:ec:fc:ed:7e:e3:f4:ff:00:b1:40
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4906: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4907: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4908: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                7b:de:2f:80:8c:03:83:c3:9f:3c:3a:88:da:5a:b0:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4909: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4910: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4911: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                e0:da:d1:a5:45:a7:39:87:c1:c9:9b:0c:5d:2c:8f:1b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4912: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4913: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4914: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                f8:7b:b9:dc:42:18:ac:fb:76:ad:3d:98:6b:c5:bd:95
            Iteration Count: 2000 (0x7d0)
tools.sh: #4915: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4916: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4917: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                87:f9:55:83:3b:10:93:ee:17:c7:e2:30:06:1c:0a:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4918: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4919: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4920: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                fb:5e:33:77:4e:81:d4:55:b4:5e:7d:24:96:1f:66:2b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4921: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4922: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4923: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b5:78:8c:4a:ac:5e:55:d5:88:5a:0f:0c:85:c2:a1:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4924: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4925: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4926: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                44:40:7b:dc:37:a0:f4:62:d7:1e:c3:36:d1:17:c9:c1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4927: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4928: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4929: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b5:f0:96:3f:db:c9:58:06:79:19:34:8b:8d:2a:74:6f
            Iteration Count: 2000 (0x7d0)
tools.sh: #4930: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4931: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4932: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                14:a7:d8:3a:5a:6f:c4:c8:d3:1b:9a:6f:92:69:3a:a2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4933: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4934: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4935: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                4d:2e:e1:bb:4b:8a:2a:85:e1:7a:ea:ce:6d:27:cb:69
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4936: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4937: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4938: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                09:5a:a4:5f:43:36:42:f2:84:32:58:f8:ec:ac:d7:0f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4939: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4940: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4941: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                83:9e:59:46:0b:39:3a:d8:a7:c4:0e:a9:0b:21:40:7e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4942: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4943: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4944: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                37:19:d7:ef:0d:c3:3f:8b:30:74:fc:c8:34:c3:e3:db
            Iteration Count: 2000 (0x7d0)
tools.sh: #4945: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4946: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4947: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                27:cf:83:5f:9f:47:f0:02:de:45:94:0a:f5:19:66:f9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4948: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4949: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4950: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                15:64:e9:ed:40:24:c0:bf:6e:af:74:7e:a5:6b:17:87
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4951: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4952: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4953: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ec:40:39:50:7b:db:5c:36:aa:e8:29:d1:a7:25:11:86
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4954: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4955: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4956: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fc:84:9c:92:c7:26:b3:c4:a8:66:6e:56:53:3c:d6:30
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4957: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4958: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4959: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3e:e9:59:2d:f1:e1:93:e2:7d:81:9c:ba:39:8f:32:ed
            Iteration Count: 2000 (0x7d0)
tools.sh: #4960: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4961: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4962: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                dd:6b:85:00:69:b8:4c:78:9f:97:e3:5a:94:82:7b:a1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4963: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4964: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4965: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                92:28:ab:09:b6:37:01:ae:ec:20:f5:f2:ce:dc:55:fe
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4966: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4967: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4968: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3d:bb:85:57:3a:0f:0c:4d:6c:f7:af:52:cd:2a:6d:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4969: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4970: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4971: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                83:a2:05:f0:ac:7a:7a:30:0f:df:36:f2:38:47:da:9e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4972: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4973: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4974: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fd:ba:e9:fe:b7:86:1c:e6:96:27:f8:a6:6a:e1:6e:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4975: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4976: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4977: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                64:e7:90:98:4e:8b:9a:b2:2c:8b:97:de:06:e8:45:3a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4978: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4979: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4980: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                19:aa:96:49:cb:78:3f:5c:3f:e1:19:e1:24:aa:b7:7d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4981: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4982: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4983: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                24:97:94:72:35:17:13:30:16:4d:13:35:cd:8e:55:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4984: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4985: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4986: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                73:56:19:40:ae:c8:7d:ed:27:df:29:83:ee:7d:d7:10
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4987: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4988: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4989: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a9:85:8a:da:69:e2:b3:ef:c6:c2:3a:46:58:3f:cc:e7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:22 2017
            Not After : Mon May 02 15:31:22 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bc:8a:b2:cc:f9:40:d0:8a:8c:08:19:9b:e1:85:63:
                    25:85:41:ba:8d:c0:1f:22:77:78:33:bc:72:ca:7c:d2:
                    9c:f5:21:10:58:a1:24:bd:d1:9d:81:01:a7:64:0b:fd:
                    d2:3d:c2:77:eb:04:b1:a3:83:2b:1f:bb:59:a7:e7:33:
                    4a:1a:bd:6e:b7:07:89:c0:b6:53:ef:51:3c:58:10:8d:
                    e9:77:bf:87:0e:e5:55:36:31:18:25:fa:7d:1d:b8:25:
                    54:57:ac:19:6f:3f:e0:6d:b7:bc:3f:7d:c3:67:02:ed:
                    4c:a4:c1:13:1b:45:56:4a:7f:9c:28:03:bc:fe:c9:16:
                    60:a3:00:82:ef:dd:5d:73:62:a8:ce:fa:b1:74:3a:6d:
                    15:a0:17:46:0c:e0:16:80:c5:d9:a3:87:30:2f:d7:33:
                    d8:b3:f3:75:9e:60:fb:c8:36:98:d9:a5:fa:98:8e:aa:
                    1e:2b:75:8f:d6:58:8f:86:0b:bb:9a:70:ed:73:d2:e3:
                    75:8f:19:cf:5b:07:fe:e2:35:ef:57:24:8c:4d:64:8e:
                    c2:01:68:53:b7:b0:08:19:8a:33:1c:eb:0b:7b:c8:c3:
                    7d:9d:bc:eb:a0:84:62:c9:92:42:44:d1:1f:da:fe:b5:
                    f5:21:26:b8:9b:87:5a:f6:65:58:0d:2d:ac:da:f4:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:97:6d:17:d6:1c:89:ef:f5:6f:7e:99:f7:e7:d1:8a:
        62:8e:8a:20:49:dd:84:5a:92:cc:ee:b7:88:5d:94:90:
        ad:2e:e5:ba:b7:97:e2:fd:cc:89:13:b4:5a:7a:35:a2:
        68:0a:22:6a:36:20:1f:34:8f:30:a3:88:35:2a:2c:97:
        be:b8:ee:29:f1:d9:cc:94:32:69:17:ad:8a:b6:30:46:
        4c:38:78:8f:ff:0c:94:23:ba:46:0c:f9:a5:06:b2:ee:
        70:c8:75:f8:dd:18:09:b4:f6:9b:c0:31:d8:bc:01:3b:
        c4:b8:b4:a7:60:0c:84:2f:e2:7f:15:63:dc:09:b6:dc:
        68:8a:31:9c:82:56:87:fa:0b:69:ff:e5:96:98:4d:32:
        78:3d:43:71:af:8c:fd:a9:a8:35:fa:26:10:92:da:55:
        bc:04:8f:a6:8d:d1:b1:ac:4c:e4:56:5a:f5:bf:cf:6e:
        ea:7a:88:c8:39:d2:3c:a4:af:a9:71:00:a9:ee:f8:cd:
        c2:45:51:a9:96:c2:7d:46:89:90:03:a2:da:ee:7a:a7:
        f7:95:d5:7d:01:2c:be:46:4d:8d:d2:7a:cb:ee:e2:c5:
        c2:0a:2a:ad:b4:22:10:21:51:38:8d:91:7d:71:14:24:
        bb:01:1d:4c:ef:58:ab:28:5b:36:aa:ac:8e:aa:2f:49
    Fingerprint (SHA-256):
        66:A3:18:21:73:40:D2:0C:8C:05:CE:95:DF:2E:B3:5A:83:FD:F0:6E:CB:D9:CE:87:B2:B0:EE:DF:AF:65:DC:DA
    Fingerprint (SHA1):
        A2:02:40:29:B6:B8:DC:38:D0:02:48:BD:FA:D4:CF:7E:FA:39:33:7D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:31:28 2017
            Not After : Mon May 02 15:31:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2c:af:3a:ea:2f:55:3d:ce:da:10:6d:57:31:db:9e:
                    53:b1:0e:d6:03:89:d9:55:e3:c0:2b:ce:e2:93:00:36:
                    db:0f:82:2e:9c:a8:bf:b4:03:d4:bb:64:7b:ce:1b:c8:
                    57:58:c3:e2:0c:46:57:d2:90:d6:45:f9:56:6e:0a:7a:
                    fd:c5:85:37:1b:03:0c:f3:5d:28:eb:6e:30:49:15:52:
                    50:b0:39:61:64:32:0b:b6:44:59:79:19:07:cc:93:13:
                    42:f3:cb:54:60:20:d6:4d:0f:b1:58:d6:de:07:64:b9:
                    42:0c:42:d7:f3:fa:44:42:f7:3e:dd:44:77:d0:d7:26:
                    bd:44:95:22:9a:35:9d:70:cc:1a:20:ed:6c:d8:4c:8d:
                    42:3b:b7:30:ce:05:14:87:55:9c:d6:21:8b:44:46:a2:
                    eb:83:f3:12:ad:8f:2a:80:97:b0:2b:a4:1f:7e:76:0d:
                    34:bd:eb:da:9f:15:77:35:f6:a9:59:ae:c8:32:a5:70:
                    90:36:dc:3e:49:34:0c:9b:63:d3:8a:68:1e:57:5a:cf:
                    26:70:8b:cf:22:3b:68:4a:2a:ce:56:b7:86:2b:fb:17:
                    e5:bc:41:22:60:d5:ae:08:0a:99:84:b7:a5:d9:4e:39:
                    4e:53:a7:af:95:8d:82:d6:ba:bf:c9:98:80:fc:44:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:45:21:a0:d1:78:c4:24:ab:84:5a:b4:06:31:0a:49:
        6a:9b:f4:f0:32:ca:0c:fa:7a:6f:54:e3:8d:2d:a5:90:
        21:94:e5:50:ab:85:2f:5a:5e:46:3c:5f:0d:de:5c:f8:
        dd:ff:32:6a:b6:ac:01:49:08:7e:f1:cf:33:fd:2e:d6:
        0a:36:85:1a:26:d9:60:b9:84:4b:5a:84:db:22:45:25:
        66:f1:23:c9:be:06:44:8f:2e:78:29:a3:73:d8:6e:bc:
        74:8f:f6:f1:0f:6f:f1:0e:8b:7d:b2:55:57:49:5c:6f:
        e7:b8:6e:a7:62:bc:4b:8e:c9:3e:ed:bb:86:32:ca:6a:
        8e:bc:5e:31:28:59:26:a3:d6:4b:4d:2f:44:c2:9c:4d:
        9d:e1:27:98:00:89:68:d7:a0:4b:7e:61:50:50:c1:89:
        05:96:41:2b:cc:49:a6:76:3b:ef:0d:66:97:fb:bb:6b:
        ed:e6:57:ab:22:82:ea:d9:72:19:ad:09:82:ef:cc:78:
        6e:ea:0f:df:6e:84:e4:7e:3b:ca:18:14:e8:42:71:5a:
        71:c8:43:bc:76:2e:cd:94:45:56:30:17:7b:41:e6:3d:
        1f:23:2f:86:b9:ed:38:82:b2:88:2b:9a:86:b7:09:51:
        c4:f7:44:8a:3a:97:4a:b1:7a:07:56:46:3a:47:9f:9f
    Fingerprint (SHA-256):
        DC:2E:1A:8B:FA:35:83:76:3D:B9:6D:86:AC:A7:37:5E:EA:A6:30:80:84:B3:4B:D3:D7:2C:B4:8B:A9:AB:43:77
    Fingerprint (SHA1):
        75:7C:19:BC:41:EC:BA:A1:13:88:02:5B:FE:76:88:04:3A:AC:42:9B
    Friendly Name: Alice
tools.sh: #4990: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4991: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #4992: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4993: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #4994: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #4995: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #4996: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #4997: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #4998: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #4999: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5000: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:32:01 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:32:01 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #5001: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5002: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      589f5cb13a0f1597960760fb164ae67aa43d670e   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #5003: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #5004: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #5005: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #5006: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #5007: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5008: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #5009: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5010: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #5011: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5012: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5013: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      589f5cb13a0f1597960760fb164ae67aa43d670e   FIPS_PUB_140_Test_Certificate
fips.sh: #5014: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #5015: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5016: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5017: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5018: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      589f5cb13a0f1597960760fb164ae67aa43d670e   FIPS_PUB_140_Test_Certificate
fips.sh: #5019: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #5020: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #5021: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
Changing byte 0x0003fd48 (261448): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle dbtest -r -d ../fips
fips.sh: #5022: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:32:10 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:32:10 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23258 >/dev/null 2>/dev/null
selfserv_9247 with PID 23258 found at Tue May  2 15:32:10 UTC 2017
selfserv_9247 with PID 23258 started at Tue May  2 15:32:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5023: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23258 at Tue May  2 15:32:10 UTC 2017
kill -USR1 23258
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23258 killed at Tue May  2 15:32:10 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23314 >/dev/null 2>/dev/null
selfserv_9247 with PID 23314 found at Tue May  2 15:32:10 UTC 2017
selfserv_9247 with PID 23314 started at Tue May  2 15:32:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5024: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23314 at Tue May  2 15:32:10 UTC 2017
kill -USR1 23314
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23314 killed at Tue May  2 15:32:10 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23370 >/dev/null 2>/dev/null
selfserv_9247 with PID 23370 found at Tue May  2 15:32:10 UTC 2017
selfserv_9247 with PID 23370 started at Tue May  2 15:32:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5025: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23370 at Tue May  2 15:32:10 UTC 2017
kill -USR1 23370
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23370 killed at Tue May  2 15:32:10 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23438 >/dev/null 2>/dev/null
selfserv_9247 with PID 23438 found at Tue May  2 15:32:10 UTC 2017
selfserv_9247 with PID 23438 started at Tue May  2 15:32:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5026: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23438 at Tue May  2 15:32:11 UTC 2017
kill -USR1 23438
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23438 killed at Tue May  2 15:32:11 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23494 >/dev/null 2>/dev/null
selfserv_9247 with PID 23494 found at Tue May  2 15:32:11 UTC 2017
selfserv_9247 with PID 23494 started at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5027: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23494 at Tue May  2 15:32:11 UTC 2017
kill -USR1 23494
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23494 killed at Tue May  2 15:32:11 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23550 >/dev/null 2>/dev/null
selfserv_9247 with PID 23550 found at Tue May  2 15:32:11 UTC 2017
selfserv_9247 with PID 23550 started at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5028: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23550 at Tue May  2 15:32:11 UTC 2017
kill -USR1 23550
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23550 killed at Tue May  2 15:32:11 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23618 >/dev/null 2>/dev/null
selfserv_9247 with PID 23618 found at Tue May  2 15:32:11 UTC 2017
selfserv_9247 with PID 23618 started at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5029: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23618 at Tue May  2 15:32:11 UTC 2017
kill -USR1 23618
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23618 killed at Tue May  2 15:32:11 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23674 >/dev/null 2>/dev/null
selfserv_9247 with PID 23674 found at Tue May  2 15:32:11 UTC 2017
selfserv_9247 with PID 23674 started at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5030: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 23674 at Tue May  2 15:32:11 UTC 2017
kill -USR1 23674
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23674 killed at Tue May  2 15:32:11 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23730 >/dev/null 2>/dev/null
selfserv_9247 with PID 23730 found at Tue May  2 15:32:11 UTC 2017
selfserv_9247 with PID 23730 started at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5031: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23730 at Tue May  2 15:32:11 UTC 2017
kill -USR1 23730
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23730 killed at Tue May  2 15:32:11 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23798 >/dev/null 2>/dev/null
selfserv_9247 with PID 23798 found at Tue May  2 15:32:11 UTC 2017
selfserv_9247 with PID 23798 started at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5032: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23798 at Tue May  2 15:32:11 UTC 2017
kill -USR1 23798
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23798 killed at Tue May  2 15:32:11 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23854 >/dev/null 2>/dev/null
selfserv_9247 with PID 23854 found at Tue May  2 15:32:11 UTC 2017
selfserv_9247 with PID 23854 started at Tue May  2 15:32:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5033: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23854 at Tue May  2 15:32:12 UTC 2017
kill -USR1 23854
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23854 killed at Tue May  2 15:32:12 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23910 >/dev/null 2>/dev/null
selfserv_9247 with PID 23910 found at Tue May  2 15:32:12 UTC 2017
selfserv_9247 with PID 23910 started at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5034: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23910 at Tue May  2 15:32:12 UTC 2017
kill -USR1 23910
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23910 killed at Tue May  2 15:32:12 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23978 >/dev/null 2>/dev/null
selfserv_9247 with PID 23978 found at Tue May  2 15:32:12 UTC 2017
selfserv_9247 with PID 23978 started at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5035: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 23978 at Tue May  2 15:32:12 UTC 2017
kill -USR1 23978
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23978 killed at Tue May  2 15:32:12 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24034 >/dev/null 2>/dev/null
selfserv_9247 with PID 24034 found at Tue May  2 15:32:12 UTC 2017
selfserv_9247 with PID 24034 started at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5036: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24034 at Tue May  2 15:32:12 UTC 2017
kill -USR1 24034
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24034 killed at Tue May  2 15:32:12 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24090 >/dev/null 2>/dev/null
selfserv_9247 with PID 24090 found at Tue May  2 15:32:12 UTC 2017
selfserv_9247 with PID 24090 started at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5037: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24090 at Tue May  2 15:32:12 UTC 2017
kill -USR1 24090
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24090 killed at Tue May  2 15:32:12 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24158 >/dev/null 2>/dev/null
selfserv_9247 with PID 24158 found at Tue May  2 15:32:12 UTC 2017
selfserv_9247 with PID 24158 started at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5038: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24158 at Tue May  2 15:32:12 UTC 2017
kill -USR1 24158
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24158 killed at Tue May  2 15:32:12 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24214 >/dev/null 2>/dev/null
selfserv_9247 with PID 24214 found at Tue May  2 15:32:12 UTC 2017
selfserv_9247 with PID 24214 started at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5039: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24214 at Tue May  2 15:32:12 UTC 2017
kill -USR1 24214
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24214 killed at Tue May  2 15:32:12 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24270 >/dev/null 2>/dev/null
selfserv_9247 with PID 24270 found at Tue May  2 15:32:12 UTC 2017
selfserv_9247 with PID 24270 started at Tue May  2 15:32:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5040: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24270 at Tue May  2 15:32:13 UTC 2017
kill -USR1 24270
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24270 killed at Tue May  2 15:32:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24338 >/dev/null 2>/dev/null
selfserv_9247 with PID 24338 found at Tue May  2 15:32:13 UTC 2017
selfserv_9247 with PID 24338 started at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5041: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24338 at Tue May  2 15:32:13 UTC 2017
kill -USR1 24338
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24338 killed at Tue May  2 15:32:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24394 >/dev/null 2>/dev/null
selfserv_9247 with PID 24394 found at Tue May  2 15:32:13 UTC 2017
selfserv_9247 with PID 24394 started at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5042: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24394 at Tue May  2 15:32:13 UTC 2017
kill -USR1 24394
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24394 killed at Tue May  2 15:32:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24450 >/dev/null 2>/dev/null
selfserv_9247 with PID 24450 found at Tue May  2 15:32:13 UTC 2017
selfserv_9247 with PID 24450 started at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5043: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24450 at Tue May  2 15:32:13 UTC 2017
kill -USR1 24450
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24450 killed at Tue May  2 15:32:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24518 >/dev/null 2>/dev/null
selfserv_9247 with PID 24518 found at Tue May  2 15:32:13 UTC 2017
selfserv_9247 with PID 24518 started at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5044: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24518 at Tue May  2 15:32:13 UTC 2017
kill -USR1 24518
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24518 killed at Tue May  2 15:32:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24574 >/dev/null 2>/dev/null
selfserv_9247 with PID 24574 found at Tue May  2 15:32:13 UTC 2017
selfserv_9247 with PID 24574 started at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5045: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24574 at Tue May  2 15:32:13 UTC 2017
kill -USR1 24574
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24574 killed at Tue May  2 15:32:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24630 >/dev/null 2>/dev/null
selfserv_9247 with PID 24630 found at Tue May  2 15:32:13 UTC 2017
selfserv_9247 with PID 24630 started at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5046: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24630 at Tue May  2 15:32:13 UTC 2017
kill -USR1 24630
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24630 killed at Tue May  2 15:32:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24698 >/dev/null 2>/dev/null
selfserv_9247 with PID 24698 found at Tue May  2 15:32:13 UTC 2017
selfserv_9247 with PID 24698 started at Tue May  2 15:32:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5047: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24698 at Tue May  2 15:32:14 UTC 2017
kill -USR1 24698
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24698 killed at Tue May  2 15:32:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24754 >/dev/null 2>/dev/null
selfserv_9247 with PID 24754 found at Tue May  2 15:32:14 UTC 2017
selfserv_9247 with PID 24754 started at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5048: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 24754 at Tue May  2 15:32:14 UTC 2017
kill -USR1 24754
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24754 killed at Tue May  2 15:32:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24810 >/dev/null 2>/dev/null
selfserv_9247 with PID 24810 found at Tue May  2 15:32:14 UTC 2017
selfserv_9247 with PID 24810 started at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5049: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24810 at Tue May  2 15:32:14 UTC 2017
kill -USR1 24810
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24810 killed at Tue May  2 15:32:14 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24878 >/dev/null 2>/dev/null
selfserv_9247 with PID 24878 found at Tue May  2 15:32:14 UTC 2017
selfserv_9247 with PID 24878 started at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5050: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24878 at Tue May  2 15:32:14 UTC 2017
kill -USR1 24878
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24878 killed at Tue May  2 15:32:14 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24934 >/dev/null 2>/dev/null
selfserv_9247 with PID 24934 found at Tue May  2 15:32:14 UTC 2017
selfserv_9247 with PID 24934 started at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5051: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24934 at Tue May  2 15:32:14 UTC 2017
kill -USR1 24934
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24934 killed at Tue May  2 15:32:14 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24990 >/dev/null 2>/dev/null
selfserv_9247 with PID 24990 found at Tue May  2 15:32:14 UTC 2017
selfserv_9247 with PID 24990 started at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5052: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 24990 at Tue May  2 15:32:14 UTC 2017
kill -USR1 24990
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24990 killed at Tue May  2 15:32:14 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25058 >/dev/null 2>/dev/null
selfserv_9247 with PID 25058 found at Tue May  2 15:32:14 UTC 2017
selfserv_9247 with PID 25058 started at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5053: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 25058 at Tue May  2 15:32:14 UTC 2017
kill -USR1 25058
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25058 killed at Tue May  2 15:32:14 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25114 >/dev/null 2>/dev/null
selfserv_9247 with PID 25114 found at Tue May  2 15:32:14 UTC 2017
selfserv_9247 with PID 25114 started at Tue May  2 15:32:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5054: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 25114 at Tue May  2 15:32:15 UTC 2017
kill -USR1 25114
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25114 killed at Tue May  2 15:32:15 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25170 >/dev/null 2>/dev/null
selfserv_9247 with PID 25170 found at Tue May  2 15:32:15 UTC 2017
selfserv_9247 with PID 25170 started at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5055: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 25170 at Tue May  2 15:32:15 UTC 2017
kill -USR1 25170
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25170 killed at Tue May  2 15:32:15 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25238 >/dev/null 2>/dev/null
selfserv_9247 with PID 25238 found at Tue May  2 15:32:15 UTC 2017
selfserv_9247 with PID 25238 started at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5056: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 25238 at Tue May  2 15:32:15 UTC 2017
kill -USR1 25238
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25238 killed at Tue May  2 15:32:15 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25294 >/dev/null 2>/dev/null
selfserv_9247 with PID 25294 found at Tue May  2 15:32:15 UTC 2017
selfserv_9247 with PID 25294 started at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5057: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25294 at Tue May  2 15:32:15 UTC 2017
kill -USR1 25294
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25294 killed at Tue May  2 15:32:15 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25350 >/dev/null 2>/dev/null
selfserv_9247 with PID 25350 found at Tue May  2 15:32:15 UTC 2017
selfserv_9247 with PID 25350 started at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5058: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 25350 at Tue May  2 15:32:15 UTC 2017
kill -USR1 25350
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25350 killed at Tue May  2 15:32:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25418 >/dev/null 2>/dev/null
selfserv_9247 with PID 25418 found at Tue May  2 15:32:15 UTC 2017
selfserv_9247 with PID 25418 started at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5059: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25418 at Tue May  2 15:32:15 UTC 2017
kill -USR1 25418
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25418 killed at Tue May  2 15:32:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25474 >/dev/null 2>/dev/null
selfserv_9247 with PID 25474 found at Tue May  2 15:32:15 UTC 2017
selfserv_9247 with PID 25474 started at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5060: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25474 at Tue May  2 15:32:15 UTC 2017
kill -USR1 25474
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25474 killed at Tue May  2 15:32:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25530 >/dev/null 2>/dev/null
selfserv_9247 with PID 25530 found at Tue May  2 15:32:15 UTC 2017
selfserv_9247 with PID 25530 started at Tue May  2 15:32:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5061: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25530 at Tue May  2 15:32:16 UTC 2017
kill -USR1 25530
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25530 killed at Tue May  2 15:32:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25598 >/dev/null 2>/dev/null
selfserv_9247 with PID 25598 found at Tue May  2 15:32:16 UTC 2017
selfserv_9247 with PID 25598 started at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5062: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25598 at Tue May  2 15:32:16 UTC 2017
kill -USR1 25598
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25598 killed at Tue May  2 15:32:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25654 >/dev/null 2>/dev/null
selfserv_9247 with PID 25654 found at Tue May  2 15:32:16 UTC 2017
selfserv_9247 with PID 25654 started at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5063: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25654 at Tue May  2 15:32:16 UTC 2017
kill -USR1 25654
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25654 killed at Tue May  2 15:32:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25710 >/dev/null 2>/dev/null
selfserv_9247 with PID 25710 found at Tue May  2 15:32:16 UTC 2017
selfserv_9247 with PID 25710 started at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5064: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25710 at Tue May  2 15:32:16 UTC 2017
kill -USR1 25710
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25710 killed at Tue May  2 15:32:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25778 >/dev/null 2>/dev/null
selfserv_9247 with PID 25778 found at Tue May  2 15:32:16 UTC 2017
selfserv_9247 with PID 25778 started at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5065: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25778 at Tue May  2 15:32:16 UTC 2017
kill -USR1 25778
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25778 killed at Tue May  2 15:32:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25834 >/dev/null 2>/dev/null
selfserv_9247 with PID 25834 found at Tue May  2 15:32:16 UTC 2017
selfserv_9247 with PID 25834 started at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5066: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 25834 at Tue May  2 15:32:16 UTC 2017
kill -USR1 25834
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25834 killed at Tue May  2 15:32:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25890 >/dev/null 2>/dev/null
selfserv_9247 with PID 25890 found at Tue May  2 15:32:16 UTC 2017
selfserv_9247 with PID 25890 started at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5067: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25890 at Tue May  2 15:32:17 UTC 2017
kill -USR1 25890
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25890 killed at Tue May  2 15:32:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25958 >/dev/null 2>/dev/null
selfserv_9247 with PID 25958 found at Tue May  2 15:32:17 UTC 2017
selfserv_9247 with PID 25958 started at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5068: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25958 at Tue May  2 15:32:17 UTC 2017
kill -USR1 25958
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25958 killed at Tue May  2 15:32:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26014 >/dev/null 2>/dev/null
selfserv_9247 with PID 26014 found at Tue May  2 15:32:17 UTC 2017
selfserv_9247 with PID 26014 started at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5069: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26014 at Tue May  2 15:32:17 UTC 2017
kill -USR1 26014
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26014 killed at Tue May  2 15:32:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26070 >/dev/null 2>/dev/null
selfserv_9247 with PID 26070 found at Tue May  2 15:32:17 UTC 2017
selfserv_9247 with PID 26070 started at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5070: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26070 at Tue May  2 15:32:17 UTC 2017
kill -USR1 26070
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26070 killed at Tue May  2 15:32:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26138 >/dev/null 2>/dev/null
selfserv_9247 with PID 26138 found at Tue May  2 15:32:17 UTC 2017
selfserv_9247 with PID 26138 started at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5071: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26138 at Tue May  2 15:32:17 UTC 2017
kill -USR1 26138
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26138 killed at Tue May  2 15:32:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26194 >/dev/null 2>/dev/null
selfserv_9247 with PID 26194 found at Tue May  2 15:32:17 UTC 2017
selfserv_9247 with PID 26194 started at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5072: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26194 at Tue May  2 15:32:17 UTC 2017
kill -USR1 26194
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26194 killed at Tue May  2 15:32:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26250 >/dev/null 2>/dev/null
selfserv_9247 with PID 26250 found at Tue May  2 15:32:17 UTC 2017
selfserv_9247 with PID 26250 started at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5073: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26250 at Tue May  2 15:32:18 UTC 2017
kill -USR1 26250
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26250 killed at Tue May  2 15:32:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26318 >/dev/null 2>/dev/null
selfserv_9247 with PID 26318 found at Tue May  2 15:32:18 UTC 2017
selfserv_9247 with PID 26318 started at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5074: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26318 at Tue May  2 15:32:18 UTC 2017
kill -USR1 26318
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26318 killed at Tue May  2 15:32:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26374 >/dev/null 2>/dev/null
selfserv_9247 with PID 26374 found at Tue May  2 15:32:18 UTC 2017
selfserv_9247 with PID 26374 started at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5075: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26374 at Tue May  2 15:32:18 UTC 2017
kill -USR1 26374
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26374 killed at Tue May  2 15:32:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26430 >/dev/null 2>/dev/null
selfserv_9247 with PID 26430 found at Tue May  2 15:32:18 UTC 2017
selfserv_9247 with PID 26430 started at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5076: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26430 at Tue May  2 15:32:18 UTC 2017
kill -USR1 26430
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26430 killed at Tue May  2 15:32:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26498 >/dev/null 2>/dev/null
selfserv_9247 with PID 26498 found at Tue May  2 15:32:18 UTC 2017
selfserv_9247 with PID 26498 started at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5077: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26498 at Tue May  2 15:32:18 UTC 2017
kill -USR1 26498
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26498 killed at Tue May  2 15:32:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26554 >/dev/null 2>/dev/null
selfserv_9247 with PID 26554 found at Tue May  2 15:32:18 UTC 2017
selfserv_9247 with PID 26554 started at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5078: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26554 at Tue May  2 15:32:18 UTC 2017
kill -USR1 26554
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26554 killed at Tue May  2 15:32:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26610 >/dev/null 2>/dev/null
selfserv_9247 with PID 26610 found at Tue May  2 15:32:18 UTC 2017
selfserv_9247 with PID 26610 started at Tue May  2 15:32:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5079: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26610 at Tue May  2 15:32:19 UTC 2017
kill -USR1 26610
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26610 killed at Tue May  2 15:32:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26678 >/dev/null 2>/dev/null
selfserv_9247 with PID 26678 found at Tue May  2 15:32:19 UTC 2017
selfserv_9247 with PID 26678 started at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5080: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26678 at Tue May  2 15:32:19 UTC 2017
kill -USR1 26678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26678 killed at Tue May  2 15:32:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26734 >/dev/null 2>/dev/null
selfserv_9247 with PID 26734 found at Tue May  2 15:32:19 UTC 2017
selfserv_9247 with PID 26734 started at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5081: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26734 at Tue May  2 15:32:19 UTC 2017
kill -USR1 26734
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26734 killed at Tue May  2 15:32:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26790 >/dev/null 2>/dev/null
selfserv_9247 with PID 26790 found at Tue May  2 15:32:19 UTC 2017
selfserv_9247 with PID 26790 started at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5082: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26790 at Tue May  2 15:32:19 UTC 2017
kill -USR1 26790
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26790 killed at Tue May  2 15:32:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26858 >/dev/null 2>/dev/null
selfserv_9247 with PID 26858 found at Tue May  2 15:32:19 UTC 2017
selfserv_9247 with PID 26858 started at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5083: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26858 at Tue May  2 15:32:19 UTC 2017
kill -USR1 26858
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26858 killed at Tue May  2 15:32:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26914 >/dev/null 2>/dev/null
selfserv_9247 with PID 26914 found at Tue May  2 15:32:19 UTC 2017
selfserv_9247 with PID 26914 started at Tue May  2 15:32:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5084: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26914 at Tue May  2 15:32:20 UTC 2017
kill -USR1 26914
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26914 killed at Tue May  2 15:32:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26970 >/dev/null 2>/dev/null
selfserv_9247 with PID 26970 found at Tue May  2 15:32:20 UTC 2017
selfserv_9247 with PID 26970 started at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5085: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26970 at Tue May  2 15:32:20 UTC 2017
kill -USR1 26970
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26970 killed at Tue May  2 15:32:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27038 >/dev/null 2>/dev/null
selfserv_9247 with PID 27038 found at Tue May  2 15:32:20 UTC 2017
selfserv_9247 with PID 27038 started at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5086: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27038 at Tue May  2 15:32:20 UTC 2017
kill -USR1 27038
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27038 killed at Tue May  2 15:32:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27094 >/dev/null 2>/dev/null
selfserv_9247 with PID 27094 found at Tue May  2 15:32:20 UTC 2017
selfserv_9247 with PID 27094 started at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5087: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27094 at Tue May  2 15:32:20 UTC 2017
kill -USR1 27094
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27094 killed at Tue May  2 15:32:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27150 >/dev/null 2>/dev/null
selfserv_9247 with PID 27150 found at Tue May  2 15:32:20 UTC 2017
selfserv_9247 with PID 27150 started at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5088: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27150 at Tue May  2 15:32:20 UTC 2017
kill -USR1 27150
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27150 killed at Tue May  2 15:32:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27218 >/dev/null 2>/dev/null
selfserv_9247 with PID 27218 found at Tue May  2 15:32:20 UTC 2017
selfserv_9247 with PID 27218 started at Tue May  2 15:32:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5089: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27218 at Tue May  2 15:32:21 UTC 2017
kill -USR1 27218
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27218 killed at Tue May  2 15:32:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27274 >/dev/null 2>/dev/null
selfserv_9247 with PID 27274 found at Tue May  2 15:32:21 UTC 2017
selfserv_9247 with PID 27274 started at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5090: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27274 at Tue May  2 15:32:21 UTC 2017
kill -USR1 27274
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27274 killed at Tue May  2 15:32:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27330 >/dev/null 2>/dev/null
selfserv_9247 with PID 27330 found at Tue May  2 15:32:21 UTC 2017
selfserv_9247 with PID 27330 started at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5091: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27330 at Tue May  2 15:32:21 UTC 2017
kill -USR1 27330
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27330 killed at Tue May  2 15:32:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27398 >/dev/null 2>/dev/null
selfserv_9247 with PID 27398 found at Tue May  2 15:32:21 UTC 2017
selfserv_9247 with PID 27398 started at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5092: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27398 at Tue May  2 15:32:21 UTC 2017
kill -USR1 27398
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27398 killed at Tue May  2 15:32:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27454 >/dev/null 2>/dev/null
selfserv_9247 with PID 27454 found at Tue May  2 15:32:21 UTC 2017
selfserv_9247 with PID 27454 started at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5093: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27454 at Tue May  2 15:32:21 UTC 2017
kill -USR1 27454
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27454 killed at Tue May  2 15:32:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27510 >/dev/null 2>/dev/null
selfserv_9247 with PID 27510 found at Tue May  2 15:32:21 UTC 2017
selfserv_9247 with PID 27510 started at Tue May  2 15:32:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5094: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27510 at Tue May  2 15:32:22 UTC 2017
kill -USR1 27510
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27510 killed at Tue May  2 15:32:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27578 >/dev/null 2>/dev/null
selfserv_9247 with PID 27578 found at Tue May  2 15:32:22 UTC 2017
selfserv_9247 with PID 27578 started at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5095: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27578 at Tue May  2 15:32:22 UTC 2017
kill -USR1 27578
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27578 killed at Tue May  2 15:32:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27634 >/dev/null 2>/dev/null
selfserv_9247 with PID 27634 found at Tue May  2 15:32:22 UTC 2017
selfserv_9247 with PID 27634 started at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5096: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27634 at Tue May  2 15:32:22 UTC 2017
kill -USR1 27634
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27634 killed at Tue May  2 15:32:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27690 >/dev/null 2>/dev/null
selfserv_9247 with PID 27690 found at Tue May  2 15:32:22 UTC 2017
selfserv_9247 with PID 27690 started at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5097: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27690 at Tue May  2 15:32:22 UTC 2017
kill -USR1 27690
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27690 killed at Tue May  2 15:32:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27758 >/dev/null 2>/dev/null
selfserv_9247 with PID 27758 found at Tue May  2 15:32:22 UTC 2017
selfserv_9247 with PID 27758 started at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5098: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27758 at Tue May  2 15:32:22 UTC 2017
kill -USR1 27758
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27758 killed at Tue May  2 15:32:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27814 >/dev/null 2>/dev/null
selfserv_9247 with PID 27814 found at Tue May  2 15:32:22 UTC 2017
selfserv_9247 with PID 27814 started at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5099: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27814 at Tue May  2 15:32:22 UTC 2017
kill -USR1 27814
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27814 killed at Tue May  2 15:32:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27870 >/dev/null 2>/dev/null
selfserv_9247 with PID 27870 found at Tue May  2 15:32:22 UTC 2017
selfserv_9247 with PID 27870 started at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5100: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27870 at Tue May  2 15:32:22 UTC 2017
kill -USR1 27870
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27870 killed at Tue May  2 15:32:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27938 >/dev/null 2>/dev/null
selfserv_9247 with PID 27938 found at Tue May  2 15:32:22 UTC 2017
selfserv_9247 with PID 27938 started at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5101: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 27938 at Tue May  2 15:32:23 UTC 2017
kill -USR1 27938
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27938 killed at Tue May  2 15:32:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27994 >/dev/null 2>/dev/null
selfserv_9247 with PID 27994 found at Tue May  2 15:32:23 UTC 2017
selfserv_9247 with PID 27994 started at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5102: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27994 at Tue May  2 15:32:23 UTC 2017
kill -USR1 27994
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27994 killed at Tue May  2 15:32:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28050 >/dev/null 2>/dev/null
selfserv_9247 with PID 28050 found at Tue May  2 15:32:23 UTC 2017
selfserv_9247 with PID 28050 started at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5103: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28050 at Tue May  2 15:32:23 UTC 2017
kill -USR1 28050
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28050 killed at Tue May  2 15:32:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28118 >/dev/null 2>/dev/null
selfserv_9247 with PID 28118 found at Tue May  2 15:32:23 UTC 2017
selfserv_9247 with PID 28118 started at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5104: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28118 at Tue May  2 15:32:23 UTC 2017
kill -USR1 28118
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28118 killed at Tue May  2 15:32:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28174 >/dev/null 2>/dev/null
selfserv_9247 with PID 28174 found at Tue May  2 15:32:23 UTC 2017
selfserv_9247 with PID 28174 started at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5105: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28174 at Tue May  2 15:32:23 UTC 2017
kill -USR1 28174
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28174 killed at Tue May  2 15:32:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:32:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28230 >/dev/null 2>/dev/null
selfserv_9247 with PID 28230 found at Tue May  2 15:32:23 UTC 2017
selfserv_9247 with PID 28230 started at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5106: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28230 at Tue May  2 15:32:23 UTC 2017
kill -USR1 28230
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28230 killed at Tue May  2 15:32:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28298 >/dev/null 2>/dev/null
selfserv_9247 with PID 28298 found at Tue May  2 15:32:23 UTC 2017
selfserv_9247 with PID 28298 started at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5107: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28298 at Tue May  2 15:32:24 UTC 2017
kill -USR1 28298
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28298 killed at Tue May  2 15:32:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28354 >/dev/null 2>/dev/null
selfserv_9247 with PID 28354 found at Tue May  2 15:32:24 UTC 2017
selfserv_9247 with PID 28354 started at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5108: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28354 at Tue May  2 15:32:24 UTC 2017
kill -USR1 28354
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28354 killed at Tue May  2 15:32:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28410 >/dev/null 2>/dev/null
selfserv_9247 with PID 28410 found at Tue May  2 15:32:24 UTC 2017
selfserv_9247 with PID 28410 started at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5109: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28410 at Tue May  2 15:32:24 UTC 2017
kill -USR1 28410
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28410 killed at Tue May  2 15:32:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28478 >/dev/null 2>/dev/null
selfserv_9247 with PID 28478 found at Tue May  2 15:32:24 UTC 2017
selfserv_9247 with PID 28478 started at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5110: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28478 at Tue May  2 15:32:24 UTC 2017
kill -USR1 28478
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28478 killed at Tue May  2 15:32:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28534 >/dev/null 2>/dev/null
selfserv_9247 with PID 28534 found at Tue May  2 15:32:24 UTC 2017
selfserv_9247 with PID 28534 started at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5111: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28534 at Tue May  2 15:32:24 UTC 2017
kill -USR1 28534
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28534 killed at Tue May  2 15:32:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28590 >/dev/null 2>/dev/null
selfserv_9247 with PID 28590 found at Tue May  2 15:32:24 UTC 2017
selfserv_9247 with PID 28590 started at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5112: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28590 at Tue May  2 15:32:24 UTC 2017
kill -USR1 28590
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28590 killed at Tue May  2 15:32:24 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28667 >/dev/null 2>/dev/null
selfserv_9247 with PID 28667 found at Tue May  2 15:32:24 UTC 2017
selfserv_9247 with PID 28667 started at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5113: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28667 at Tue May  2 15:32:25 UTC 2017
kill -USR1 28667
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28667 killed at Tue May  2 15:32:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28723 >/dev/null 2>/dev/null
selfserv_9247 with PID 28723 found at Tue May  2 15:32:25 UTC 2017
selfserv_9247 with PID 28723 started at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5114: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28723 at Tue May  2 15:32:25 UTC 2017
kill -USR1 28723
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28723 killed at Tue May  2 15:32:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28779 >/dev/null 2>/dev/null
selfserv_9247 with PID 28779 found at Tue May  2 15:32:25 UTC 2017
selfserv_9247 with PID 28779 started at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5115: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28779 at Tue May  2 15:32:25 UTC 2017
kill -USR1 28779
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28779 killed at Tue May  2 15:32:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28847 >/dev/null 2>/dev/null
selfserv_9247 with PID 28847 found at Tue May  2 15:32:25 UTC 2017
selfserv_9247 with PID 28847 started at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5116: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 28847 at Tue May  2 15:32:25 UTC 2017
kill -USR1 28847
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28847 killed at Tue May  2 15:32:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28903 >/dev/null 2>/dev/null
selfserv_9247 with PID 28903 found at Tue May  2 15:32:25 UTC 2017
selfserv_9247 with PID 28903 started at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5117: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28903 at Tue May  2 15:32:25 UTC 2017
kill -USR1 28903
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28903 killed at Tue May  2 15:32:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28959 >/dev/null 2>/dev/null
selfserv_9247 with PID 28959 found at Tue May  2 15:32:25 UTC 2017
selfserv_9247 with PID 28959 started at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5118: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 28959 at Tue May  2 15:32:25 UTC 2017
kill -USR1 28959
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28959 killed at Tue May  2 15:32:25 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29027 >/dev/null 2>/dev/null
selfserv_9247 with PID 29027 found at Tue May  2 15:32:25 UTC 2017
selfserv_9247 with PID 29027 started at Tue May  2 15:32:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5119: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29027 at Tue May  2 15:32:26 UTC 2017
kill -USR1 29027
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29027 killed at Tue May  2 15:32:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29083 >/dev/null 2>/dev/null
selfserv_9247 with PID 29083 found at Tue May  2 15:32:26 UTC 2017
selfserv_9247 with PID 29083 started at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5120: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29083 at Tue May  2 15:32:26 UTC 2017
kill -USR1 29083
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29083 killed at Tue May  2 15:32:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29139 >/dev/null 2>/dev/null
selfserv_9247 with PID 29139 found at Tue May  2 15:32:26 UTC 2017
selfserv_9247 with PID 29139 started at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5121: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29139 at Tue May  2 15:32:26 UTC 2017
kill -USR1 29139
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29139 killed at Tue May  2 15:32:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29207 >/dev/null 2>/dev/null
selfserv_9247 with PID 29207 found at Tue May  2 15:32:26 UTC 2017
selfserv_9247 with PID 29207 started at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5122: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29207 at Tue May  2 15:32:26 UTC 2017
kill -USR1 29207
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29207 killed at Tue May  2 15:32:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29263 >/dev/null 2>/dev/null
selfserv_9247 with PID 29263 found at Tue May  2 15:32:26 UTC 2017
selfserv_9247 with PID 29263 started at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5123: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29263 at Tue May  2 15:32:26 UTC 2017
kill -USR1 29263
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29263 killed at Tue May  2 15:32:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29319 >/dev/null 2>/dev/null
selfserv_9247 with PID 29319 found at Tue May  2 15:32:26 UTC 2017
selfserv_9247 with PID 29319 started at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5124: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29319 at Tue May  2 15:32:26 UTC 2017
kill -USR1 29319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29319 killed at Tue May  2 15:32:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29387 >/dev/null 2>/dev/null
selfserv_9247 with PID 29387 found at Tue May  2 15:32:27 UTC 2017
selfserv_9247 with PID 29387 started at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5125: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29387 at Tue May  2 15:32:27 UTC 2017
kill -USR1 29387
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29387 killed at Tue May  2 15:32:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29443 >/dev/null 2>/dev/null
selfserv_9247 with PID 29443 found at Tue May  2 15:32:27 UTC 2017
selfserv_9247 with PID 29443 started at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5126: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29443 at Tue May  2 15:32:27 UTC 2017
kill -USR1 29443
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29443 killed at Tue May  2 15:32:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29499 >/dev/null 2>/dev/null
selfserv_9247 with PID 29499 found at Tue May  2 15:32:27 UTC 2017
selfserv_9247 with PID 29499 started at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5127: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29499 at Tue May  2 15:32:27 UTC 2017
kill -USR1 29499
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29499 killed at Tue May  2 15:32:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29567 >/dev/null 2>/dev/null
selfserv_9247 with PID 29567 found at Tue May  2 15:32:27 UTC 2017
selfserv_9247 with PID 29567 started at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5128: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29567 at Tue May  2 15:32:27 UTC 2017
kill -USR1 29567
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29567 killed at Tue May  2 15:32:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29623 >/dev/null 2>/dev/null
selfserv_9247 with PID 29623 found at Tue May  2 15:32:27 UTC 2017
selfserv_9247 with PID 29623 started at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5129: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29623 at Tue May  2 15:32:27 UTC 2017
kill -USR1 29623
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29623 killed at Tue May  2 15:32:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29679 >/dev/null 2>/dev/null
selfserv_9247 with PID 29679 found at Tue May  2 15:32:27 UTC 2017
selfserv_9247 with PID 29679 started at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5130: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29679 at Tue May  2 15:32:27 UTC 2017
kill -USR1 29679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29679 killed at Tue May  2 15:32:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29747 >/dev/null 2>/dev/null
selfserv_9247 with PID 29747 found at Tue May  2 15:32:27 UTC 2017
selfserv_9247 with PID 29747 started at Tue May  2 15:32:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5131: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29747 at Tue May  2 15:32:28 UTC 2017
kill -USR1 29747
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29747 killed at Tue May  2 15:32:28 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29803 >/dev/null 2>/dev/null
selfserv_9247 with PID 29803 found at Tue May  2 15:32:28 UTC 2017
selfserv_9247 with PID 29803 started at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5132: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29803 at Tue May  2 15:32:28 UTC 2017
kill -USR1 29803
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29803 killed at Tue May  2 15:32:28 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29859 >/dev/null 2>/dev/null
selfserv_9247 with PID 29859 found at Tue May  2 15:32:28 UTC 2017
selfserv_9247 with PID 29859 started at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5133: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29859 at Tue May  2 15:32:28 UTC 2017
kill -USR1 29859
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29859 killed at Tue May  2 15:32:28 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29927 >/dev/null 2>/dev/null
selfserv_9247 with PID 29927 found at Tue May  2 15:32:28 UTC 2017
selfserv_9247 with PID 29927 started at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5134: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 29927 at Tue May  2 15:32:28 UTC 2017
kill -USR1 29927
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29927 killed at Tue May  2 15:32:28 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29983 >/dev/null 2>/dev/null
selfserv_9247 with PID 29983 found at Tue May  2 15:32:28 UTC 2017
selfserv_9247 with PID 29983 started at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5135: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29983 at Tue May  2 15:32:28 UTC 2017
kill -USR1 29983
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29983 killed at Tue May  2 15:32:28 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30039 >/dev/null 2>/dev/null
selfserv_9247 with PID 30039 found at Tue May  2 15:32:28 UTC 2017
selfserv_9247 with PID 30039 started at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5136: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 30039 at Tue May  2 15:32:28 UTC 2017
kill -USR1 30039
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30039 killed at Tue May  2 15:32:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30107 >/dev/null 2>/dev/null
selfserv_9247 with PID 30107 found at Tue May  2 15:32:28 UTC 2017
selfserv_9247 with PID 30107 started at Tue May  2 15:32:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5137: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30107 at Tue May  2 15:32:29 UTC 2017
kill -USR1 30107
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30107 killed at Tue May  2 15:32:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30163 >/dev/null 2>/dev/null
selfserv_9247 with PID 30163 found at Tue May  2 15:32:29 UTC 2017
selfserv_9247 with PID 30163 started at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5138: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30163 at Tue May  2 15:32:29 UTC 2017
kill -USR1 30163
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30163 killed at Tue May  2 15:32:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30219 >/dev/null 2>/dev/null
selfserv_9247 with PID 30219 found at Tue May  2 15:32:29 UTC 2017
selfserv_9247 with PID 30219 started at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5139: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30219 at Tue May  2 15:32:29 UTC 2017
kill -USR1 30219
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30219 killed at Tue May  2 15:32:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30287 >/dev/null 2>/dev/null
selfserv_9247 with PID 30287 found at Tue May  2 15:32:29 UTC 2017
selfserv_9247 with PID 30287 started at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5140: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30287 at Tue May  2 15:32:29 UTC 2017
kill -USR1 30287
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30287 killed at Tue May  2 15:32:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30343 >/dev/null 2>/dev/null
selfserv_9247 with PID 30343 found at Tue May  2 15:32:29 UTC 2017
selfserv_9247 with PID 30343 started at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5141: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30343 at Tue May  2 15:32:29 UTC 2017
kill -USR1 30343
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30343 killed at Tue May  2 15:32:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30399 >/dev/null 2>/dev/null
selfserv_9247 with PID 30399 found at Tue May  2 15:32:29 UTC 2017
selfserv_9247 with PID 30399 started at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5142: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30399 at Tue May  2 15:32:29 UTC 2017
kill -USR1 30399
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30399 killed at Tue May  2 15:32:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30467 >/dev/null 2>/dev/null
selfserv_9247 with PID 30467 found at Tue May  2 15:32:29 UTC 2017
selfserv_9247 with PID 30467 started at Tue May  2 15:32:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5143: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30467 at Tue May  2 15:32:30 UTC 2017
kill -USR1 30467
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30467 killed at Tue May  2 15:32:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30523 >/dev/null 2>/dev/null
selfserv_9247 with PID 30523 found at Tue May  2 15:32:30 UTC 2017
selfserv_9247 with PID 30523 started at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5144: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30523 at Tue May  2 15:32:30 UTC 2017
kill -USR1 30523
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30523 killed at Tue May  2 15:32:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30579 >/dev/null 2>/dev/null
selfserv_9247 with PID 30579 found at Tue May  2 15:32:30 UTC 2017
selfserv_9247 with PID 30579 started at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5145: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30579 at Tue May  2 15:32:30 UTC 2017
kill -USR1 30579
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30579 killed at Tue May  2 15:32:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30647 >/dev/null 2>/dev/null
selfserv_9247 with PID 30647 found at Tue May  2 15:32:30 UTC 2017
selfserv_9247 with PID 30647 started at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5146: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30647 at Tue May  2 15:32:30 UTC 2017
kill -USR1 30647
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30647 killed at Tue May  2 15:32:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30703 >/dev/null 2>/dev/null
selfserv_9247 with PID 30703 found at Tue May  2 15:32:30 UTC 2017
selfserv_9247 with PID 30703 started at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5147: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30703 at Tue May  2 15:32:30 UTC 2017
kill -USR1 30703
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30703 killed at Tue May  2 15:32:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30759 >/dev/null 2>/dev/null
selfserv_9247 with PID 30759 found at Tue May  2 15:32:30 UTC 2017
selfserv_9247 with PID 30759 started at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5148: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30759 at Tue May  2 15:32:30 UTC 2017
kill -USR1 30759
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30759 killed at Tue May  2 15:32:30 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30827 >/dev/null 2>/dev/null
selfserv_9247 with PID 30827 found at Tue May  2 15:32:30 UTC 2017
selfserv_9247 with PID 30827 started at Tue May  2 15:32:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5149: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30827 at Tue May  2 15:32:31 UTC 2017
kill -USR1 30827
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30827 killed at Tue May  2 15:32:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30883 >/dev/null 2>/dev/null
selfserv_9247 with PID 30883 found at Tue May  2 15:32:31 UTC 2017
selfserv_9247 with PID 30883 started at Tue May  2 15:32:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5150: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30883 at Tue May  2 15:32:31 UTC 2017
kill -USR1 30883
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30883 killed at Tue May  2 15:32:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30939 >/dev/null 2>/dev/null
selfserv_9247 with PID 30939 found at Tue May  2 15:32:31 UTC 2017
selfserv_9247 with PID 30939 started at Tue May  2 15:32:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5151: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30939 at Tue May  2 15:32:31 UTC 2017
kill -USR1 30939
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30939 killed at Tue May  2 15:32:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31007 >/dev/null 2>/dev/null
selfserv_9247 with PID 31007 found at Tue May  2 15:32:31 UTC 2017
selfserv_9247 with PID 31007 started at Tue May  2 15:32:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5152: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31007 at Tue May  2 15:32:31 UTC 2017
kill -USR1 31007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31007 killed at Tue May  2 15:32:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31063 >/dev/null 2>/dev/null
selfserv_9247 with PID 31063 found at Tue May  2 15:32:31 UTC 2017
selfserv_9247 with PID 31063 started at Tue May  2 15:32:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5153: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31063 at Tue May  2 15:32:31 UTC 2017
kill -USR1 31063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31063 killed at Tue May  2 15:32:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31119 >/dev/null 2>/dev/null
selfserv_9247 with PID 31119 found at Tue May  2 15:32:32 UTC 2017
selfserv_9247 with PID 31119 started at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5154: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31119 at Tue May  2 15:32:32 UTC 2017
kill -USR1 31119
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31119 killed at Tue May  2 15:32:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31187 >/dev/null 2>/dev/null
selfserv_9247 with PID 31187 found at Tue May  2 15:32:32 UTC 2017
selfserv_9247 with PID 31187 started at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5155: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31187 at Tue May  2 15:32:32 UTC 2017
kill -USR1 31187
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31187 killed at Tue May  2 15:32:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31243 >/dev/null 2>/dev/null
selfserv_9247 with PID 31243 found at Tue May  2 15:32:32 UTC 2017
selfserv_9247 with PID 31243 started at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5156: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31243 at Tue May  2 15:32:32 UTC 2017
kill -USR1 31243
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31243 killed at Tue May  2 15:32:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31299 >/dev/null 2>/dev/null
selfserv_9247 with PID 31299 found at Tue May  2 15:32:32 UTC 2017
selfserv_9247 with PID 31299 started at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5157: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31299 at Tue May  2 15:32:32 UTC 2017
kill -USR1 31299
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31299 killed at Tue May  2 15:32:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31367 >/dev/null 2>/dev/null
selfserv_9247 with PID 31367 found at Tue May  2 15:32:32 UTC 2017
selfserv_9247 with PID 31367 started at Tue May  2 15:32:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5158: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31367 at Tue May  2 15:32:33 UTC 2017
kill -USR1 31367
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31367 killed at Tue May  2 15:32:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31423 >/dev/null 2>/dev/null
selfserv_9247 with PID 31423 found at Tue May  2 15:32:33 UTC 2017
selfserv_9247 with PID 31423 started at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5159: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31423 at Tue May  2 15:32:33 UTC 2017
kill -USR1 31423
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31423 killed at Tue May  2 15:32:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31480 >/dev/null 2>/dev/null
selfserv_9247 with PID 31480 found at Tue May  2 15:32:33 UTC 2017
selfserv_9247 with PID 31480 started at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5160: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31480 at Tue May  2 15:32:33 UTC 2017
kill -USR1 31480
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31480 killed at Tue May  2 15:32:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31548 >/dev/null 2>/dev/null
selfserv_9247 with PID 31548 found at Tue May  2 15:32:33 UTC 2017
selfserv_9247 with PID 31548 started at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5161: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31548 at Tue May  2 15:32:33 UTC 2017
kill -USR1 31548
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31548 killed at Tue May  2 15:32:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31604 >/dev/null 2>/dev/null
selfserv_9247 with PID 31604 found at Tue May  2 15:32:33 UTC 2017
selfserv_9247 with PID 31604 started at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5162: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31604 at Tue May  2 15:32:33 UTC 2017
kill -USR1 31604
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31604 killed at Tue May  2 15:32:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31660 >/dev/null 2>/dev/null
selfserv_9247 with PID 31660 found at Tue May  2 15:32:33 UTC 2017
selfserv_9247 with PID 31660 started at Tue May  2 15:32:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5163: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31660 at Tue May  2 15:32:33 UTC 2017
kill -USR1 31660
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31660 killed at Tue May  2 15:32:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31728 >/dev/null 2>/dev/null
selfserv_9247 with PID 31728 found at Tue May  2 15:32:34 UTC 2017
selfserv_9247 with PID 31728 started at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5164: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31728 at Tue May  2 15:32:34 UTC 2017
kill -USR1 31728
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31728 killed at Tue May  2 15:32:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31784 >/dev/null 2>/dev/null
selfserv_9247 with PID 31784 found at Tue May  2 15:32:34 UTC 2017
selfserv_9247 with PID 31784 started at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5165: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31784 at Tue May  2 15:32:34 UTC 2017
kill -USR1 31784
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31784 killed at Tue May  2 15:32:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31840 >/dev/null 2>/dev/null
selfserv_9247 with PID 31840 found at Tue May  2 15:32:34 UTC 2017
selfserv_9247 with PID 31840 started at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5166: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31840 at Tue May  2 15:32:34 UTC 2017
kill -USR1 31840
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31840 killed at Tue May  2 15:32:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31908 >/dev/null 2>/dev/null
selfserv_9247 with PID 31908 found at Tue May  2 15:32:34 UTC 2017
selfserv_9247 with PID 31908 started at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5167: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31908 at Tue May  2 15:32:34 UTC 2017
kill -USR1 31908
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31908 killed at Tue May  2 15:32:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31964 >/dev/null 2>/dev/null
selfserv_9247 with PID 31964 found at Tue May  2 15:32:34 UTC 2017
selfserv_9247 with PID 31964 started at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5168: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31964 at Tue May  2 15:32:34 UTC 2017
kill -USR1 31964
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31964 killed at Tue May  2 15:32:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:32:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32020 >/dev/null 2>/dev/null
selfserv_9247 with PID 32020 found at Tue May  2 15:32:34 UTC 2017
selfserv_9247 with PID 32020 started at Tue May  2 15:32:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5169: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 32020 at Tue May  2 15:32:35 UTC 2017
kill -USR1 32020
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32020 killed at Tue May  2 15:32:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32088 >/dev/null 2>/dev/null
selfserv_9247 with PID 32088 found at Tue May  2 15:32:35 UTC 2017
selfserv_9247 with PID 32088 started at Tue May  2 15:32:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5170: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 32088 at Tue May  2 15:32:35 UTC 2017
kill -USR1 32088
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32088 killed at Tue May  2 15:32:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32144 >/dev/null 2>/dev/null
selfserv_9247 with PID 32144 found at Tue May  2 15:32:35 UTC 2017
selfserv_9247 with PID 32144 started at Tue May  2 15:32:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5171: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 32144 at Tue May  2 15:32:35 UTC 2017
kill -USR1 32144
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32144 killed at Tue May  2 15:32:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32200 >/dev/null 2>/dev/null
selfserv_9247 with PID 32200 found at Tue May  2 15:32:35 UTC 2017
selfserv_9247 with PID 32200 started at Tue May  2 15:32:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5172: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 32200 at Tue May  2 15:32:35 UTC 2017
kill -USR1 32200
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32200 killed at Tue May  2 15:32:35 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/authin.tl.tmp
0
selfserv_9247 starting at Tue May  2 15:32:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:35 UTC 2017
selfserv_9247 with PID 32263 started at Tue May  2 15:32:35 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:35 UTC 2017
ssl.sh: #5173: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:35 UTC 2017
ssl.sh: #5174: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:35 UTC 2017
ssl.sh: #5175: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5176: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5177: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5178: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5179: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5180: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5181: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5182: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5183: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5184: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
ssl.sh: #5185: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5186: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5187: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5188: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5189: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5190: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5191: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5192: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5193: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5194: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5195: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:37 UTC 2017
ssl.sh: #5196: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5197: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5198: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5199: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5200: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5201: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5202: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5203: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5204: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5205: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5206: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5207: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:38 UTC 2017
ssl.sh: #5208: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5209: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5210: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5211: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5212: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32263 >/dev/null 2>/dev/null
selfserv_9247 with PID 32263 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5213: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32263 at Tue May  2 15:32:39 UTC 2017
kill -USR1 32263
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32263 killed at Tue May  2 15:32:39 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:39 UTC 2017
selfserv_9247 with PID 1317 started at Tue May  2 15:32:39 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5214: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5215: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5216: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5217: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5218: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5219: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:39 UTC 2017
ssl.sh: #5220: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5221: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5222: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5223: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5224: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5225: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5226: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5227: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5228: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5229: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5230: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5231: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5232: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:40 UTC 2017
ssl.sh: #5233: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5234: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5235: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5236: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5237: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5238: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5239: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5240: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5241: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5242: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5243: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5244: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5245: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:41 UTC 2017
ssl.sh: #5246: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5247: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5248: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5249: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5250: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5251: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5252: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5253: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1317 >/dev/null 2>/dev/null
selfserv_9247 with PID 1317 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5254: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 1317 at Tue May  2 15:32:42 UTC 2017
kill -USR1 1317
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1317 killed at Tue May  2 15:32:42 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:42 UTC 2017
selfserv_9247 with PID 2740 started at Tue May  2 15:32:42 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5255: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5256: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:42 UTC 2017
ssl.sh: #5257: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5258: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5259: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5260: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5261: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5262: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5263: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5264: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5265: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:43 UTC 2017
ssl.sh: #5266: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5267: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5268: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5269: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5270: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5271: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5272: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5273: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5274: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5275: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:44 UTC 2017
ssl.sh: #5276: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5277: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5278: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5279: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5280: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5281: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5282: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5283: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5284: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5285: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5286: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:45 UTC 2017
ssl.sh: #5287: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5288: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5289: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5290: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5291: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5292: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5293: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5294: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2740 >/dev/null 2>/dev/null
selfserv_9247 with PID 2740 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5295: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 2740 at Tue May  2 15:32:46 UTC 2017
kill -USR1 2740
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2740 killed at Tue May  2 15:32:46 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:46 UTC 2017
selfserv_9247 with PID 4165 started at Tue May  2 15:32:46 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:46 UTC 2017
ssl.sh: #5296: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5297: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5298: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5299: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5300: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5301: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5302: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5303: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5304: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5305: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5306: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5307: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:47 UTC 2017
ssl.sh: #5308: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5309: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5310: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5311: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5312: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5313: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5314: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5315: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5316: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5317: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5318: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:48 UTC 2017
ssl.sh: #5319: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5320: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5321: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5322: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5323: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5324: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5325: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5326: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5327: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5328: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5329: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5330: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:49 UTC 2017
ssl.sh: #5331: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5332: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5333: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5334: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5335: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4165 >/dev/null 2>/dev/null
selfserv_9247 with PID 4165 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5336: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4165 at Tue May  2 15:32:50 UTC 2017
kill -USR1 4165
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4165 killed at Tue May  2 15:32:50 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5590 >/dev/null 2>/dev/null
selfserv_9247 with PID 5590 found at Tue May  2 15:32:50 UTC 2017
selfserv_9247 with PID 5590 started at Tue May  2 15:32:50 UTC 2017
trying to kill selfserv_9247 with PID 5590 at Tue May  2 15:32:50 UTC 2017
kill -USR1 5590
./ssl.sh: line 183:  5590 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5590 killed at Tue May  2 15:32:50 UTC 2017
selfserv_9247 starting at Tue May  2 15:32:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:50 UTC 2017
selfserv_9247 with PID 5632 started at Tue May  2 15:32:50 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5337: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5338: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5339: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5340: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:50 UTC 2017
ssl.sh: #5341: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5342: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5343: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5344: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5345: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5346: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5347: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5348: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5349: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5350: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5351: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:51 UTC 2017
ssl.sh: #5352: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5353: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5354: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5355: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5356: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5357: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5358: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5359: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5360: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:52 UTC 2017
ssl.sh: #5361: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5362: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5363: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5364: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5365: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5366: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5367: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5368: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5369: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5370: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5371: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:53 UTC 2017
ssl.sh: #5372: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:54 UTC 2017
ssl.sh: #5373: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:54 UTC 2017
ssl.sh: #5374: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:54 UTC 2017
ssl.sh: #5375: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:54 UTC 2017
ssl.sh: #5376: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5632 >/dev/null 2>/dev/null
selfserv_9247 with PID 5632 found at Tue May  2 15:32:54 UTC 2017
ssl.sh: #5377: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 5632 at Tue May  2 15:32:54 UTC 2017
kill -USR1 5632
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5632 killed at Tue May  2 15:32:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:54 UTC 2017
selfserv_9247 with PID 7054 started at Tue May  2 15:32:54 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:54 UTC 2017
ssl.sh: #5378: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:54 UTC 2017
ssl.sh: #5379: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:54 UTC 2017
ssl.sh: #5380: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5381: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5382: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5383: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5384: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5385: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5386: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5387: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5388: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:55 UTC 2017
ssl.sh: #5389: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
ssl.sh: #5390: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5391: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
ssl.sh: #5392: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
ssl.sh: #5393: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
ssl.sh: #5394: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
ssl.sh: #5395: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
ssl.sh: #5396: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
ssl.sh: #5397: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:56 UTC 2017
ssl.sh: #5398: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:57 UTC 2017
ssl.sh: #5399: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:57 UTC 2017
ssl.sh: #5400: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:57 UTC 2017
ssl.sh: #5401: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:57 UTC 2017
ssl.sh: #5402: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:57 UTC 2017
ssl.sh: #5403: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:57 UTC 2017
ssl.sh: #5404: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5405: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:57 UTC 2017
ssl.sh: #5406: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5407: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5408: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5409: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5410: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5411: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5412: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5413: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5414: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5415: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:58 UTC 2017
ssl.sh: #5416: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5417: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7054 >/dev/null 2>/dev/null
selfserv_9247 with PID 7054 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5418: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7054 at Tue May  2 15:32:59 UTC 2017
kill -USR1 7054
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7054 killed at Tue May  2 15:32:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:32:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:32:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
selfserv_9247 with PID 8480 started at Tue May  2 15:32:59 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5419: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5420: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5421: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5422: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5423: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5424: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5425: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:32:59 UTC 2017
ssl.sh: #5426: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5427: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5428: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5429: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5430: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5431: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5432: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5433: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5434: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5435: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5436: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5437: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5438: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:00 UTC 2017
ssl.sh: #5439: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5440: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5441: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5442: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5443: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5444: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5445: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5446: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5447: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5448: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5449: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5450: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:01 UTC 2017
ssl.sh: #5451: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5452: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5453: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5454: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5455: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5456: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5457: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5458: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9247 with PID 8480 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5459: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8480 at Tue May  2 15:33:02 UTC 2017
kill -USR1 8480
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8480 killed at Tue May  2 15:33:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:02 UTC 2017
selfserv_9247 with PID 9910 started at Tue May  2 15:33:02 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5460: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5461: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:02 UTC 2017
ssl.sh: #5462: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5463: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5464: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5465: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5466: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5467: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5468: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5469: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5470: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5471: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:03 UTC 2017
ssl.sh: #5472: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5473: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5474: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5475: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5476: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5477: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5478: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5479: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5480: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5481: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:04 UTC 2017
ssl.sh: #5482: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5483: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5484: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5485: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5486: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5487: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5488: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5489: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5490: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5491: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5492: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:05 UTC 2017
ssl.sh: #5493: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:06 UTC 2017
ssl.sh: #5494: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:06 UTC 2017
ssl.sh: #5495: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:06 UTC 2017
ssl.sh: #5496: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:06 UTC 2017
ssl.sh: #5497: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:06 UTC 2017
ssl.sh: #5498: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:06 UTC 2017
ssl.sh: #5499: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9910 >/dev/null 2>/dev/null
selfserv_9247 with PID 9910 found at Tue May  2 15:33:06 UTC 2017
ssl.sh: #5500: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 9910 at Tue May  2 15:33:06 UTC 2017
kill -USR1 9910
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9910 killed at Tue May  2 15:33:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:06 UTC 2017
selfserv_9247 with PID 11337 started at Tue May  2 15:33:06 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:06 UTC 2017
ssl.sh: #5501: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5502: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5503: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5504: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5505: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5506: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5507: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5508: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5509: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:07 UTC 2017
ssl.sh: #5510: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
ssl.sh: #5511: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
ssl.sh: #5512: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
ssl.sh: #5513: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5514: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
ssl.sh: #5515: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
ssl.sh: #5516: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
ssl.sh: #5517: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
ssl.sh: #5518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:08 UTC 2017
ssl.sh: #5519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:09 UTC 2017
ssl.sh: #5520: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:09 UTC 2017
ssl.sh: #5521: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:09 UTC 2017
ssl.sh: #5522: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:09 UTC 2017
ssl.sh: #5523: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:09 UTC 2017
ssl.sh: #5524: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:09 UTC 2017
ssl.sh: #5525: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:09 UTC 2017
ssl.sh: #5526: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:09 UTC 2017
ssl.sh: #5527: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5528: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
ssl.sh: #5529: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
ssl.sh: #5530: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
ssl.sh: #5531: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
ssl.sh: #5532: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
ssl.sh: #5533: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
ssl.sh: #5534: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
ssl.sh: #5535: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:10 UTC 2017
ssl.sh: #5536: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:11 UTC 2017
ssl.sh: #5537: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:11 UTC 2017
ssl.sh: #5538: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:11 UTC 2017
ssl.sh: #5539: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:11 UTC 2017
ssl.sh: #5540: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11337 >/dev/null 2>/dev/null
selfserv_9247 with PID 11337 found at Tue May  2 15:33:11 UTC 2017
ssl.sh: #5541: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11337 at Tue May  2 15:33:11 UTC 2017
kill -USR1 11337
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11337 killed at Tue May  2 15:33:11 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:11 UTC 2017
selfserv_9247 with PID 12760 started at Tue May  2 15:33:11 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:11 UTC 2017
ssl.sh: #5542: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:11 UTC 2017
ssl.sh: #5543: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:11 UTC 2017
ssl.sh: #5544: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5545: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5546: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5547: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5548: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5549: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5550: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5551: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5552: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5553: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:12 UTC 2017
ssl.sh: #5554: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5555: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5556: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5557: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5558: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5559: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5560: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5561: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5562: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5563: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:13 UTC 2017
ssl.sh: #5564: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5565: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5566: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5567: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5568: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5569: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5570: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5571: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5572: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5573: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:14 UTC 2017
ssl.sh: #5574: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:15 UTC 2017
ssl.sh: #5575: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:15 UTC 2017
ssl.sh: #5576: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:15 UTC 2017
ssl.sh: #5577: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:15 UTC 2017
ssl.sh: #5578: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:15 UTC 2017
ssl.sh: #5579: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:15 UTC 2017
ssl.sh: #5580: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:15 UTC 2017
ssl.sh: #5581: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9247 with PID 12760 found at Tue May  2 15:33:15 UTC 2017
ssl.sh: #5582: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12760 at Tue May  2 15:33:15 UTC 2017
kill -USR1 12760
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12760 killed at Tue May  2 15:33:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14193 >/dev/null 2>/dev/null
selfserv_9247 with PID 14193 found at Tue May  2 15:33:15 UTC 2017
selfserv_9247 with PID 14193 started at Tue May  2 15:33:15 UTC 2017
trying to kill selfserv_9247 with PID 14193 at Tue May  2 15:33:15 UTC 2017
kill -USR1 14193
./ssl.sh: line 183: 14193 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 14193 killed at Tue May  2 15:33:15 UTC 2017
selfserv_9247 starting at Tue May  2 15:33:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:15 UTC 2017
selfserv_9247 with PID 14235 started at Tue May  2 15:33:15 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5583: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5584: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5585: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5586: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5587: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5588: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5589: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5590: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5591: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5592: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:16 UTC 2017
ssl.sh: #5593: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5594: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5595: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5596: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5597: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5598: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5599: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5600: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5601: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5602: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5603: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:17 UTC 2017
ssl.sh: #5604: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5605: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5606: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5607: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5608: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5609: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5610: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5611: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5612: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5613: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:18 UTC 2017
ssl.sh: #5614: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5615: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5616: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5617: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5618: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5619: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5620: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5621: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5622: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14235 >/dev/null 2>/dev/null
selfserv_9247 with PID 14235 found at Tue May  2 15:33:19 UTC 2017
ssl.sh: #5623: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 14235 at Tue May  2 15:33:19 UTC 2017
kill -USR1 14235
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 14235 killed at Tue May  2 15:33:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:19 UTC 2017
selfserv_9247 with PID 15657 started at Tue May  2 15:33:19 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5624: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5625: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5626: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5627: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5628: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5629: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5630: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5631: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:20 UTC 2017
ssl.sh: #5632: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
ssl.sh: #5633: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
ssl.sh: #5634: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
ssl.sh: #5635: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
ssl.sh: #5636: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5637: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
ssl.sh: #5638: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
ssl.sh: #5639: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
ssl.sh: #5640: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:21 UTC 2017
ssl.sh: #5641: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5642: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5643: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5644: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5645: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5646: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5647: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5648: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5649: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:22 UTC 2017
ssl.sh: #5650: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5651: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
ssl.sh: #5652: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
ssl.sh: #5653: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
ssl.sh: #5654: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
ssl.sh: #5655: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
ssl.sh: #5656: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
ssl.sh: #5657: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
ssl.sh: #5658: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:23 UTC 2017
ssl.sh: #5659: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:24 UTC 2017
ssl.sh: #5660: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:24 UTC 2017
ssl.sh: #5661: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:24 UTC 2017
ssl.sh: #5662: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:24 UTC 2017
ssl.sh: #5663: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15657 >/dev/null 2>/dev/null
selfserv_9247 with PID 15657 found at Tue May  2 15:33:24 UTC 2017
ssl.sh: #5664: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 15657 at Tue May  2 15:33:24 UTC 2017
kill -USR1 15657
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 15657 killed at Tue May  2 15:33:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:24 UTC 2017
selfserv_9247 with PID 17084 started at Tue May  2 15:33:24 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:24 UTC 2017
ssl.sh: #5665: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:24 UTC 2017
ssl.sh: #5666: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:24 UTC 2017
ssl.sh: #5667: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5668: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5669: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5670: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5671: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5672: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5673: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5674: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5675: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5676: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:25 UTC 2017
ssl.sh: #5677: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5678: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5679: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5680: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5681: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5682: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5683: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5684: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5685: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5686: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5687: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5688: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:26 UTC 2017
ssl.sh: #5689: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5690: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5691: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5692: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5693: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5694: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5695: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5696: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5697: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5698: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5699: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:27 UTC 2017
ssl.sh: #5700: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5701: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5702: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5703: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5704: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9247 with PID 17084 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5705: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 17084 at Tue May  2 15:33:28 UTC 2017
kill -USR1 17084
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17084 killed at Tue May  2 15:33:28 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:28 UTC 2017
selfserv_9247 with PID 18510 started at Tue May  2 15:33:28 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5706: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5707: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5708: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:28 UTC 2017
ssl.sh: #5709: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:29 UTC 2017
ssl.sh: #5710: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:29 UTC 2017
ssl.sh: #5711: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:29 UTC 2017
ssl.sh: #5712: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:29 UTC 2017
ssl.sh: #5713: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:29 UTC 2017
ssl.sh: #5714: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:29 UTC 2017
ssl.sh: #5715: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:29 UTC 2017
ssl.sh: #5716: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:29 UTC 2017
ssl.sh: #5717: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
ssl.sh: #5718: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5719: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
ssl.sh: #5720: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
ssl.sh: #5721: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
ssl.sh: #5722: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
ssl.sh: #5723: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
ssl.sh: #5724: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
ssl.sh: #5725: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:30 UTC 2017
ssl.sh: #5726: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:31 UTC 2017
ssl.sh: #5727: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:31 UTC 2017
ssl.sh: #5728: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:31 UTC 2017
ssl.sh: #5729: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:31 UTC 2017
ssl.sh: #5730: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:31 UTC 2017
ssl.sh: #5731: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:31 UTC 2017
ssl.sh: #5732: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5733: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:31 UTC 2017
ssl.sh: #5734: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5735: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5736: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5737: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5738: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5739: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5740: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5741: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5742: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:32 UTC 2017
ssl.sh: #5743: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:33 UTC 2017
ssl.sh: #5744: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:33 UTC 2017
ssl.sh: #5745: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18510 >/dev/null 2>/dev/null
selfserv_9247 with PID 18510 found at Tue May  2 15:33:33 UTC 2017
ssl.sh: #5746: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 18510 at Tue May  2 15:33:33 UTC 2017
kill -USR1 18510
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18510 killed at Tue May  2 15:33:33 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:33 UTC 2017
selfserv_9247 with PID 19933 started at Tue May  2 15:33:33 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:33 UTC 2017
ssl.sh: #5747: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:33 UTC 2017
ssl.sh: #5748: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:33 UTC 2017
ssl.sh: #5749: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:33 UTC 2017
ssl.sh: #5750: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:34 UTC 2017
ssl.sh: #5751: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:34 UTC 2017
ssl.sh: #5752: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:34 UTC 2017
ssl.sh: #5753: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:34 UTC 2017
ssl.sh: #5754: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:34 UTC 2017
ssl.sh: #5755: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:34 UTC 2017
ssl.sh: #5756: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:34 UTC 2017
ssl.sh: #5757: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:35 UTC 2017
ssl.sh: #5758: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:35 UTC 2017
ssl.sh: #5759: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5760: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:35 UTC 2017
ssl.sh: #5761: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:35 UTC 2017
ssl.sh: #5762: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:35 UTC 2017
ssl.sh: #5763: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:35 UTC 2017
ssl.sh: #5764: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:36 UTC 2017
ssl.sh: #5765: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:36 UTC 2017
ssl.sh: #5766: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:36 UTC 2017
ssl.sh: #5767: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:36 UTC 2017
ssl.sh: #5768: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:36 UTC 2017
ssl.sh: #5769: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:36 UTC 2017
ssl.sh: #5770: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:36 UTC 2017
ssl.sh: #5771: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:37 UTC 2017
ssl.sh: #5772: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:37 UTC 2017
ssl.sh: #5773: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5774: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:37 UTC 2017
ssl.sh: #5775: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:37 UTC 2017
ssl.sh: #5776: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:37 UTC 2017
ssl.sh: #5777: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:37 UTC 2017
ssl.sh: #5778: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:37 UTC 2017
ssl.sh: #5779: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:38 UTC 2017
ssl.sh: #5780: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:38 UTC 2017
ssl.sh: #5781: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:38 UTC 2017
ssl.sh: #5782: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:38 UTC 2017
ssl.sh: #5783: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:38 UTC 2017
ssl.sh: #5784: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:38 UTC 2017
ssl.sh: #5785: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:38 UTC 2017
ssl.sh: #5786: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19933 >/dev/null 2>/dev/null
selfserv_9247 with PID 19933 found at Tue May  2 15:33:38 UTC 2017
ssl.sh: #5787: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 19933 at Tue May  2 15:33:39 UTC 2017
kill -USR1 19933
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19933 killed at Tue May  2 15:33:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
selfserv_9247 with PID 21355 started at Tue May  2 15:33:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5788: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5789: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5790: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5791: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5792: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5793: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5794: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5795: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:39 UTC 2017
ssl.sh: #5796: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
ssl.sh: #5797: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
ssl.sh: #5798: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
ssl.sh: #5799: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
ssl.sh: #5800: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5801: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
ssl.sh: #5802: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
ssl.sh: #5803: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
ssl.sh: #5804: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:40 UTC 2017
ssl.sh: #5805: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5806: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5807: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5808: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5809: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5810: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5811: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5812: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5813: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:41 UTC 2017
ssl.sh: #5814: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5815: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5816: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5817: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5818: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5819: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5820: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5821: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5822: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5823: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:42 UTC 2017
ssl.sh: #5824: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:43 UTC 2017
ssl.sh: #5825: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:43 UTC 2017
ssl.sh: #5826: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:43 UTC 2017
ssl.sh: #5827: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21355 >/dev/null 2>/dev/null
selfserv_9247 with PID 21355 found at Tue May  2 15:33:43 UTC 2017
ssl.sh: #5828: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21355 at Tue May  2 15:33:43 UTC 2017
kill -USR1 21355
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21355 killed at Tue May  2 15:33:43 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:33:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:33:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22778 >/dev/null 2>/dev/null
selfserv_9247 with PID 22778 found at Tue May  2 15:33:43 UTC 2017
selfserv_9247 with PID 22778 started at Tue May  2 15:33:43 UTC 2017
trying to kill selfserv_9247 with PID 22778 at Tue May  2 15:33:43 UTC 2017
kill -USR1 22778
./ssl.sh: line 183: 22778 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22778 killed at Tue May  2 15:33:43 UTC 2017
TIMESTAMP ssl END: Tue May  2 15:33:43 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Tue May  2 15:33:43 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Tue May  2 15:33:43 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Tue May  2 15:33:43 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Tue May  2 15:33:43 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 15:33:43 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #5829: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153344 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5830: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #5831: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5832: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #5833: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5834: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5835: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5836: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5837: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #5838: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5839: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5840: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5841: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5842: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #5843: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5844: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5845: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5846: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5847: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #5848: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5849: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5850: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5851: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #5852: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5853: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5854: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5855: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #5856: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5857: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5858: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5859: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #5860: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5861: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5862: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5863: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #5864: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5865: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5866: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5867: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #5868: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5869: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5870: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5871: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #5872: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5873: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5874: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5875: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #5876: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5877: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5878: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5879: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #5880: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5881: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5882: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5883: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #5884: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5885: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5886: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5887: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #5888: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5889: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5890: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5891: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502153347Z
nextupdate=20180502153347Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:33:47 2017
    Next Update: Wed May 02 15:33:47 2018
    CRL Extensions:
chains.sh: #5892: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502153348Z
addcert 2 20170502153348Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:33:48 2017
    Next Update: Wed May 02 15:33:47 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:33:48 2017
    CRL Extensions:
chains.sh: #5893: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153348Z
nextupdate=20180502153348Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:33:48 2017
    Next Update: Wed May 02 15:33:48 2018
    CRL Extensions:
chains.sh: #5894: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153349Z
addcert 2 20170502153349Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:33:49 2017
    Next Update: Wed May 02 15:33:48 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:33:49 2017
    CRL Extensions:
chains.sh: #5895: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153350Z
addcert 4 20170502153350Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:33:50 2017
    Next Update: Wed May 02 15:33:48 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:33:49 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 15:33:50 2017
    CRL Extensions:
chains.sh: #5896: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153350Z
nextupdate=20180502153350Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:33:50 2017
    Next Update: Wed May 02 15:33:50 2018
    CRL Extensions:
chains.sh: #5897: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153351Z
addcert 2 20170502153351Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:33:51 2017
    Next Update: Wed May 02 15:33:50 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:33:51 2017
    CRL Extensions:
chains.sh: #5898: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153352Z
addcert 3 20170502153352Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:33:52 2017
    Next Update: Wed May 02 15:33:50 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:33:51 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:33:52 2017
    CRL Extensions:
chains.sh: #5899: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153352Z
nextupdate=20180502153352Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:33:52 2017
    Next Update: Wed May 02 15:33:52 2018
    CRL Extensions:
chains.sh: #5900: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153353Z
addcert 2 20170502153353Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:33:53 2017
    Next Update: Wed May 02 15:33:52 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:33:53 2017
    CRL Extensions:
chains.sh: #5901: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153354Z
addcert 3 20170502153354Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:33:54 2017
    Next Update: Wed May 02 15:33:52 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:33:53 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:33:54 2017
    CRL Extensions:
chains.sh: #5902: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #5903: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #5904: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #5905: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5906: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5907: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5908: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5909: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #5910: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #5911: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #5912: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #5913: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #5914: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #5915: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #5916: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #5917: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #5918: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #5919: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #5920: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #5921: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #5922: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #5923: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #5924: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #5925: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #5926: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 15:33:55 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:33:55 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 24230 >/dev/null 2>/dev/null
httpserv with PID 24230 found at Tue May  2 15:33:55 UTC 2017
httpserv with PID 24230 started at Tue May  2 15:33:55 UTC 2017
tstclnt -h localhost.localdomain -p 9257 -q -t 20
chains.sh: #5927: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153344 (0x1dee4080)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:33:43 2017
            Not After : Mon May 02 15:33:43 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:3a:15:80:5c:e1:6e:c6:b2:e9:1d:25:33:5d:1f:da:
                    da:13:03:33:b2:4d:c1:5e:d3:55:25:a0:56:83:1a:d3:
                    d6:cf:c1:79:04:cc:5e:bf:f6:19:6b:20:05:15:52:26:
                    ec:f9:13:58:eb:3b:69:3f:6a:a2:92:31:67:e5:ac:06:
                    79:e8:d3:1a:fc:f1:f3:65:16:85:c0:fe:bb:76:ea:ea:
                    99:b4:f2:74:d3:9f:57:02:e3:35:4f:a6:ee:25:7c:d4:
                    9c:6c:76:44:63:5e:0f:86:da:01:7d:82:57:a7:96:29:
                    e5:de:87:c2:f6:dd:ef:2a:8c:d5:c0:94:06:eb:55:04:
                    1d:7c:56:ea:df:f7:bb:e3:7d:77:28:de:f5:20:20:99:
                    0d:54:8b:a0:60:1f:74:f4:cf:3d:42:88:ef:f2:07:7a:
                    bc:6e:94:2e:56:b4:19:82:21:d5:ac:de:28:5b:92:70:
                    f9:06:de:5a:13:0f:4b:0b:73:56:f7:a0:54:ba:c6:8c:
                    3b:48:9c:d5:b0:cc:51:ea:33:31:1a:aa:e0:75:56:7d:
                    2d:6e:84:5f:ae:22:fd:ea:b7:e8:20:c1:8b:41:9a:bc:
                    6f:71:f2:91:0b:ab:f2:c2:33:3d:25:b1:3d:54:5c:76:
                    5d:43:b2:af:c2:7a:1e:e7:86:42:37:1d:06:23:b9:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:aa:a8:52:c3:73:ea:cf:07:b0:76:77:b4:22:90:fc:
        67:16:33:0a:19:74:a3:2d:ec:38:11:a8:1a:40:87:35:
        4c:2d:e9:de:8f:f1:d3:0d:07:03:ac:59:40:c0:f4:6d:
        a6:72:5c:3f:2e:1d:8e:d7:5f:f5:9a:d1:04:9a:08:3c:
        e6:af:42:be:46:6f:03:9f:67:87:2a:87:d1:9d:69:c8:
        fc:44:47:29:f0:e5:30:d4:71:a5:4a:50:26:ff:85:53:
        99:24:38:74:12:da:ad:bb:03:94:0a:dd:e7:86:e8:76:
        5a:bf:af:5e:6c:de:41:0e:27:98:bf:ce:ab:04:2c:fe:
        c1:38:d3:3c:7f:b1:ad:e0:12:e3:f1:30:59:82:46:87:
        47:94:79:d1:72:84:75:1a:91:fc:d6:89:5f:dd:50:8a:
        91:9b:b7:42:c6:0a:01:ce:e0:ae:85:0a:d8:ec:1d:0c:
        11:dc:68:29:3d:b1:a5:60:87:ac:86:1a:b2:17:1e:94:
        1d:2d:3e:bb:1f:73:30:ee:5d:97:9c:b5:7a:08:af:9a:
        88:97:f4:41:9c:65:1d:8b:7b:b5:5e:10:78:0f:16:b6:
        2a:5d:aa:5d:46:d5:dd:64:95:02:e5:35:f4:a7:1d:86:
        54:8e:4e:e2:49:98:fa:d4:62:17:b2:02:2d:11:5d:bb
    Fingerprint (SHA-256):
        33:BF:E8:F5:0F:D2:0A:2D:3C:F1:CB:0E:D8:48:14:B9:8F:9E:07:01:77:DF:C4:1D:62:12:DA:4B:2A:1D:4A:FF
    Fingerprint (SHA1):
        84:60:62:47:65:E5:09:E4:D6:B1:66:3D:6F:98:EC:2C:99:BF:B6:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #5928: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5929: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5930: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 24230 at Tue May  2 15:33:55 UTC 2017
kill -USR1 24230
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 24230 killed at Tue May  2 15:33:55 UTC 2017
httpserv starting at Tue May  2 15:33:55 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:33:55 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 24399 >/dev/null 2>/dev/null
httpserv with PID 24399 found at Tue May  2 15:33:55 UTC 2017
httpserv with PID 24399 started at Tue May  2 15:33:55 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5931: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5932: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5933: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9257 -q -t 20
chains.sh: #5934: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153344 (0x1dee4080)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:33:43 2017
            Not After : Mon May 02 15:33:43 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:3a:15:80:5c:e1:6e:c6:b2:e9:1d:25:33:5d:1f:da:
                    da:13:03:33:b2:4d:c1:5e:d3:55:25:a0:56:83:1a:d3:
                    d6:cf:c1:79:04:cc:5e:bf:f6:19:6b:20:05:15:52:26:
                    ec:f9:13:58:eb:3b:69:3f:6a:a2:92:31:67:e5:ac:06:
                    79:e8:d3:1a:fc:f1:f3:65:16:85:c0:fe:bb:76:ea:ea:
                    99:b4:f2:74:d3:9f:57:02:e3:35:4f:a6:ee:25:7c:d4:
                    9c:6c:76:44:63:5e:0f:86:da:01:7d:82:57:a7:96:29:
                    e5:de:87:c2:f6:dd:ef:2a:8c:d5:c0:94:06:eb:55:04:
                    1d:7c:56:ea:df:f7:bb:e3:7d:77:28:de:f5:20:20:99:
                    0d:54:8b:a0:60:1f:74:f4:cf:3d:42:88:ef:f2:07:7a:
                    bc:6e:94:2e:56:b4:19:82:21:d5:ac:de:28:5b:92:70:
                    f9:06:de:5a:13:0f:4b:0b:73:56:f7:a0:54:ba:c6:8c:
                    3b:48:9c:d5:b0:cc:51:ea:33:31:1a:aa:e0:75:56:7d:
                    2d:6e:84:5f:ae:22:fd:ea:b7:e8:20:c1:8b:41:9a:bc:
                    6f:71:f2:91:0b:ab:f2:c2:33:3d:25:b1:3d:54:5c:76:
                    5d:43:b2:af:c2:7a:1e:e7:86:42:37:1d:06:23:b9:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:aa:a8:52:c3:73:ea:cf:07:b0:76:77:b4:22:90:fc:
        67:16:33:0a:19:74:a3:2d:ec:38:11:a8:1a:40:87:35:
        4c:2d:e9:de:8f:f1:d3:0d:07:03:ac:59:40:c0:f4:6d:
        a6:72:5c:3f:2e:1d:8e:d7:5f:f5:9a:d1:04:9a:08:3c:
        e6:af:42:be:46:6f:03:9f:67:87:2a:87:d1:9d:69:c8:
        fc:44:47:29:f0:e5:30:d4:71:a5:4a:50:26:ff:85:53:
        99:24:38:74:12:da:ad:bb:03:94:0a:dd:e7:86:e8:76:
        5a:bf:af:5e:6c:de:41:0e:27:98:bf:ce:ab:04:2c:fe:
        c1:38:d3:3c:7f:b1:ad:e0:12:e3:f1:30:59:82:46:87:
        47:94:79:d1:72:84:75:1a:91:fc:d6:89:5f:dd:50:8a:
        91:9b:b7:42:c6:0a:01:ce:e0:ae:85:0a:d8:ec:1d:0c:
        11:dc:68:29:3d:b1:a5:60:87:ac:86:1a:b2:17:1e:94:
        1d:2d:3e:bb:1f:73:30:ee:5d:97:9c:b5:7a:08:af:9a:
        88:97:f4:41:9c:65:1d:8b:7b:b5:5e:10:78:0f:16:b6:
        2a:5d:aa:5d:46:d5:dd:64:95:02:e5:35:f4:a7:1d:86:
        54:8e:4e:e2:49:98:fa:d4:62:17:b2:02:2d:11:5d:bb
    Fingerprint (SHA-256):
        33:BF:E8:F5:0F:D2:0A:2D:3C:F1:CB:0E:D8:48:14:B9:8F:9E:07:01:77:DF:C4:1D:62:12:DA:4B:2A:1D:4A:FF
    Fingerprint (SHA1):
        84:60:62:47:65:E5:09:E4:D6:B1:66:3D:6F:98:EC:2C:99:BF:B6:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #5935: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5936: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5937: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 24399 at Tue May  2 15:33:55 UTC 2017
kill -USR1 24399
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 24399 killed at Tue May  2 15:33:55 UTC 2017
httpserv starting at Tue May  2 15:33:56 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:33:56 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 24646 >/dev/null 2>/dev/null
httpserv with PID 24646 found at Tue May  2 15:33:56 UTC 2017
httpserv with PID 24646 started at Tue May  2 15:33:56 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5938: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #5939: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153345 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5940: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #5941: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #5942: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153346 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5943: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #5944: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #5945: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5946: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153347 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5947: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5948: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153348 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5949: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5950: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #5951: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #5952: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5953: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502153349   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5954: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5955: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #5956: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #5957: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #5958: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153346 (0x1dee4082)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:83:c9:f5:68:d1:43:d5:f8:62:d5:b7:ff:4d:6b:ba:
                    f2:c3:2f:5d:53:8a:65:86:7b:50:4f:37:8a:42:f1:b6:
                    d1:0c:14:f1:e1:de:2d:f9:f2:7a:6e:ef:f8:0d:0b:8b:
                    f1:3c:7e:e3:3a:21:ae:d9:cf:3c:2a:08:12:4f:6c:4c:
                    60:63:ab:08:cb:34:f8:2c:f2:79:a8:b0:76:4c:86:2a:
                    92:2f:e5:87:0a:b4:f4:8c:d6:96:4b:ce:f9:c6:5e:13:
                    fe:94:30:a7:74:33:36:e3:ce:b1:f6:c1:1c:8b:d3:7d:
                    3c:5a:9d:a8:82:90:88:fb:53:43:39:d6:a8:2f:fe:0a:
                    16:da:3b:ef:d9:e7:b0:9e:f8:c0:f6:3a:f1:89:5a:ed:
                    28:ba:63:11:40:45:d1:59:ea:59:f3:f9:00:13:cd:e2:
                    27:57:2c:65:89:14:28:04:4c:4a:23:12:5e:2f:2d:f8:
                    0a:84:a0:f6:d1:3f:2e:04:2f:f4:93:e0:09:8f:ac:e1:
                    ea:a0:b7:d4:93:d4:46:60:2c:d3:80:c2:3c:34:cf:bc:
                    06:fb:f3:43:25:db:b0:9b:ed:51:48:18:7c:2c:db:5e:
                    51:2c:05:96:1b:01:26:7c:b7:1b:af:25:3b:89:1d:71:
                    4f:f1:ce:b7:3c:70:e4:b5:90:69:56:19:6b:f0:0e:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:c0:b5:4a:0e:73:7e:a1:c7:23:67:e3:67:64:47:9a:
        6c:3e:a5:d7:9d:66:f2:84:d5:4d:21:a8:fb:22:2b:27:
        91:c6:dd:8c:3c:cf:fb:6c:14:f0:92:87:a5:d8:0b:2b:
        a5:97:0a:e3:93:99:fb:b5:e3:6b:3b:35:fd:f3:ce:ae:
        1d:c3:2f:0f:14:3f:bd:32:04:a3:37:2d:fb:4b:fa:f0:
        9b:c6:0f:49:8a:1b:d6:35:35:43:33:8f:dc:2b:73:7e:
        df:82:2c:33:0c:de:66:d0:39:91:0c:c0:81:13:e8:fd:
        2a:66:17:f5:74:67:81:f6:a4:cc:1f:0f:f4:88:a4:e0:
        78:62:28:b1:99:d1:ed:8d:bf:d1:da:70:70:0b:64:72:
        a7:7e:a0:9b:ee:b0:86:9d:46:43:a7:90:78:34:40:cc:
        c9:47:d4:30:e2:51:88:44:61:95:5d:a3:42:c7:89:c8:
        0e:5f:b4:f4:14:47:c7:92:20:fc:be:79:5d:d4:ee:45:
        1c:7f:92:79:4d:cb:03:03:ec:44:fa:47:4e:d2:f2:c3:
        28:1c:13:57:a7:11:08:fa:45:98:2b:1b:7a:dc:7e:ad:
        a6:5e:3c:1b:21:ea:c2:84:42:af:05:8e:71:ad:2e:d2:
        e1:95:84:ba:f8:97:8f:61:0d:00:c0:2c:35:7d:e7:af
    Fingerprint (SHA-256):
        22:08:B1:95:01:6D:4B:48:BE:64:67:0A:8E:DE:27:8A:D1:76:8E:E7:AF:3C:FE:2C:AC:E4:F6:C7:24:9F:93:59
    Fingerprint (SHA1):
        43:4F:EC:B9:1A:00:B6:22:4A:17:A1:F8:6E:56:46:F2:67:27:48:3E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5959: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153345 (0x1dee4081)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:d1:10:2e:37:bf:b4:2c:3d:a6:91:d6:c4:f0:e9:e1:
                    ae:54:9b:81:2a:e4:90:73:73:38:00:f7:26:51:f1:a8:
                    38:20:9b:12:14:26:0f:b3:93:ed:54:2a:e7:e9:99:4c:
                    53:22:9d:e8:ce:41:93:47:09:90:af:c1:a8:21:d3:db:
                    94:88:8d:76:d5:25:ca:cc:92:05:7d:90:49:ce:0d:21:
                    91:ca:a5:2c:50:0e:d0:90:62:5d:92:f4:a8:ae:31:6f:
                    48:42:e8:34:dd:dd:e8:7e:20:d5:ea:e2:80:08:a2:da:
                    55:cc:68:f2:b9:fd:01:1b:4b:f0:5a:ef:6a:4e:07:c5:
                    f4:df:0f:9d:9d:78:cb:f5:1d:13:97:a8:be:63:5e:12:
                    ad:41:68:6a:5a:f7:a0:ee:e5:85:a1:04:94:5e:a4:dc:
                    c3:b5:dc:88:cc:41:55:7d:85:4e:63:f6:c3:71:e5:c4:
                    82:2d:f9:33:8d:29:a7:23:63:d5:84:8f:e1:1b:47:04:
                    e6:1b:ce:eb:80:b8:42:d9:00:02:8d:1f:17:61:10:80:
                    fe:4e:49:5e:f8:95:3c:b4:90:c0:00:cb:df:02:40:d4:
                    05:f7:4e:95:5e:05:ba:13:c1:a8:b0:50:c6:2d:36:c7:
                    75:4f:38:57:dd:f7:3e:10:bb:59:6c:55:96:73:5c:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:81:c4:15:c9:32:69:0e:0e:13:3d:e3:1f:ea:66:15:
        f3:be:aa:c2:ac:aa:7c:6d:62:c2:59:30:3c:8b:00:8a:
        df:1f:56:7a:3e:cb:00:f6:9d:7b:1f:54:b3:54:8d:8b:
        20:ca:47:f5:9d:5c:2b:6c:7e:d7:55:fc:a5:aa:df:56:
        cf:a7:1c:d6:eb:f1:c6:fd:dd:9b:00:d3:aa:c6:e2:6a:
        c1:c6:de:76:43:8c:70:fa:30:f5:73:76:8a:99:99:08:
        eb:81:67:d4:ee:60:12:98:fd:74:c1:9e:14:f2:39:62:
        0b:01:ff:e7:af:74:41:fb:87:e8:92:68:66:d0:0d:b5:
        1d:9e:6c:ef:47:5e:2b:78:87:66:06:60:b1:0c:b4:6f:
        b8:e4:c7:93:a3:62:d3:7e:63:1f:71:f0:c8:e0:d8:50:
        2d:54:40:79:e0:63:bf:bd:44:fc:d7:b7:32:d7:d3:9f:
        c0:80:22:d2:e5:ab:b1:df:86:a3:40:bd:c6:4c:39:0f:
        ee:40:5d:0a:20:33:54:bd:55:39:d8:ea:2e:69:8d:17:
        7b:44:11:91:37:d4:05:60:ab:58:e3:d6:5f:f4:60:e2:
        4e:86:87:45:8e:5c:50:8e:46:e8:69:c3:43:18:8c:dd:
        fb:e0:1c:9b:f9:52:f9:56:04:87:5f:83:cf:15:5a:e5
    Fingerprint (SHA-256):
        40:2E:90:F8:1F:47:3D:69:CE:EA:B4:91:0C:46:BF:22:09:70:28:35:E7:2B:4E:B5:CA:43:B2:BD:C3:04:B0:79
    Fingerprint (SHA1):
        D3:47:7E:1C:31:1B:49:2B:51:16:5A:40:A2:DC:55:93:04:75:A9:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5960: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5961: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #5962: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #5963: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153345 (0x1dee4081)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:d1:10:2e:37:bf:b4:2c:3d:a6:91:d6:c4:f0:e9:e1:
                    ae:54:9b:81:2a:e4:90:73:73:38:00:f7:26:51:f1:a8:
                    38:20:9b:12:14:26:0f:b3:93:ed:54:2a:e7:e9:99:4c:
                    53:22:9d:e8:ce:41:93:47:09:90:af:c1:a8:21:d3:db:
                    94:88:8d:76:d5:25:ca:cc:92:05:7d:90:49:ce:0d:21:
                    91:ca:a5:2c:50:0e:d0:90:62:5d:92:f4:a8:ae:31:6f:
                    48:42:e8:34:dd:dd:e8:7e:20:d5:ea:e2:80:08:a2:da:
                    55:cc:68:f2:b9:fd:01:1b:4b:f0:5a:ef:6a:4e:07:c5:
                    f4:df:0f:9d:9d:78:cb:f5:1d:13:97:a8:be:63:5e:12:
                    ad:41:68:6a:5a:f7:a0:ee:e5:85:a1:04:94:5e:a4:dc:
                    c3:b5:dc:88:cc:41:55:7d:85:4e:63:f6:c3:71:e5:c4:
                    82:2d:f9:33:8d:29:a7:23:63:d5:84:8f:e1:1b:47:04:
                    e6:1b:ce:eb:80:b8:42:d9:00:02:8d:1f:17:61:10:80:
                    fe:4e:49:5e:f8:95:3c:b4:90:c0:00:cb:df:02:40:d4:
                    05:f7:4e:95:5e:05:ba:13:c1:a8:b0:50:c6:2d:36:c7:
                    75:4f:38:57:dd:f7:3e:10:bb:59:6c:55:96:73:5c:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:81:c4:15:c9:32:69:0e:0e:13:3d:e3:1f:ea:66:15:
        f3:be:aa:c2:ac:aa:7c:6d:62:c2:59:30:3c:8b:00:8a:
        df:1f:56:7a:3e:cb:00:f6:9d:7b:1f:54:b3:54:8d:8b:
        20:ca:47:f5:9d:5c:2b:6c:7e:d7:55:fc:a5:aa:df:56:
        cf:a7:1c:d6:eb:f1:c6:fd:dd:9b:00:d3:aa:c6:e2:6a:
        c1:c6:de:76:43:8c:70:fa:30:f5:73:76:8a:99:99:08:
        eb:81:67:d4:ee:60:12:98:fd:74:c1:9e:14:f2:39:62:
        0b:01:ff:e7:af:74:41:fb:87:e8:92:68:66:d0:0d:b5:
        1d:9e:6c:ef:47:5e:2b:78:87:66:06:60:b1:0c:b4:6f:
        b8:e4:c7:93:a3:62:d3:7e:63:1f:71:f0:c8:e0:d8:50:
        2d:54:40:79:e0:63:bf:bd:44:fc:d7:b7:32:d7:d3:9f:
        c0:80:22:d2:e5:ab:b1:df:86:a3:40:bd:c6:4c:39:0f:
        ee:40:5d:0a:20:33:54:bd:55:39:d8:ea:2e:69:8d:17:
        7b:44:11:91:37:d4:05:60:ab:58:e3:d6:5f:f4:60:e2:
        4e:86:87:45:8e:5c:50:8e:46:e8:69:c3:43:18:8c:dd:
        fb:e0:1c:9b:f9:52:f9:56:04:87:5f:83:cf:15:5a:e5
    Fingerprint (SHA-256):
        40:2E:90:F8:1F:47:3D:69:CE:EA:B4:91:0C:46:BF:22:09:70:28:35:E7:2B:4E:B5:CA:43:B2:BD:C3:04:B0:79
    Fingerprint (SHA1):
        D3:47:7E:1C:31:1B:49:2B:51:16:5A:40:A2:DC:55:93:04:75:A9:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5964: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153346 (0x1dee4082)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:83:c9:f5:68:d1:43:d5:f8:62:d5:b7:ff:4d:6b:ba:
                    f2:c3:2f:5d:53:8a:65:86:7b:50:4f:37:8a:42:f1:b6:
                    d1:0c:14:f1:e1:de:2d:f9:f2:7a:6e:ef:f8:0d:0b:8b:
                    f1:3c:7e:e3:3a:21:ae:d9:cf:3c:2a:08:12:4f:6c:4c:
                    60:63:ab:08:cb:34:f8:2c:f2:79:a8:b0:76:4c:86:2a:
                    92:2f:e5:87:0a:b4:f4:8c:d6:96:4b:ce:f9:c6:5e:13:
                    fe:94:30:a7:74:33:36:e3:ce:b1:f6:c1:1c:8b:d3:7d:
                    3c:5a:9d:a8:82:90:88:fb:53:43:39:d6:a8:2f:fe:0a:
                    16:da:3b:ef:d9:e7:b0:9e:f8:c0:f6:3a:f1:89:5a:ed:
                    28:ba:63:11:40:45:d1:59:ea:59:f3:f9:00:13:cd:e2:
                    27:57:2c:65:89:14:28:04:4c:4a:23:12:5e:2f:2d:f8:
                    0a:84:a0:f6:d1:3f:2e:04:2f:f4:93:e0:09:8f:ac:e1:
                    ea:a0:b7:d4:93:d4:46:60:2c:d3:80:c2:3c:34:cf:bc:
                    06:fb:f3:43:25:db:b0:9b:ed:51:48:18:7c:2c:db:5e:
                    51:2c:05:96:1b:01:26:7c:b7:1b:af:25:3b:89:1d:71:
                    4f:f1:ce:b7:3c:70:e4:b5:90:69:56:19:6b:f0:0e:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:c0:b5:4a:0e:73:7e:a1:c7:23:67:e3:67:64:47:9a:
        6c:3e:a5:d7:9d:66:f2:84:d5:4d:21:a8:fb:22:2b:27:
        91:c6:dd:8c:3c:cf:fb:6c:14:f0:92:87:a5:d8:0b:2b:
        a5:97:0a:e3:93:99:fb:b5:e3:6b:3b:35:fd:f3:ce:ae:
        1d:c3:2f:0f:14:3f:bd:32:04:a3:37:2d:fb:4b:fa:f0:
        9b:c6:0f:49:8a:1b:d6:35:35:43:33:8f:dc:2b:73:7e:
        df:82:2c:33:0c:de:66:d0:39:91:0c:c0:81:13:e8:fd:
        2a:66:17:f5:74:67:81:f6:a4:cc:1f:0f:f4:88:a4:e0:
        78:62:28:b1:99:d1:ed:8d:bf:d1:da:70:70:0b:64:72:
        a7:7e:a0:9b:ee:b0:86:9d:46:43:a7:90:78:34:40:cc:
        c9:47:d4:30:e2:51:88:44:61:95:5d:a3:42:c7:89:c8:
        0e:5f:b4:f4:14:47:c7:92:20:fc:be:79:5d:d4:ee:45:
        1c:7f:92:79:4d:cb:03:03:ec:44:fa:47:4e:d2:f2:c3:
        28:1c:13:57:a7:11:08:fa:45:98:2b:1b:7a:dc:7e:ad:
        a6:5e:3c:1b:21:ea:c2:84:42:af:05:8e:71:ad:2e:d2:
        e1:95:84:ba:f8:97:8f:61:0d:00:c0:2c:35:7d:e7:af
    Fingerprint (SHA-256):
        22:08:B1:95:01:6D:4B:48:BE:64:67:0A:8E:DE:27:8A:D1:76:8E:E7:AF:3C:FE:2C:AC:E4:F6:C7:24:9F:93:59
    Fingerprint (SHA1):
        43:4F:EC:B9:1A:00:B6:22:4A:17:A1:F8:6E:56:46:F2:67:27:48:3E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5965: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #5966: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #5967: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #5968: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5969: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5970: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153346 (0x1dee4082)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:83:c9:f5:68:d1:43:d5:f8:62:d5:b7:ff:4d:6b:ba:
                    f2:c3:2f:5d:53:8a:65:86:7b:50:4f:37:8a:42:f1:b6:
                    d1:0c:14:f1:e1:de:2d:f9:f2:7a:6e:ef:f8:0d:0b:8b:
                    f1:3c:7e:e3:3a:21:ae:d9:cf:3c:2a:08:12:4f:6c:4c:
                    60:63:ab:08:cb:34:f8:2c:f2:79:a8:b0:76:4c:86:2a:
                    92:2f:e5:87:0a:b4:f4:8c:d6:96:4b:ce:f9:c6:5e:13:
                    fe:94:30:a7:74:33:36:e3:ce:b1:f6:c1:1c:8b:d3:7d:
                    3c:5a:9d:a8:82:90:88:fb:53:43:39:d6:a8:2f:fe:0a:
                    16:da:3b:ef:d9:e7:b0:9e:f8:c0:f6:3a:f1:89:5a:ed:
                    28:ba:63:11:40:45:d1:59:ea:59:f3:f9:00:13:cd:e2:
                    27:57:2c:65:89:14:28:04:4c:4a:23:12:5e:2f:2d:f8:
                    0a:84:a0:f6:d1:3f:2e:04:2f:f4:93:e0:09:8f:ac:e1:
                    ea:a0:b7:d4:93:d4:46:60:2c:d3:80:c2:3c:34:cf:bc:
                    06:fb:f3:43:25:db:b0:9b:ed:51:48:18:7c:2c:db:5e:
                    51:2c:05:96:1b:01:26:7c:b7:1b:af:25:3b:89:1d:71:
                    4f:f1:ce:b7:3c:70:e4:b5:90:69:56:19:6b:f0:0e:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:c0:b5:4a:0e:73:7e:a1:c7:23:67:e3:67:64:47:9a:
        6c:3e:a5:d7:9d:66:f2:84:d5:4d:21:a8:fb:22:2b:27:
        91:c6:dd:8c:3c:cf:fb:6c:14:f0:92:87:a5:d8:0b:2b:
        a5:97:0a:e3:93:99:fb:b5:e3:6b:3b:35:fd:f3:ce:ae:
        1d:c3:2f:0f:14:3f:bd:32:04:a3:37:2d:fb:4b:fa:f0:
        9b:c6:0f:49:8a:1b:d6:35:35:43:33:8f:dc:2b:73:7e:
        df:82:2c:33:0c:de:66:d0:39:91:0c:c0:81:13:e8:fd:
        2a:66:17:f5:74:67:81:f6:a4:cc:1f:0f:f4:88:a4:e0:
        78:62:28:b1:99:d1:ed:8d:bf:d1:da:70:70:0b:64:72:
        a7:7e:a0:9b:ee:b0:86:9d:46:43:a7:90:78:34:40:cc:
        c9:47:d4:30:e2:51:88:44:61:95:5d:a3:42:c7:89:c8:
        0e:5f:b4:f4:14:47:c7:92:20:fc:be:79:5d:d4:ee:45:
        1c:7f:92:79:4d:cb:03:03:ec:44:fa:47:4e:d2:f2:c3:
        28:1c:13:57:a7:11:08:fa:45:98:2b:1b:7a:dc:7e:ad:
        a6:5e:3c:1b:21:ea:c2:84:42:af:05:8e:71:ad:2e:d2:
        e1:95:84:ba:f8:97:8f:61:0d:00:c0:2c:35:7d:e7:af
    Fingerprint (SHA-256):
        22:08:B1:95:01:6D:4B:48:BE:64:67:0A:8E:DE:27:8A:D1:76:8E:E7:AF:3C:FE:2C:AC:E4:F6:C7:24:9F:93:59
    Fingerprint (SHA1):
        43:4F:EC:B9:1A:00:B6:22:4A:17:A1:F8:6E:56:46:F2:67:27:48:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5971: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153346 (0x1dee4082)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:83:c9:f5:68:d1:43:d5:f8:62:d5:b7:ff:4d:6b:ba:
                    f2:c3:2f:5d:53:8a:65:86:7b:50:4f:37:8a:42:f1:b6:
                    d1:0c:14:f1:e1:de:2d:f9:f2:7a:6e:ef:f8:0d:0b:8b:
                    f1:3c:7e:e3:3a:21:ae:d9:cf:3c:2a:08:12:4f:6c:4c:
                    60:63:ab:08:cb:34:f8:2c:f2:79:a8:b0:76:4c:86:2a:
                    92:2f:e5:87:0a:b4:f4:8c:d6:96:4b:ce:f9:c6:5e:13:
                    fe:94:30:a7:74:33:36:e3:ce:b1:f6:c1:1c:8b:d3:7d:
                    3c:5a:9d:a8:82:90:88:fb:53:43:39:d6:a8:2f:fe:0a:
                    16:da:3b:ef:d9:e7:b0:9e:f8:c0:f6:3a:f1:89:5a:ed:
                    28:ba:63:11:40:45:d1:59:ea:59:f3:f9:00:13:cd:e2:
                    27:57:2c:65:89:14:28:04:4c:4a:23:12:5e:2f:2d:f8:
                    0a:84:a0:f6:d1:3f:2e:04:2f:f4:93:e0:09:8f:ac:e1:
                    ea:a0:b7:d4:93:d4:46:60:2c:d3:80:c2:3c:34:cf:bc:
                    06:fb:f3:43:25:db:b0:9b:ed:51:48:18:7c:2c:db:5e:
                    51:2c:05:96:1b:01:26:7c:b7:1b:af:25:3b:89:1d:71:
                    4f:f1:ce:b7:3c:70:e4:b5:90:69:56:19:6b:f0:0e:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:c0:b5:4a:0e:73:7e:a1:c7:23:67:e3:67:64:47:9a:
        6c:3e:a5:d7:9d:66:f2:84:d5:4d:21:a8:fb:22:2b:27:
        91:c6:dd:8c:3c:cf:fb:6c:14:f0:92:87:a5:d8:0b:2b:
        a5:97:0a:e3:93:99:fb:b5:e3:6b:3b:35:fd:f3:ce:ae:
        1d:c3:2f:0f:14:3f:bd:32:04:a3:37:2d:fb:4b:fa:f0:
        9b:c6:0f:49:8a:1b:d6:35:35:43:33:8f:dc:2b:73:7e:
        df:82:2c:33:0c:de:66:d0:39:91:0c:c0:81:13:e8:fd:
        2a:66:17:f5:74:67:81:f6:a4:cc:1f:0f:f4:88:a4:e0:
        78:62:28:b1:99:d1:ed:8d:bf:d1:da:70:70:0b:64:72:
        a7:7e:a0:9b:ee:b0:86:9d:46:43:a7:90:78:34:40:cc:
        c9:47:d4:30:e2:51:88:44:61:95:5d:a3:42:c7:89:c8:
        0e:5f:b4:f4:14:47:c7:92:20:fc:be:79:5d:d4:ee:45:
        1c:7f:92:79:4d:cb:03:03:ec:44:fa:47:4e:d2:f2:c3:
        28:1c:13:57:a7:11:08:fa:45:98:2b:1b:7a:dc:7e:ad:
        a6:5e:3c:1b:21:ea:c2:84:42:af:05:8e:71:ad:2e:d2:
        e1:95:84:ba:f8:97:8f:61:0d:00:c0:2c:35:7d:e7:af
    Fingerprint (SHA-256):
        22:08:B1:95:01:6D:4B:48:BE:64:67:0A:8E:DE:27:8A:D1:76:8E:E7:AF:3C:FE:2C:AC:E4:F6:C7:24:9F:93:59
    Fingerprint (SHA1):
        43:4F:EC:B9:1A:00:B6:22:4A:17:A1:F8:6E:56:46:F2:67:27:48:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5972: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #5973: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #5974: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #5975: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #5976: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #5977: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153345 (0x1dee4081)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:d1:10:2e:37:bf:b4:2c:3d:a6:91:d6:c4:f0:e9:e1:
                    ae:54:9b:81:2a:e4:90:73:73:38:00:f7:26:51:f1:a8:
                    38:20:9b:12:14:26:0f:b3:93:ed:54:2a:e7:e9:99:4c:
                    53:22:9d:e8:ce:41:93:47:09:90:af:c1:a8:21:d3:db:
                    94:88:8d:76:d5:25:ca:cc:92:05:7d:90:49:ce:0d:21:
                    91:ca:a5:2c:50:0e:d0:90:62:5d:92:f4:a8:ae:31:6f:
                    48:42:e8:34:dd:dd:e8:7e:20:d5:ea:e2:80:08:a2:da:
                    55:cc:68:f2:b9:fd:01:1b:4b:f0:5a:ef:6a:4e:07:c5:
                    f4:df:0f:9d:9d:78:cb:f5:1d:13:97:a8:be:63:5e:12:
                    ad:41:68:6a:5a:f7:a0:ee:e5:85:a1:04:94:5e:a4:dc:
                    c3:b5:dc:88:cc:41:55:7d:85:4e:63:f6:c3:71:e5:c4:
                    82:2d:f9:33:8d:29:a7:23:63:d5:84:8f:e1:1b:47:04:
                    e6:1b:ce:eb:80:b8:42:d9:00:02:8d:1f:17:61:10:80:
                    fe:4e:49:5e:f8:95:3c:b4:90:c0:00:cb:df:02:40:d4:
                    05:f7:4e:95:5e:05:ba:13:c1:a8:b0:50:c6:2d:36:c7:
                    75:4f:38:57:dd:f7:3e:10:bb:59:6c:55:96:73:5c:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:81:c4:15:c9:32:69:0e:0e:13:3d:e3:1f:ea:66:15:
        f3:be:aa:c2:ac:aa:7c:6d:62:c2:59:30:3c:8b:00:8a:
        df:1f:56:7a:3e:cb:00:f6:9d:7b:1f:54:b3:54:8d:8b:
        20:ca:47:f5:9d:5c:2b:6c:7e:d7:55:fc:a5:aa:df:56:
        cf:a7:1c:d6:eb:f1:c6:fd:dd:9b:00:d3:aa:c6:e2:6a:
        c1:c6:de:76:43:8c:70:fa:30:f5:73:76:8a:99:99:08:
        eb:81:67:d4:ee:60:12:98:fd:74:c1:9e:14:f2:39:62:
        0b:01:ff:e7:af:74:41:fb:87:e8:92:68:66:d0:0d:b5:
        1d:9e:6c:ef:47:5e:2b:78:87:66:06:60:b1:0c:b4:6f:
        b8:e4:c7:93:a3:62:d3:7e:63:1f:71:f0:c8:e0:d8:50:
        2d:54:40:79:e0:63:bf:bd:44:fc:d7:b7:32:d7:d3:9f:
        c0:80:22:d2:e5:ab:b1:df:86:a3:40:bd:c6:4c:39:0f:
        ee:40:5d:0a:20:33:54:bd:55:39:d8:ea:2e:69:8d:17:
        7b:44:11:91:37:d4:05:60:ab:58:e3:d6:5f:f4:60:e2:
        4e:86:87:45:8e:5c:50:8e:46:e8:69:c3:43:18:8c:dd:
        fb:e0:1c:9b:f9:52:f9:56:04:87:5f:83:cf:15:5a:e5
    Fingerprint (SHA-256):
        40:2E:90:F8:1F:47:3D:69:CE:EA:B4:91:0C:46:BF:22:09:70:28:35:E7:2B:4E:B5:CA:43:B2:BD:C3:04:B0:79
    Fingerprint (SHA1):
        D3:47:7E:1C:31:1B:49:2B:51:16:5A:40:A2:DC:55:93:04:75:A9:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5978: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153345 (0x1dee4081)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:d1:10:2e:37:bf:b4:2c:3d:a6:91:d6:c4:f0:e9:e1:
                    ae:54:9b:81:2a:e4:90:73:73:38:00:f7:26:51:f1:a8:
                    38:20:9b:12:14:26:0f:b3:93:ed:54:2a:e7:e9:99:4c:
                    53:22:9d:e8:ce:41:93:47:09:90:af:c1:a8:21:d3:db:
                    94:88:8d:76:d5:25:ca:cc:92:05:7d:90:49:ce:0d:21:
                    91:ca:a5:2c:50:0e:d0:90:62:5d:92:f4:a8:ae:31:6f:
                    48:42:e8:34:dd:dd:e8:7e:20:d5:ea:e2:80:08:a2:da:
                    55:cc:68:f2:b9:fd:01:1b:4b:f0:5a:ef:6a:4e:07:c5:
                    f4:df:0f:9d:9d:78:cb:f5:1d:13:97:a8:be:63:5e:12:
                    ad:41:68:6a:5a:f7:a0:ee:e5:85:a1:04:94:5e:a4:dc:
                    c3:b5:dc:88:cc:41:55:7d:85:4e:63:f6:c3:71:e5:c4:
                    82:2d:f9:33:8d:29:a7:23:63:d5:84:8f:e1:1b:47:04:
                    e6:1b:ce:eb:80:b8:42:d9:00:02:8d:1f:17:61:10:80:
                    fe:4e:49:5e:f8:95:3c:b4:90:c0:00:cb:df:02:40:d4:
                    05:f7:4e:95:5e:05:ba:13:c1:a8:b0:50:c6:2d:36:c7:
                    75:4f:38:57:dd:f7:3e:10:bb:59:6c:55:96:73:5c:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:81:c4:15:c9:32:69:0e:0e:13:3d:e3:1f:ea:66:15:
        f3:be:aa:c2:ac:aa:7c:6d:62:c2:59:30:3c:8b:00:8a:
        df:1f:56:7a:3e:cb:00:f6:9d:7b:1f:54:b3:54:8d:8b:
        20:ca:47:f5:9d:5c:2b:6c:7e:d7:55:fc:a5:aa:df:56:
        cf:a7:1c:d6:eb:f1:c6:fd:dd:9b:00:d3:aa:c6:e2:6a:
        c1:c6:de:76:43:8c:70:fa:30:f5:73:76:8a:99:99:08:
        eb:81:67:d4:ee:60:12:98:fd:74:c1:9e:14:f2:39:62:
        0b:01:ff:e7:af:74:41:fb:87:e8:92:68:66:d0:0d:b5:
        1d:9e:6c:ef:47:5e:2b:78:87:66:06:60:b1:0c:b4:6f:
        b8:e4:c7:93:a3:62:d3:7e:63:1f:71:f0:c8:e0:d8:50:
        2d:54:40:79:e0:63:bf:bd:44:fc:d7:b7:32:d7:d3:9f:
        c0:80:22:d2:e5:ab:b1:df:86:a3:40:bd:c6:4c:39:0f:
        ee:40:5d:0a:20:33:54:bd:55:39:d8:ea:2e:69:8d:17:
        7b:44:11:91:37:d4:05:60:ab:58:e3:d6:5f:f4:60:e2:
        4e:86:87:45:8e:5c:50:8e:46:e8:69:c3:43:18:8c:dd:
        fb:e0:1c:9b:f9:52:f9:56:04:87:5f:83:cf:15:5a:e5
    Fingerprint (SHA-256):
        40:2E:90:F8:1F:47:3D:69:CE:EA:B4:91:0C:46:BF:22:09:70:28:35:E7:2B:4E:B5:CA:43:B2:BD:C3:04:B0:79
    Fingerprint (SHA1):
        D3:47:7E:1C:31:1B:49:2B:51:16:5A:40:A2:DC:55:93:04:75:A9:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5979: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #5980: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153350 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5981: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #5982: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #5983: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153351 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5984: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #5985: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #5986: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153352 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5987: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #5988: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #5989: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153353 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5990: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #5991: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #5992: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153354 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5993: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #5994: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #5995: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153355 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5996: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #5997: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #5998: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153356 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5999: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6000: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6001: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153357 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6002: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6003: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6004: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153358 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6005: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6006: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6007: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6008: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502153359 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6009: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6010: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502153360 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6011: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6012: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502153361 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6013: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6014: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6015: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6016: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6017: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502153362 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6018: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6019: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502153363 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6020: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6021: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502153364 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6022: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6023: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6024: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6025: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6026: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502153365 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6027: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6028: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502153366 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6029: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6030: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502153367 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6031: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6032: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6033: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6034: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6035: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502153368 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6036: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6037: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502153369 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6038: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6039: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502153370 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6040: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6041: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6042: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6043: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6044: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502153371   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6045: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6046: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6047: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6048: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153372   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6049: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6050: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153350 (0x1dee4086)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:33:58 2017
            Not After : Mon May 02 15:33:58 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:41:90:5b:47:61:a0:4d:94:b2:15:9d:0d:d7:24:12:
                    99:4f:2e:23:1e:49:26:b6:59:9e:39:a2:d5:95:b7:c4:
                    58:7a:75:15:22:f2:4b:42:e6:d4:6e:28:63:ec:c3:a8:
                    ce:93:b5:76:24:27:89:64:5d:3d:21:34:9b:eb:1c:4c:
                    8a:a8:66:4b:9d:48:2a:1d:2c:0a:19:16:39:90:44:e9:
                    7b:d9:7b:c0:8f:3f:e9:36:71:4f:a2:43:01:b4:41:89:
                    5d:45:07:f5:eb:b6:6c:be:44:c1:19:eb:e7:7a:e7:8e:
                    f7:61:31:a4:49:ad:59:4d:fc:99:2e:01:56:d1:95:a0:
                    d6:11:51:eb:1b:eb:2d:0a:24:ed:b8:63:1c:66:b3:7b:
                    1d:d0:b9:c0:b8:66:fe:d8:8b:3b:5c:37:e2:8e:22:b3:
                    cb:20:21:2b:da:ec:9f:2e:77:f5:1c:c6:89:ce:5d:ff:
                    97:f1:ed:75:05:79:07:e5:18:7f:6d:6b:6d:b8:17:f4:
                    89:ad:e8:df:b6:1d:ce:ed:90:67:5d:5a:16:56:83:0a:
                    47:21:ff:e0:32:5a:fc:f2:c7:61:4a:43:51:b2:2a:2d:
                    c0:44:9b:08:97:40:52:e8:89:27:b8:00:bf:56:c7:df:
                    0a:f8:cc:84:43:64:ab:b3:17:8c:cb:9c:1a:b6:f6:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:31:31:ba:7f:44:da:12:42:2f:53:5c:9e:3e:e8:af:
        32:ba:e7:8b:a5:d5:9d:2f:20:23:b1:a5:eb:49:53:00:
        40:14:d8:f6:ab:e6:d6:cb:fc:e3:ef:8f:04:25:9a:4e:
        5c:d7:84:ed:0e:0c:da:cf:c3:c3:03:f1:91:fd:1e:42:
        7c:b5:cf:88:d1:11:0e:49:1f:af:07:7d:3e:59:a7:f0:
        68:11:65:29:1b:27:46:9b:2e:68:7b:10:9c:17:64:5f:
        02:4f:7f:8d:3c:25:5f:9d:39:fc:3d:53:87:07:19:21:
        8a:b6:46:7d:09:4f:4c:a9:d2:ef:7b:f8:43:a9:b5:16:
        88:51:2a:e3:d9:0c:be:8a:0e:66:3b:8f:f5:8b:3e:a2:
        d9:70:2d:23:1c:57:9f:7c:c5:b7:96:79:4e:0c:2a:4d:
        2f:69:c7:b0:c3:aa:3c:95:ec:8b:40:3d:c2:48:0e:bd:
        22:08:ea:4b:c9:6f:02:2d:29:48:19:bf:cd:e5:d0:39:
        8d:e0:bc:4c:ae:5b:c4:2f:35:d1:ae:75:ac:11:5f:83:
        43:c7:2d:28:76:5b:8f:e5:4f:ae:1a:71:aa:c3:ff:00:
        1e:6a:cc:24:5f:42:82:79:f2:de:b5:78:74:52:96:47:
        97:f9:23:61:73:64:52:2d:2b:a0:5b:5f:1d:23:51:dd
    Fingerprint (SHA-256):
        64:E8:A2:E5:F3:A9:F2:D9:0C:5A:F0:45:72:9B:88:AE:38:C4:16:0F:F8:A3:06:8B:1E:22:2D:51:AC:5B:8C:0A
    Fingerprint (SHA1):
        3A:BA:3D:97:ED:66:9F:3A:F7:06:2E:10:73:C5:9B:0B:15:56:B3:D5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6051: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153351 (0x1dee4087)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:33:58 2017
            Not After : Mon May 02 15:33:58 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:82:63:09:03:b7:eb:91:2d:79:23:05:e8:c1:45:65:
                    a5:56:44:67:8a:e5:86:fe:d4:5d:65:f6:6a:10:5b:ee:
                    c4:27:be:96:ca:8c:02:3e:72:5a:18:4b:77:18:aa:d9:
                    a6:b4:75:aa:3e:59:bc:b8:67:63:69:8a:60:de:0f:c7:
                    73:9e:d9:83:6c:a7:bf:77:78:38:12:d8:74:77:ef:15:
                    ce:76:8e:4d:22:d1:10:0a:d6:c3:e3:f7:17:ba:91:30:
                    d1:15:28:9b:85:4b:bd:85:4c:68:2a:57:4d:fe:a1:66:
                    6b:99:7c:3a:f2:f2:fb:39:2c:ea:30:80:e3:aa:cd:c1:
                    56:a0:8f:1f:ea:b7:9c:1c:f0:59:70:74:91:6d:dd:25:
                    9c:49:b2:71:3e:93:7d:84:f4:80:fe:43:97:15:75:25:
                    c9:c1:db:46:8a:6b:bc:66:9e:f1:a4:0f:28:54:09:52:
                    c9:c5:dc:88:b7:3b:86:66:d8:d2:a5:17:1b:b9:43:22:
                    d7:6c:c3:db:90:c3:78:47:e9:0e:3f:80:4e:a8:dd:0e:
                    1e:86:56:46:f7:ec:83:c2:8b:d6:9e:24:4f:c5:2d:20:
                    c4:6e:0f:b8:93:7b:c1:79:8e:16:53:da:af:ff:53:a5:
                    4c:43:de:20:f7:25:0b:5e:3a:20:42:00:b4:09:e1:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:64:15:7d:77:a2:55:bb:b0:83:06:ec:c8:9a:b9:b5:
        3d:d9:d8:36:d4:34:34:fa:11:5c:49:3c:60:34:5b:99:
        c3:19:31:b1:9c:d2:50:97:ff:19:7d:ac:d5:0b:ee:39:
        38:ee:ba:bf:f7:18:db:fb:13:3d:ad:43:ac:e1:6a:60:
        d9:ce:f3:74:0a:30:3b:6b:a4:a5:a4:4c:73:de:8e:31:
        d1:eb:20:23:da:cd:f4:5f:bc:a4:b0:c3:70:75:5f:e3:
        13:9d:f1:6b:dd:34:1d:ea:b1:bc:b0:a3:76:f4:4a:c2:
        f9:fc:62:d8:41:e1:28:c7:b9:4a:cc:73:72:85:72:61:
        84:c4:93:f5:c3:6f:c7:29:74:5b:20:32:7b:40:ef:aa:
        1d:4b:68:bc:d1:fa:31:14:03:ce:74:ce:ef:d6:ea:88:
        ef:38:df:bc:55:a0:40:2c:2b:99:81:6d:29:3b:9f:02:
        3c:c1:71:38:e3:17:7f:1d:fe:b4:b0:ce:4f:00:41:ea:
        af:f2:c5:51:4c:a2:16:1c:e0:85:ff:71:4a:b3:d6:e9:
        c9:96:c6:5b:a4:b9:d7:2e:2e:2d:1a:f5:e0:fa:19:af:
        f0:0e:27:31:c8:e3:52:17:ee:7f:d9:0e:1e:31:bc:32:
        84:a5:a6:72:ef:57:20:f6:3b:81:e4:32:96:7a:79:a1
    Fingerprint (SHA-256):
        53:FF:38:C1:ED:A5:20:52:90:34:8C:75:0E:85:60:FC:DE:B2:4C:3B:02:9C:4F:81:A6:E0:DB:B6:42:B2:BA:D8
    Fingerprint (SHA1):
        37:C8:05:E7:7B:26:0B:CE:0D:F9:01:6B:E9:A1:1F:FD:44:69:40:7C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6052: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153352 (0x1dee4088)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:33:58 2017
            Not After : Mon May 02 15:33:58 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:85:b4:f6:19:a8:f4:6b:76:64:b8:78:77:1c:55:37:
                    83:b7:12:d6:44:f6:c1:f7:a6:e3:fe:f6:11:26:85:0c:
                    d3:c4:e3:d8:61:ee:3b:cd:48:02:7a:e7:a6:46:52:37:
                    28:87:8e:89:e2:8a:4f:93:25:0e:51:c2:3d:19:e0:ff:
                    e8:2f:b4:77:90:b1:26:28:2c:09:a6:40:c4:22:51:24:
                    25:14:1d:64:ca:c4:72:c4:e8:14:78:c4:25:db:9c:92:
                    04:ac:a6:e1:6d:1f:4d:26:af:ae:d8:37:b2:89:8b:60:
                    50:a6:7e:81:cd:14:90:da:76:b8:fc:a1:97:20:c0:f7:
                    31:5e:82:e4:b5:fa:86:cf:e0:fa:c8:ec:d5:8c:4e:e7:
                    62:d4:1e:45:24:d0:ed:c2:ae:9d:0d:df:65:73:85:b8:
                    af:81:67:34:86:bd:89:27:88:03:99:0f:12:a2:77:dc:
                    6a:fc:8c:48:97:bf:4b:89:ee:8b:41:47:be:85:97:78:
                    02:54:e2:3e:01:0a:d8:8e:66:ad:9d:67:24:cf:d4:f7:
                    12:d6:61:9c:be:fc:09:44:01:9d:80:6c:7b:22:3e:6c:
                    31:52:71:27:23:f7:cd:e5:fe:e7:80:b4:de:19:5b:18:
                    96:6e:07:08:da:b9:2f:67:b2:8a:aa:9a:ed:e8:cd:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:53:8e:0d:5f:8b:f9:52:30:54:fd:5d:de:0c:56:bf:
        24:e3:99:a4:e3:c7:79:bd:e0:e2:29:52:0e:f1:b0:9a:
        ed:1d:88:c6:5a:0e:1a:c3:64:fd:77:85:d5:b3:2f:26:
        30:61:3f:5c:b7:30:33:7b:5f:6c:5f:cf:eb:dd:75:af:
        36:19:21:36:18:5e:a0:5e:99:d5:45:12:df:28:24:0e:
        df:0a:73:3a:60:f7:9e:ec:58:c0:5a:b6:34:b3:75:00:
        37:7e:ac:0b:94:d8:5c:a3:ad:bb:76:4b:aa:f5:42:31:
        a4:06:df:c3:9e:19:82:f1:e8:61:51:30:89:81:ee:86:
        ff:05:54:7f:65:8b:61:4c:6d:d2:37:09:b6:ae:65:e7:
        65:56:36:c1:ac:7d:9c:27:59:b6:db:fc:22:e2:15:1b:
        da:93:79:42:86:01:df:3b:fb:59:74:a6:3b:d2:ce:37:
        a5:fe:c6:f7:14:6f:43:3a:24:41:a0:ec:cf:18:ad:aa:
        a4:2f:93:ac:20:55:61:25:4d:53:0d:51:25:fc:a6:c8:
        61:0d:da:a2:73:24:45:1c:74:12:64:76:47:d7:9f:fa:
        b0:be:26:db:6f:bf:44:fe:73:ed:8c:d0:ed:0b:f5:b2:
        dd:85:a3:e6:4e:1a:5c:b3:17:89:ea:96:b9:36:0f:14
    Fingerprint (SHA-256):
        B8:54:3D:EA:16:7E:2B:CC:E1:85:B7:2C:A3:38:F0:06:29:F6:93:39:4B:D4:86:B5:D9:F7:7E:07:8A:E2:BE:34
    Fingerprint (SHA1):
        F5:07:EF:CF:BD:5D:62:DD:C6:97:F8:85:6C:F2:F0:4D:14:46:98:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6053: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153353 (0x1dee4089)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:33:58 2017
            Not After : Mon May 02 15:33:58 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:61:61:f1:b3:41:a5:5b:a8:d0:b4:bd:0b:6e:5f:5c:
                    c0:b0:c9:40:d1:33:f1:fe:2e:08:7b:fe:da:69:9d:0f:
                    28:fa:f9:0a:98:ac:61:4c:5b:12:20:79:d7:5d:9f:92:
                    12:a8:32:c2:8c:47:22:78:6f:dd:aa:c8:77:8d:71:0a:
                    ec:66:a8:74:97:89:e4:e4:80:f0:ab:16:94:63:b5:c9:
                    42:35:a0:28:c9:37:54:94:56:78:06:6c:01:a8:f6:68:
                    b0:f0:e6:8c:0d:7f:70:3a:59:94:a7:a4:d4:f3:96:dd:
                    d0:e1:6a:68:96:ae:da:7a:b6:86:38:b2:8c:db:09:da:
                    e7:c1:f4:56:ce:af:38:10:14:e7:f5:69:52:4d:ae:a0:
                    a0:44:2b:f7:c4:68:ae:41:04:df:d8:c5:3e:3f:70:85:
                    a1:0e:a2:72:6b:b0:6e:43:2e:d0:a8:15:cd:bf:ec:39:
                    ed:6a:7b:c2:1e:e9:b3:67:98:3a:10:16:0f:fd:0f:2c:
                    d8:72:c2:bf:5e:ef:03:e1:e8:2b:c4:aa:e5:a1:81:18:
                    3b:db:a3:f3:7a:a2:82:3c:f8:cf:d9:bd:c9:c7:25:be:
                    f4:07:49:a2:90:3d:0b:40:31:a3:a5:11:24:9d:81:79:
                    10:fb:9e:8b:15:01:e7:3a:15:ff:29:2e:07:53:3a:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:61:14:ca:9e:40:78:62:e0:c7:28:34:f0:f1:ff:
        f6:c7:b7:25:be:92:44:7b:56:8b:4c:21:73:2c:13:6f:
        77:56:d6:43:b3:f0:26:6b:bd:cb:cc:c3:e1:09:09:f0:
        f1:10:2f:d8:cb:55:05:3f:38:68:1b:3d:3c:4b:78:00:
        f4:1f:11:3e:de:e6:d8:cd:5b:de:0d:60:ce:12:b3:2a:
        81:e1:8e:0c:6a:4d:e4:80:b3:28:53:a9:b0:19:96:98:
        54:17:77:34:7b:8e:fc:bd:c8:23:a2:53:ce:58:5e:8c:
        44:2d:6a:96:e0:78:a4:e9:77:b2:81:18:af:86:73:6b:
        76:f0:c2:16:9e:49:06:7e:57:ef:f5:30:5a:bd:5a:79:
        fa:3b:8e:07:5b:e4:a3:b4:7f:6b:1e:d3:09:fc:a3:0d:
        3a:f8:d3:27:db:83:74:0f:31:a7:ab:f8:5b:ab:df:09:
        b1:ea:8c:c1:fd:83:83:97:84:a5:6c:60:06:5d:71:83:
        2e:80:c1:3c:1e:ab:a5:f4:57:c9:75:eb:84:51:18:8c:
        5e:a4:90:f8:9a:2d:20:cb:06:8d:15:69:50:ab:38:4a:
        f9:d0:8e:00:66:42:b6:18:83:1d:9d:34:ce:84:08:e5:
        a9:00:ee:94:13:61:95:49:1f:39:ac:70:94:2d:69:9f
    Fingerprint (SHA-256):
        33:AE:54:6B:2D:95:6B:FC:90:74:E2:68:53:59:1B:9F:DF:6B:AA:A9:8B:4D:65:02:AE:B5:06:A9:99:9E:48:57
    Fingerprint (SHA1):
        93:1D:F6:82:16:A5:8C:7E:27:8C:CD:C1:76:7E:46:A4:96:FA:90:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6054: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153354 (0x1dee408a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:33:58 2017
            Not After : Mon May 02 15:33:58 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:44:8a:bb:c1:cf:5d:2d:a0:d2:01:eb:b5:1a:55:51:
                    22:aa:cc:44:cc:34:c7:1a:ef:90:f7:bd:be:d4:d7:82:
                    ae:2c:0e:53:5d:e5:eb:e7:46:7d:cc:f8:11:bd:22:63:
                    87:27:bc:d1:7c:75:ca:98:ea:78:41:ba:d5:4a:c4:69:
                    92:ba:fb:0c:33:4e:78:bd:b9:27:88:71:68:80:2e:86:
                    f2:68:83:2f:46:04:25:07:15:ae:df:88:70:66:66:a9:
                    4a:03:e0:68:63:66:b3:da:bc:c6:13:85:80:92:a2:43:
                    8d:e3:85:2b:7b:ac:e1:09:1f:a6:15:f3:41:95:40:c2:
                    be:75:69:73:1d:df:1d:57:3f:1f:4f:9c:4e:83:51:d5:
                    5c:03:78:bb:9a:b5:c4:fb:ea:16:ea:df:a6:83:8e:ae:
                    8b:ce:c5:40:b3:04:73:d4:b4:0f:8e:19:ba:8e:b9:72:
                    4e:85:67:95:e4:85:7b:48:2e:fc:3f:35:26:64:ac:5c:
                    30:6d:ed:73:f0:92:57:8d:32:74:15:bb:8c:f9:7e:a6:
                    c5:f5:d3:5b:68:1e:e5:86:fd:14:97:b7:a9:f0:4d:20:
                    3d:5c:8c:d1:c4:4e:50:87:d4:13:f2:40:46:d4:a6:28:
                    9d:ee:d1:91:32:79:9b:5c:16:a1:85:31:ad:d1:d5:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:ec:e5:09:e3:80:12:99:de:e8:da:77:ef:6e:fc:aa:
        94:d4:04:91:15:3e:e7:07:38:a1:e6:db:bc:83:8b:e5:
        0a:fb:e6:10:39:56:5b:69:e7:a9:cd:16:c3:42:5d:72:
        c5:3f:ca:17:c8:74:90:10:38:63:58:a9:7b:82:a9:a6:
        36:d7:6e:25:7d:be:7b:95:ff:f8:5a:dd:bc:87:e1:b0:
        42:f0:09:7f:87:86:09:a1:80:14:d3:71:1b:b2:32:86:
        fb:c1:af:83:f4:e2:2d:51:91:59:f7:a0:d6:d1:8d:9d:
        00:04:7d:cf:db:14:56:7c:63:8f:4d:a4:e2:b9:d5:49:
        e5:9a:1b:bc:78:f5:2a:71:3d:19:5e:c2:0e:77:cd:95:
        e5:96:24:2d:91:be:ab:7c:a8:e7:ac:f3:2c:72:30:a1:
        a7:78:51:16:b1:6c:7e:fa:de:63:f1:34:21:a5:26:df:
        76:f7:16:75:34:d6:e6:90:65:a9:83:cf:04:3a:32:da:
        a9:45:ec:64:f6:c0:16:53:cb:e6:ea:de:be:ea:3e:c8:
        c4:18:01:4d:47:4f:74:67:92:6e:a6:e5:08:e1:b7:f2:
        e4:9f:a3:d7:ed:8b:fc:7b:55:84:65:9c:f3:03:18:f6:
        10:34:f2:6b:d3:72:91:16:9d:bc:7a:99:02:ad:51:90
    Fingerprint (SHA-256):
        C4:7B:8C:11:31:50:5F:AB:F8:49:F7:91:F8:36:E8:D4:55:6B:AF:F1:2F:64:FB:7C:54:7D:CB:98:22:BE:8D:A9
    Fingerprint (SHA1):
        88:3E:6E:69:12:D0:75:BA:3C:56:76:3F:FD:4B:1A:F2:65:7D:4F:C3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6055: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153355 (0x1dee408b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:73:be:f6:bb:5d:8c:92:f9:47:df:53:c9:40:25:d6:
                    a5:03:67:f9:4f:c8:a4:63:55:47:b2:7f:43:a5:20:0d:
                    2a:d8:66:c1:2c:bc:f9:82:82:b2:7d:51:38:8a:2c:c7:
                    38:5c:a1:90:d0:17:29:dd:3c:36:3f:75:af:b4:f9:2f:
                    1b:97:83:ed:c5:2b:55:87:04:f6:67:27:db:72:15:25:
                    4b:ac:7a:c7:17:71:f9:b0:e5:61:d9:d0:9a:d7:8e:e5:
                    6d:d1:40:e5:83:59:5a:a1:b6:80:1a:90:43:e0:6c:ec:
                    f5:4c:eb:57:3d:e3:fb:dc:84:15:e8:ff:16:a3:38:d1:
                    96:cc:26:61:49:aa:11:77:27:88:09:20:8b:bc:d2:98:
                    b9:cd:dd:88:b1:41:e1:8b:e2:34:4c:f4:e4:3b:cd:fe:
                    0b:dd:eb:1b:20:56:06:20:60:43:86:55:16:b8:24:4f:
                    2d:7a:2a:28:3e:0e:b8:4f:da:3b:86:b0:37:72:43:48:
                    e2:6b:2f:4e:ce:a0:e8:12:06:b7:cd:47:77:5e:c4:27:
                    51:13:6e:49:84:e7:f5:ca:07:96:3b:4f:73:df:5a:ff:
                    00:ca:5a:de:96:7b:b4:ef:5f:a1:1a:ea:63:a7:85:ad:
                    be:fd:b7:e6:d7:b0:82:fd:ef:1f:ab:93:e9:3d:5b:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:d0:e8:64:a8:fd:3f:92:d4:da:47:3a:eb:40:30:21:
        79:4a:e8:1b:28:0e:0c:4f:40:53:3c:e2:b3:40:29:8e:
        e5:a4:66:8f:8b:19:1a:99:5f:6c:5a:59:73:9e:3a:1e:
        33:6d:10:65:69:75:c7:70:bc:6a:bf:9e:0c:a5:1a:67:
        85:eb:c1:27:6d:81:53:10:32:90:09:b1:1f:38:4a:0e:
        6a:1f:37:22:ae:0a:bd:83:c4:f2:1d:b9:7e:55:69:1c:
        d2:1f:02:b0:5d:2f:fa:1e:94:0b:1b:6f:7b:52:41:3f:
        f6:8b:df:57:eb:10:e2:b1:22:6e:3d:ad:87:69:72:52:
        55:e6:7e:02:2f:02:8b:fc:52:a7:ec:a4:b2:5a:23:47:
        e5:f9:c7:0b:3b:a0:bd:d8:59:0f:8c:d7:fa:6d:5b:64:
        18:fc:45:70:09:9b:a3:b0:f2:0f:75:a6:6d:86:73:d1:
        db:83:f6:24:4f:b3:35:c2:ca:d5:f9:72:52:8b:05:1d:
        a4:60:d0:36:78:b0:25:17:ba:be:77:ad:aa:2b:ad:9e:
        9a:1c:5c:c1:a9:de:66:4b:a0:fa:bb:53:36:59:21:07:
        e0:3b:5e:fe:9f:30:c7:29:af:68:92:a3:b5:41:91:8f:
        81:35:8a:71:c8:b6:9b:b4:c6:05:6b:50:e1:2c:00:18
    Fingerprint (SHA-256):
        55:D3:29:25:FA:02:A6:A6:4B:4D:27:D6:A2:B7:99:9C:24:DA:6F:5B:A4:A4:22:8E:EB:E6:0A:50:0A:10:67:C2
    Fingerprint (SHA1):
        C4:35:F7:D4:D8:76:E4:5F:FC:B4:73:2D:E7:72:9A:01:C5:54:9C:39
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6056: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153356 (0x1dee408c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:9e:dd:48:f0:47:ab:1f:4a:30:f2:20:d3:b8:fb:dc:
                    58:c4:f5:af:de:e3:ad:37:a5:df:72:ca:10:c2:c2:8a:
                    b7:76:5b:d1:30:65:f4:df:43:5c:c0:46:17:22:89:03:
                    42:6a:cd:dd:67:9c:fa:1b:83:c3:01:7d:3c:bd:e1:5b:
                    e7:86:10:af:54:25:59:0c:d9:a0:e1:77:7b:70:7f:7c:
                    5b:43:e0:bc:6c:13:e8:46:32:08:6e:fa:eb:33:35:9d:
                    69:73:96:21:e4:ed:45:99:4d:7d:1c:19:c9:e5:ae:a0:
                    f0:9b:1a:7a:ec:c5:14:be:49:11:36:05:f7:ec:56:cf:
                    76:22:2e:da:aa:fb:3f:c2:f4:8b:c0:b5:1b:51:f6:ca:
                    5a:fe:31:53:07:18:5a:7a:75:1d:83:5d:25:0a:0c:ab:
                    a0:80:fb:2c:ba:d2:7c:f4:6a:d3:5e:d2:ab:bb:d8:82:
                    8c:98:3d:9f:81:e6:ef:9f:7b:9a:f5:e0:24:7a:ca:b0:
                    af:ca:07:e0:86:f8:ff:d4:d1:db:2e:b9:05:96:7e:98:
                    5a:f8:d3:97:76:7c:c4:d4:a4:0c:0e:5c:3a:0b:c3:d1:
                    53:ba:51:2b:ab:8e:e5:93:84:7e:65:f4:f8:f0:18:d1:
                    81:e0:1f:b7:ac:5b:56:c6:e4:a1:41:b6:d0:b3:44:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:f7:b6:aa:25:e2:9b:8a:36:cd:50:62:03:25:52:7c:
        3a:4e:7b:3b:dc:4f:1b:33:a5:db:07:c9:29:5b:60:d9:
        41:8d:53:84:13:7f:ec:11:65:b8:d6:57:fe:28:1b:c7:
        56:0e:eb:ba:1a:5a:b6:48:27:29:29:a1:6d:82:24:d3:
        89:4f:12:ed:5e:6a:77:2f:d4:50:41:d8:1b:46:77:ae:
        82:08:25:90:c5:eb:9b:3d:02:a0:03:c0:22:e7:d6:ef:
        5a:c3:47:12:92:d5:d6:ab:f5:09:16:ca:ee:a9:80:e7:
        91:08:c0:99:f6:dd:e0:ce:5c:0a:e0:4c:19:42:9b:18:
        0f:4c:6f:03:4a:6f:af:3f:a1:9c:27:52:e0:70:44:e6:
        b2:d1:1c:6c:39:dc:1d:c6:69:c1:c6:64:b5:6f:c4:fd:
        f1:ca:44:fb:61:76:2e:a0:41:71:e7:d5:c4:76:23:9d:
        20:3b:bf:34:04:44:c0:31:10:f4:95:d0:57:4a:3f:ae:
        f3:b9:aa:4b:45:28:2d:dc:84:f9:1c:84:04:b5:62:a5:
        81:90:48:51:15:95:d8:18:6c:1b:b7:04:a0:f1:ae:7b:
        57:f1:4c:c5:67:2b:cc:08:1f:21:21:0e:c5:02:53:27:
        1a:98:f0:ef:88:3b:dc:a8:1a:3b:98:df:70:9c:d2:f7
    Fingerprint (SHA-256):
        00:A4:15:3D:3B:A8:D4:C0:6A:A2:D6:4E:5F:DC:3C:36:96:03:8E:62:45:AA:85:9A:4F:1D:4B:68:12:8B:52:FB
    Fingerprint (SHA1):
        7D:D0:5F:AA:5B:25:7A:1D:0E:9F:0A:C9:4A:43:2B:29:29:4E:4E:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6057: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153357 (0x1dee408d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:29:9c:47:d1:7f:fe:f2:2f:82:64:81:1f:72:2f:69:
                    9c:dd:10:b2:63:53:06:cc:e6:f5:89:ec:58:45:ab:f9:
                    85:ba:39:6b:c7:ca:62:cc:c4:f9:fd:ac:61:3f:a2:93:
                    3c:71:88:69:dc:fa:d4:76:52:96:24:41:99:0c:28:d8:
                    fe:1b:32:e2:b3:0d:63:b0:43:e9:82:69:75:88:6c:1d:
                    f3:4c:2f:27:91:4e:0c:9c:5a:fd:66:df:9b:cd:c0:37:
                    17:be:55:b9:a5:90:bb:56:91:9f:81:f5:4c:6a:e2:89:
                    23:af:c9:14:70:cc:20:b2:f4:3a:8f:4e:88:d9:73:f4:
                    1a:21:53:18:77:bb:b5:7c:43:c9:27:64:b8:62:31:14:
                    fb:ec:81:82:b4:58:99:eb:4b:44:ff:6e:66:c4:78:11:
                    0b:58:e2:de:37:bb:fb:5e:9f:4d:a4:0a:25:c2:27:39:
                    08:d6:a2:93:a7:18:5b:63:e6:74:51:06:f8:88:6b:6c:
                    5b:33:fe:5e:4e:9f:f5:6e:f9:c2:3a:8f:1e:04:78:53:
                    fa:0d:2a:7f:32:46:25:47:d3:b4:c8:10:1a:c0:d1:70:
                    7e:92:6a:b5:c3:fe:b8:e8:b8:ed:d7:b4:8f:0f:d7:83:
                    04:69:8c:4a:3f:d3:f6:6f:cf:05:90:41:92:fd:50:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:ea:0a:b0:8c:1f:a2:a8:6b:35:bf:03:a9:51:92:c4:
        65:d8:04:ff:1f:b6:d0:5a:d3:dc:f5:88:24:cb:a1:e4:
        97:75:7e:a4:8d:82:85:0e:a2:10:db:52:18:22:68:bf:
        69:8c:9e:b8:ba:2c:46:cc:ab:9b:b2:7a:0e:30:6c:ef:
        0e:d0:32:f3:39:b5:12:0d:25:ac:fb:f6:7b:a7:dc:0c:
        a6:b6:b1:a6:fc:3e:27:ca:38:65:83:ac:ed:3d:9e:ab:
        2e:e2:38:e6:e6:12:69:c8:6b:e2:ea:db:64:ea:3f:0d:
        e6:aa:e0:97:80:1e:1c:1f:8c:51:f2:43:66:71:f7:fb:
        8e:82:14:b8:6f:c6:26:a3:11:b3:78:af:86:ca:10:ba:
        e0:21:57:e2:5e:77:13:a6:29:92:59:24:3f:dd:01:87:
        c1:82:09:e1:2f:cb:e8:02:40:b6:02:72:25:ef:49:86:
        d8:14:6b:e7:1f:a4:f4:a9:66:d1:9e:fe:b5:84:f9:74:
        5a:5a:66:f9:59:b2:89:b0:ec:fc:88:71:8f:a2:bf:de:
        0f:86:1d:99:80:2b:bf:d4:5f:43:8e:c3:41:ce:a1:8b:
        76:c8:75:b6:31:3d:b5:78:92:1d:88:97:17:9b:c2:79:
        46:c1:37:60:6f:6a:b3:ef:01:48:45:f3:42:34:1b:31
    Fingerprint (SHA-256):
        57:DE:1E:33:0C:8C:E3:BD:8A:2D:8B:1A:F9:65:AB:8E:7D:51:2B:8F:65:08:E7:13:2C:CD:0E:1D:84:56:11:25
    Fingerprint (SHA1):
        48:39:25:0E:47:29:9C:51:88:36:D5:CB:A7:D7:F4:F2:79:63:3D:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6058: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153358 (0x1dee408e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:34:00 2017
            Not After : Mon May 02 15:34:00 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:aa:ac:e6:fc:cb:0d:86:95:c7:49:a3:df:2f:34:af:
                    73:d3:f8:80:22:27:3a:38:a9:b2:5f:f7:17:84:d8:0e:
                    a0:be:2f:b7:d5:7b:ea:29:1c:8b:0c:c6:53:20:ba:e6:
                    8f:e1:2c:aa:b4:19:47:53:73:c7:68:ae:88:1f:7a:13:
                    da:03:74:35:3a:00:5d:ef:6a:37:1d:ae:42:ef:45:c3:
                    ea:3f:54:d6:3b:ed:f1:17:fd:7d:4f:5f:23:56:76:05:
                    7c:1c:f3:b2:3b:c4:88:4a:07:cd:5e:a9:6d:2c:e8:f8:
                    83:8c:e3:4c:41:9f:b8:be:5a:29:00:c0:6f:fb:ac:58:
                    ff:94:dd:57:54:c8:86:8c:c1:e0:83:c5:ad:c0:1f:ae:
                    59:1f:c6:7b:94:d3:94:fa:71:ff:c6:db:eb:f1:7d:80:
                    8d:e7:fe:17:23:4e:22:63:26:7c:5a:a2:2a:a3:ae:1b:
                    5b:91:95:94:b4:4e:9a:c0:d5:d9:4c:77:23:14:bc:18:
                    d3:11:fe:0e:97:9a:d0:88:90:be:26:e7:32:62:81:e7:
                    13:a0:bf:ad:e6:1a:0d:b6:79:6d:d9:97:26:99:b4:96:
                    42:1c:61:dd:24:f9:01:53:56:29:52:50:2a:9a:db:a1:
                    15:bb:bb:cc:9f:84:b4:b0:20:56:ba:e1:a1:a2:d5:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:3c:7b:8a:39:99:3b:32:29:84:fa:77:26:ed:61:05:
        1b:4a:40:9f:20:c8:ee:83:35:d6:91:b3:ca:d8:83:1c:
        6c:a4:7f:c6:49:18:6d:79:78:24:b0:83:b4:d1:c1:0a:
        2b:d0:d1:49:de:ae:ff:26:28:f4:f3:4f:9c:8a:d7:78:
        07:2e:25:6e:3b:44:a5:21:f8:93:f1:2d:7d:71:1b:bb:
        ef:fe:b1:17:ef:2d:d7:b2:cb:fc:22:e7:b2:7e:64:22:
        71:a6:80:c0:6c:bd:02:11:57:b8:ad:af:07:13:6a:18:
        9c:2c:da:95:29:fb:74:0f:bd:04:08:a3:8f:08:59:f2:
        11:e0:1b:89:c3:c9:80:54:ba:2e:a8:24:98:a8:3f:15:
        96:df:c1:0c:f3:4d:9d:94:7d:a6:d0:dd:ae:05:23:8b:
        d1:fc:ca:19:1e:4c:c0:53:1a:14:43:0d:2f:dc:72:0a:
        e2:f8:3e:3f:cd:ef:d3:71:35:dc:7e:ab:f7:57:bb:59:
        74:c4:06:25:c8:d9:71:12:27:29:24:09:fa:a8:c3:42:
        ad:bb:e1:fe:61:f3:51:6f:67:8e:24:86:f5:5e:79:4b:
        d6:95:61:df:b3:f4:20:31:05:96:58:4a:84:49:99:fc:
        13:c5:c0:ce:93:42:97:53:4c:49:62:ef:dd:d4:93:b4
    Fingerprint (SHA-256):
        B4:52:0F:3D:00:2C:F8:11:FB:01:FF:B4:7B:65:C4:AE:DF:C8:30:30:1A:77:0A:28:37:55:39:70:0C:49:D3:83
    Fingerprint (SHA1):
        9F:F8:EA:FA:43:57:76:DB:35:8E:56:A7:7F:11:83:B4:F5:8D:25:07
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6059: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6060: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153373 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6061: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6062: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6063: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6064: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153374   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6065: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6066: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6067: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6068: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153375   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6069: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6070: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6071: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6072: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153376   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6073: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6074: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6075: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153373 (0x1dee409d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:03 2017
            Not After : Mon May 02 15:34:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:ee:ba:f1:1e:f5:ef:5d:46:6a:2e:fa:9f:e8:4a:2d:
                    79:00:ab:01:b9:71:35:0d:72:88:8a:91:07:9b:30:51:
                    9f:1d:a4:f1:83:db:48:3d:be:71:93:e3:db:de:22:cb:
                    c3:26:5c:58:93:99:01:5f:53:b9:1b:cd:85:74:a9:b2:
                    32:7a:c7:a5:31:4f:7c:7d:a7:64:cb:95:9e:e4:be:44:
                    f7:09:26:aa:7b:23:46:44:a4:38:21:60:7f:d9:de:7e:
                    bd:bf:0d:5d:ed:0f:86:3c:c4:db:5d:13:23:2d:70:f5:
                    10:e8:40:37:ef:69:db:dd:c3:ad:b3:ce:75:0f:5e:ae:
                    3c:71:91:b5:6a:5a:5b:f5:01:5c:e8:a8:a1:ff:2a:ab:
                    ff:ba:6c:1f:f3:39:a9:62:d8:0c:53:9f:a1:a5:ed:f3:
                    6b:74:2c:76:bf:33:18:25:e4:a7:ca:26:1c:4a:98:6e:
                    69:4d:95:39:af:3c:79:67:25:17:b8:61:1c:4a:24:94:
                    89:94:1e:52:fe:ac:41:c7:cc:76:e4:ad:a2:17:c0:af:
                    01:45:29:6e:ab:bc:1e:5b:99:77:3a:05:3b:a8:ba:ac:
                    eb:d5:fd:92:c5:3c:7e:75:8b:0f:ae:53:b5:e9:cc:35:
                    3e:bb:6d:5f:9f:01:07:33:73:67:ee:4f:f7:7a:3b:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:1a:b2:4e:9e:a9:99:91:a1:07:7f:24:a8:a5:82:0e:
        e8:7f:57:fc:5a:59:8c:07:da:ec:00:81:f0:92:70:0b:
        64:91:56:87:58:09:18:34:81:1d:4c:43:ff:b9:11:12:
        79:c0:b8:81:8c:5c:e5:dd:95:d4:df:71:a6:e1:3b:88:
        57:e1:87:d6:1c:44:57:52:9f:74:68:3f:c8:98:aa:c3:
        04:9c:67:f2:1a:a4:36:03:15:ff:15:0d:62:67:35:cc:
        00:93:56:f7:2e:fb:58:3a:1f:a3:d2:a8:74:59:5e:f9:
        cb:1c:8b:1f:6f:8d:a9:7b:b6:d7:e5:75:c5:e4:15:f6:
        3d:bd:1c:b6:fa:c3:c6:23:2f:c5:b7:d1:0a:0b:33:9b:
        a2:5b:e1:bc:48:46:44:b6:1e:af:af:7f:bc:29:01:5c:
        98:0b:0c:44:85:c1:1d:73:c5:3c:6e:2c:ec:88:55:1a:
        61:68:80:49:12:00:06:3e:8c:40:77:61:1f:ea:29:ec:
        b7:0c:74:f0:86:dc:fd:35:7d:45:ba:f6:a3:a5:e4:b5:
        0e:b6:f7:3e:c7:81:8c:64:9f:1f:b0:0b:db:56:17:2d:
        22:97:d1:82:72:68:f8:28:37:ae:bd:e3:86:d3:74:e1:
        1f:70:30:2f:66:27:90:b2:ef:3a:7c:7b:83:0f:6e:98
    Fingerprint (SHA-256):
        54:96:FA:34:C5:BC:C0:F4:9E:EA:32:44:4D:48:B7:CF:47:35:C2:28:87:B5:5D:0C:9E:AD:59:CC:88:DE:5D:9D
    Fingerprint (SHA1):
        A0:CA:C5:C7:02:A3:B7:DF:0F:AC:01:1B:93:3E:70:FB:C6:FA:1B:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6076: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6077: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153374 (0x1dee409e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:03 2017
            Not After : Mon May 02 15:34:03 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:ca:21:0b:08:f7:9e:f9:13:64:de:7d:cb:ee:05:30:
                    40:f8:12:87:b2:88:2f:f6:0f:b0:3b:76:13:d0:a8:da:
                    02:41:00:86:3f:17:96:b2:1d:1d:e3:4a:80:fb:d5:36:
                    68:13:4d:48:35:6c:bd:97:2d:04:b9:e5:d3:fa:2e:a2:
                    2b:2b:81:27:da:c9:61:99:40:65:8c:a5:be:d2:60:b0:
                    ae:51:ad:81:29:8c:c9:4c:80:8b:80:d5:b8:54:6f:b7:
                    bd:2d:22:c5:c5:eb:ea:7f:b3:6b:36:0a:b8:23:4b:09:
                    0f:a4:ba:af:c5:06:39:33:7c:85:80:69:c9:bf:8a:9a:
                    19:19:93:c9:7f:59:81:7c:f8:d2:2f:1e:28:b1:b1:d8:
                    b6:b0:60:b1:8f:95:64:f0:64:a1:b2:11:d1:83:f6:6f:
                    1f:25:5a:09:4d:06:38:0b:16:af:5b:c6:d9:62:3e:6a:
                    6f:c3:47:bf:f8:db:46:22:fd:fd:94:d6:48:8f:76:c4:
                    b0:88:1a:df:91:e5:ff:36:7a:3a:86:6f:5a:5a:65:e8:
                    12:06:95:3d:e9:07:8c:d2:0b:52:4e:5d:39:32:6d:b1:
                    fd:7a:0f:fe:2f:f0:d3:03:ce:38:1b:43:33:56:8f:0c:
                    f6:c0:bb:e5:3e:fa:0e:ad:81:a4:7c:58:06:3f:e3:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:06:63:19:fe:1c:5c:d2:f3:60:84:1a:df:ee:82:aa:
        b8:67:dd:d3:61:fd:94:5a:ee:f3:2b:3a:64:7b:b7:f7:
        85:39:87:17:96:fd:ce:29:e1:55:8c:27:93:fa:07:87:
        cd:23:5b:ca:dc:13:4c:fd:4d:50:21:c2:2c:74:32:e0:
        20:81:d8:cd:63:fc:6d:20:7f:18:02:ac:90:90:28:50:
        25:aa:86:21:69:a1:0b:c1:9e:02:91:b3:fe:5e:29:04:
        4d:01:48:49:50:6b:a8:49:1e:f8:3e:03:68:c0:7b:4a:
        29:0f:ab:78:9a:c1:12:8c:d4:ed:ef:1b:c3:15:1c:72:
        14:cd:e3:b6:e0:a3:66:af:b2:57:06:d7:5b:6e:4f:57:
        19:ee:49:f1:9d:4b:a1:9c:34:ee:be:ad:53:b3:ad:c9:
        cf:ba:78:fb:01:a7:58:aa:3e:6d:b2:ac:98:8a:5a:a8:
        82:5d:32:84:af:d6:3e:c6:91:34:15:7a:9a:28:2c:84:
        54:2a:1f:dd:7d:a3:60:5f:ce:56:e1:5d:fd:3d:55:c6:
        49:3c:cc:97:1e:b3:1f:6a:78:38:8f:0e:f0:b0:db:4d:
        d8:76:7d:cd:df:4d:6d:47:92:91:49:62:63:dd:c1:5b:
        6d:de:44:47:03:65:3e:27:dc:98:7a:95:ae:94:5a:25
    Fingerprint (SHA-256):
        D7:5E:28:0C:70:90:65:B3:AC:7A:32:5A:66:6A:E6:52:01:C8:4A:14:C5:7F:C3:15:28:CC:B3:83:1E:0F:2A:8F
    Fingerprint (SHA1):
        A8:F1:EF:C2:4A:1D:B6:5C:E9:CF:59:AA:99:A8:D4:7D:3A:55:46:65
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6078: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6079: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153375 (0x1dee409f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:03 2017
            Not After : Mon May 02 15:34:03 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:8f:53:cd:ce:4f:a8:f2:fc:d7:71:10:30:a4:ca:0c:
                    97:8a:99:77:2c:48:a7:63:12:0a:b4:bf:6b:c3:04:0d:
                    8e:f4:a2:aa:ff:83:ca:f2:c8:c0:7e:fc:80:2e:31:c7:
                    89:01:7d:b8:bf:ae:c7:ae:09:ef:00:0c:e9:0c:2e:ca:
                    2b:95:ad:a2:27:b4:d6:9b:bd:ae:7c:f3:02:4f:52:69:
                    67:a2:20:a9:bd:6f:f5:b6:3b:32:b9:2a:ca:0e:6d:15:
                    c9:9d:1a:d2:ee:c0:bc:43:5b:f1:eb:c5:e3:79:bd:b8:
                    66:8f:88:26:c5:51:3a:9c:92:74:2c:fd:41:61:d7:5a:
                    70:57:18:61:ac:c2:89:13:4f:d2:75:75:e1:e5:43:a4:
                    03:2c:c9:b6:ab:65:b9:ad:3a:f0:16:c1:f4:c8:af:43:
                    7c:b6:51:d6:0e:a2:09:e3:39:1b:98:64:da:d2:5c:e4:
                    1a:db:6e:84:12:72:50:e2:58:6d:51:ae:cc:10:6d:46:
                    7e:ad:f5:1e:2c:b0:b7:97:3c:75:9a:5d:aa:17:16:46:
                    fa:8d:2e:08:85:25:9b:d6:6a:9d:5b:dd:91:db:a7:f0:
                    0f:63:ba:d9:68:67:58:1a:b6:fe:7a:6f:b4:62:f0:e9:
                    6c:de:3f:fb:55:df:06:69:ff:cf:40:fc:56:3f:d5:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:01:22:bb:ab:69:73:dd:f1:86:56:c8:cf:05:59:4e:
        dd:3e:1c:d4:3b:a5:4f:a9:17:bf:ee:33:4b:78:31:14:
        2d:c5:da:46:c2:42:8d:47:a6:58:55:f8:ce:54:32:85:
        f1:e4:e6:d3:32:09:54:48:8f:75:38:b4:61:c0:9a:bc:
        9f:a7:f4:49:41:96:b4:63:a8:80:aa:20:54:ad:80:b9:
        a4:d4:a6:f7:7e:1b:b2:51:06:76:42:15:40:c4:ac:48:
        fd:44:c7:75:71:b2:85:4b:43:30:5b:d2:7b:ad:1a:9c:
        07:3b:45:c1:d7:21:2a:59:47:7b:24:cf:a6:98:d8:74:
        ab:c6:ab:3d:44:dd:41:1e:d4:95:18:ad:a4:84:46:77:
        7b:84:e2:c7:15:c3:4d:c0:f4:a7:6e:5d:88:03:64:99:
        00:92:af:7b:a3:ea:86:77:cc:f2:0e:44:ce:2d:9a:3d:
        9f:05:8e:6c:b2:02:9d:70:8d:59:b6:e5:6a:5f:fe:8b:
        08:3f:ac:d7:05:2c:bf:d5:7a:44:5a:5a:33:d3:cb:65:
        16:18:54:fd:11:e8:35:90:9c:d7:5d:e7:99:86:5f:18:
        55:7c:f1:37:ea:49:ec:99:73:7d:71:6d:61:40:fe:c8:
        47:b3:89:4b:90:a7:87:9d:ed:3a:1f:7a:20:b2:b5:9d
    Fingerprint (SHA-256):
        71:96:B6:BE:9A:70:80:91:A1:BA:F9:68:29:C9:6F:EE:0B:5D:20:3F:D5:EB:A3:D4:36:8D:0C:E4:78:B7:58:87
    Fingerprint (SHA1):
        57:CF:DD:5A:54:3B:BD:CD:53:C2:F0:AC:95:17:EE:2C:24:4D:D2:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6080: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6081: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6082: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6083: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6084: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153373 (0x1dee409d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:03 2017
            Not After : Mon May 02 15:34:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:ee:ba:f1:1e:f5:ef:5d:46:6a:2e:fa:9f:e8:4a:2d:
                    79:00:ab:01:b9:71:35:0d:72:88:8a:91:07:9b:30:51:
                    9f:1d:a4:f1:83:db:48:3d:be:71:93:e3:db:de:22:cb:
                    c3:26:5c:58:93:99:01:5f:53:b9:1b:cd:85:74:a9:b2:
                    32:7a:c7:a5:31:4f:7c:7d:a7:64:cb:95:9e:e4:be:44:
                    f7:09:26:aa:7b:23:46:44:a4:38:21:60:7f:d9:de:7e:
                    bd:bf:0d:5d:ed:0f:86:3c:c4:db:5d:13:23:2d:70:f5:
                    10:e8:40:37:ef:69:db:dd:c3:ad:b3:ce:75:0f:5e:ae:
                    3c:71:91:b5:6a:5a:5b:f5:01:5c:e8:a8:a1:ff:2a:ab:
                    ff:ba:6c:1f:f3:39:a9:62:d8:0c:53:9f:a1:a5:ed:f3:
                    6b:74:2c:76:bf:33:18:25:e4:a7:ca:26:1c:4a:98:6e:
                    69:4d:95:39:af:3c:79:67:25:17:b8:61:1c:4a:24:94:
                    89:94:1e:52:fe:ac:41:c7:cc:76:e4:ad:a2:17:c0:af:
                    01:45:29:6e:ab:bc:1e:5b:99:77:3a:05:3b:a8:ba:ac:
                    eb:d5:fd:92:c5:3c:7e:75:8b:0f:ae:53:b5:e9:cc:35:
                    3e:bb:6d:5f:9f:01:07:33:73:67:ee:4f:f7:7a:3b:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:1a:b2:4e:9e:a9:99:91:a1:07:7f:24:a8:a5:82:0e:
        e8:7f:57:fc:5a:59:8c:07:da:ec:00:81:f0:92:70:0b:
        64:91:56:87:58:09:18:34:81:1d:4c:43:ff:b9:11:12:
        79:c0:b8:81:8c:5c:e5:dd:95:d4:df:71:a6:e1:3b:88:
        57:e1:87:d6:1c:44:57:52:9f:74:68:3f:c8:98:aa:c3:
        04:9c:67:f2:1a:a4:36:03:15:ff:15:0d:62:67:35:cc:
        00:93:56:f7:2e:fb:58:3a:1f:a3:d2:a8:74:59:5e:f9:
        cb:1c:8b:1f:6f:8d:a9:7b:b6:d7:e5:75:c5:e4:15:f6:
        3d:bd:1c:b6:fa:c3:c6:23:2f:c5:b7:d1:0a:0b:33:9b:
        a2:5b:e1:bc:48:46:44:b6:1e:af:af:7f:bc:29:01:5c:
        98:0b:0c:44:85:c1:1d:73:c5:3c:6e:2c:ec:88:55:1a:
        61:68:80:49:12:00:06:3e:8c:40:77:61:1f:ea:29:ec:
        b7:0c:74:f0:86:dc:fd:35:7d:45:ba:f6:a3:a5:e4:b5:
        0e:b6:f7:3e:c7:81:8c:64:9f:1f:b0:0b:db:56:17:2d:
        22:97:d1:82:72:68:f8:28:37:ae:bd:e3:86:d3:74:e1:
        1f:70:30:2f:66:27:90:b2:ef:3a:7c:7b:83:0f:6e:98
    Fingerprint (SHA-256):
        54:96:FA:34:C5:BC:C0:F4:9E:EA:32:44:4D:48:B7:CF:47:35:C2:28:87:B5:5D:0C:9E:AD:59:CC:88:DE:5D:9D
    Fingerprint (SHA1):
        A0:CA:C5:C7:02:A3:B7:DF:0F:AC:01:1B:93:3E:70:FB:C6:FA:1B:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6085: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6086: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153374 (0x1dee409e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:03 2017
            Not After : Mon May 02 15:34:03 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:ca:21:0b:08:f7:9e:f9:13:64:de:7d:cb:ee:05:30:
                    40:f8:12:87:b2:88:2f:f6:0f:b0:3b:76:13:d0:a8:da:
                    02:41:00:86:3f:17:96:b2:1d:1d:e3:4a:80:fb:d5:36:
                    68:13:4d:48:35:6c:bd:97:2d:04:b9:e5:d3:fa:2e:a2:
                    2b:2b:81:27:da:c9:61:99:40:65:8c:a5:be:d2:60:b0:
                    ae:51:ad:81:29:8c:c9:4c:80:8b:80:d5:b8:54:6f:b7:
                    bd:2d:22:c5:c5:eb:ea:7f:b3:6b:36:0a:b8:23:4b:09:
                    0f:a4:ba:af:c5:06:39:33:7c:85:80:69:c9:bf:8a:9a:
                    19:19:93:c9:7f:59:81:7c:f8:d2:2f:1e:28:b1:b1:d8:
                    b6:b0:60:b1:8f:95:64:f0:64:a1:b2:11:d1:83:f6:6f:
                    1f:25:5a:09:4d:06:38:0b:16:af:5b:c6:d9:62:3e:6a:
                    6f:c3:47:bf:f8:db:46:22:fd:fd:94:d6:48:8f:76:c4:
                    b0:88:1a:df:91:e5:ff:36:7a:3a:86:6f:5a:5a:65:e8:
                    12:06:95:3d:e9:07:8c:d2:0b:52:4e:5d:39:32:6d:b1:
                    fd:7a:0f:fe:2f:f0:d3:03:ce:38:1b:43:33:56:8f:0c:
                    f6:c0:bb:e5:3e:fa:0e:ad:81:a4:7c:58:06:3f:e3:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:06:63:19:fe:1c:5c:d2:f3:60:84:1a:df:ee:82:aa:
        b8:67:dd:d3:61:fd:94:5a:ee:f3:2b:3a:64:7b:b7:f7:
        85:39:87:17:96:fd:ce:29:e1:55:8c:27:93:fa:07:87:
        cd:23:5b:ca:dc:13:4c:fd:4d:50:21:c2:2c:74:32:e0:
        20:81:d8:cd:63:fc:6d:20:7f:18:02:ac:90:90:28:50:
        25:aa:86:21:69:a1:0b:c1:9e:02:91:b3:fe:5e:29:04:
        4d:01:48:49:50:6b:a8:49:1e:f8:3e:03:68:c0:7b:4a:
        29:0f:ab:78:9a:c1:12:8c:d4:ed:ef:1b:c3:15:1c:72:
        14:cd:e3:b6:e0:a3:66:af:b2:57:06:d7:5b:6e:4f:57:
        19:ee:49:f1:9d:4b:a1:9c:34:ee:be:ad:53:b3:ad:c9:
        cf:ba:78:fb:01:a7:58:aa:3e:6d:b2:ac:98:8a:5a:a8:
        82:5d:32:84:af:d6:3e:c6:91:34:15:7a:9a:28:2c:84:
        54:2a:1f:dd:7d:a3:60:5f:ce:56:e1:5d:fd:3d:55:c6:
        49:3c:cc:97:1e:b3:1f:6a:78:38:8f:0e:f0:b0:db:4d:
        d8:76:7d:cd:df:4d:6d:47:92:91:49:62:63:dd:c1:5b:
        6d:de:44:47:03:65:3e:27:dc:98:7a:95:ae:94:5a:25
    Fingerprint (SHA-256):
        D7:5E:28:0C:70:90:65:B3:AC:7A:32:5A:66:6A:E6:52:01:C8:4A:14:C5:7F:C3:15:28:CC:B3:83:1E:0F:2A:8F
    Fingerprint (SHA1):
        A8:F1:EF:C2:4A:1D:B6:5C:E9:CF:59:AA:99:A8:D4:7D:3A:55:46:65
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6087: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6088: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153375 (0x1dee409f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:03 2017
            Not After : Mon May 02 15:34:03 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:8f:53:cd:ce:4f:a8:f2:fc:d7:71:10:30:a4:ca:0c:
                    97:8a:99:77:2c:48:a7:63:12:0a:b4:bf:6b:c3:04:0d:
                    8e:f4:a2:aa:ff:83:ca:f2:c8:c0:7e:fc:80:2e:31:c7:
                    89:01:7d:b8:bf:ae:c7:ae:09:ef:00:0c:e9:0c:2e:ca:
                    2b:95:ad:a2:27:b4:d6:9b:bd:ae:7c:f3:02:4f:52:69:
                    67:a2:20:a9:bd:6f:f5:b6:3b:32:b9:2a:ca:0e:6d:15:
                    c9:9d:1a:d2:ee:c0:bc:43:5b:f1:eb:c5:e3:79:bd:b8:
                    66:8f:88:26:c5:51:3a:9c:92:74:2c:fd:41:61:d7:5a:
                    70:57:18:61:ac:c2:89:13:4f:d2:75:75:e1:e5:43:a4:
                    03:2c:c9:b6:ab:65:b9:ad:3a:f0:16:c1:f4:c8:af:43:
                    7c:b6:51:d6:0e:a2:09:e3:39:1b:98:64:da:d2:5c:e4:
                    1a:db:6e:84:12:72:50:e2:58:6d:51:ae:cc:10:6d:46:
                    7e:ad:f5:1e:2c:b0:b7:97:3c:75:9a:5d:aa:17:16:46:
                    fa:8d:2e:08:85:25:9b:d6:6a:9d:5b:dd:91:db:a7:f0:
                    0f:63:ba:d9:68:67:58:1a:b6:fe:7a:6f:b4:62:f0:e9:
                    6c:de:3f:fb:55:df:06:69:ff:cf:40:fc:56:3f:d5:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:01:22:bb:ab:69:73:dd:f1:86:56:c8:cf:05:59:4e:
        dd:3e:1c:d4:3b:a5:4f:a9:17:bf:ee:33:4b:78:31:14:
        2d:c5:da:46:c2:42:8d:47:a6:58:55:f8:ce:54:32:85:
        f1:e4:e6:d3:32:09:54:48:8f:75:38:b4:61:c0:9a:bc:
        9f:a7:f4:49:41:96:b4:63:a8:80:aa:20:54:ad:80:b9:
        a4:d4:a6:f7:7e:1b:b2:51:06:76:42:15:40:c4:ac:48:
        fd:44:c7:75:71:b2:85:4b:43:30:5b:d2:7b:ad:1a:9c:
        07:3b:45:c1:d7:21:2a:59:47:7b:24:cf:a6:98:d8:74:
        ab:c6:ab:3d:44:dd:41:1e:d4:95:18:ad:a4:84:46:77:
        7b:84:e2:c7:15:c3:4d:c0:f4:a7:6e:5d:88:03:64:99:
        00:92:af:7b:a3:ea:86:77:cc:f2:0e:44:ce:2d:9a:3d:
        9f:05:8e:6c:b2:02:9d:70:8d:59:b6:e5:6a:5f:fe:8b:
        08:3f:ac:d7:05:2c:bf:d5:7a:44:5a:5a:33:d3:cb:65:
        16:18:54:fd:11:e8:35:90:9c:d7:5d:e7:99:86:5f:18:
        55:7c:f1:37:ea:49:ec:99:73:7d:71:6d:61:40:fe:c8:
        47:b3:89:4b:90:a7:87:9d:ed:3a:1f:7a:20:b2:b5:9d
    Fingerprint (SHA-256):
        71:96:B6:BE:9A:70:80:91:A1:BA:F9:68:29:C9:6F:EE:0B:5D:20:3F:D5:EB:A3:D4:36:8D:0C:E4:78:B7:58:87
    Fingerprint (SHA1):
        57:CF:DD:5A:54:3B:BD:CD:53:C2:F0:AC:95:17:EE:2C:24:4D:D2:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6089: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6090: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6091: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153377 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6092: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6093: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6094: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6095: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153378   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6096: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6097: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6098: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6099: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153379   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6100: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6101: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6102: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6103: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153380   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6104: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6105: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6106: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6107: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153381   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6108: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6109: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6110: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153377 (0x1dee40a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:04 2017
            Not After : Mon May 02 15:34:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:4b:4a:f5:fb:f9:b6:be:f3:21:31:9d:d3:34:49:30:
                    a6:8e:7a:ce:ce:82:8d:9a:83:c6:e7:69:93:38:6e:08:
                    0f:43:2c:b3:55:e0:9e:31:84:fc:7a:b9:94:63:aa:db:
                    d2:65:91:32:2c:9c:c5:0f:53:42:bb:48:ac:22:34:d1:
                    c6:db:77:4b:b8:75:9f:81:4c:58:ca:eb:09:ad:62:0f:
                    8d:a9:47:4f:35:ca:72:94:43:97:60:88:50:a3:cc:e8:
                    00:1e:4f:62:f5:20:d1:06:54:03:48:e9:07:49:ef:fd:
                    cc:2e:1a:b6:46:c3:fe:c9:11:ad:de:a3:e5:5a:6e:2b:
                    14:69:6d:99:52:6c:07:76:05:24:66:f0:f4:55:d6:9c:
                    9c:20:fe:f8:14:53:68:01:b8:10:b6:af:16:1e:ba:9d:
                    af:53:dc:10:ea:3a:fe:00:2e:bf:07:d1:a0:29:76:bb:
                    09:b8:2b:5f:cd:cf:6b:a2:b2:82:a0:22:fb:76:2c:8a:
                    95:c5:a2:56:50:f1:7d:aa:dd:70:84:c4:95:6c:19:95:
                    9b:3d:9b:7d:2a:6c:18:d3:69:41:28:b0:51:d6:12:5d:
                    06:be:8d:53:a4:44:c9:6c:15:b8:e8:2b:a3:1a:bb:b7:
                    19:a4:83:8a:2b:ae:21:aa:b8:1d:f3:05:e9:b6:42:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:a6:c5:1c:3c:90:98:c5:a8:b9:c4:d8:82:f3:9f:d2:
        10:e3:36:6d:cc:0f:e0:95:ff:35:36:85:81:81:7c:78:
        e0:72:d2:9c:c1:36:30:58:2e:a8:bb:b0:52:1d:eb:d8:
        40:21:4a:02:54:14:a1:e2:7e:b4:de:3d:41:5e:78:73:
        87:e7:8c:26:d0:4a:8f:f7:9d:4c:04:a2:6c:8c:37:a8:
        97:e1:9b:e1:7b:86:0e:09:5d:dd:ba:ef:4b:d9:f1:00:
        dd:4b:0d:bc:28:d8:06:d8:26:50:37:04:fd:1c:cf:8b:
        0b:71:c1:ba:a8:cf:b6:84:a9:ca:a4:47:7d:44:8b:66:
        27:40:45:4e:43:5a:fb:33:73:a1:71:6f:bf:7d:40:28:
        9d:b4:2f:f8:6f:53:0c:40:02:ab:49:fb:c0:28:54:75:
        59:b9:d8:f0:a0:40:4a:38:10:db:55:6a:3f:a9:f2:ed:
        d9:06:87:55:ba:13:d5:78:35:db:bc:9e:5b:56:3c:23:
        d0:b0:f0:89:3a:ae:69:43:af:7f:a9:0b:86:64:f4:50:
        b0:7a:6d:af:91:65:aa:6f:f1:bf:8f:10:79:34:76:62:
        43:5d:20:f7:55:91:17:58:a5:9a:7e:57:b0:b4:a7:06:
        3e:28:a2:d1:5c:48:d1:09:c0:96:93:dc:00:12:5c:3c
    Fingerprint (SHA-256):
        66:B9:35:98:2A:6E:BF:AC:E8:17:45:5A:77:46:AF:AA:8C:43:83:A5:91:B8:F1:6C:81:F2:18:E3:BC:39:4D:24
    Fingerprint (SHA1):
        BE:3A:3E:C9:3E:D3:D8:EE:8B:D2:FF:06:17:78:68:94:67:BC:A6:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6111: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6112: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153378 (0x1dee40a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:04 2017
            Not After : Mon May 02 15:34:04 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:b4:a6:81:db:23:a0:11:ac:86:1b:28:a7:c9:38:55:
                    f9:c3:87:6a:07:ca:7f:13:1a:de:f6:1d:20:c0:01:08:
                    1a:92:2c:80:35:95:1b:33:ec:54:59:df:15:43:ab:25:
                    8d:88:f2:3a:37:12:f7:8e:0f:ff:13:0c:83:3e:57:d8:
                    93:56:1f:84:6e:ba:4a:d8:67:15:cf:a4:05:a8:88:76:
                    ac:6b:89:86:b8:e8:d9:5c:82:f1:a4:7a:2a:5a:28:cf:
                    45:39:57:c4:46:cf:65:35:6b:5b:8f:34:7a:db:f1:68:
                    4e:45:06:5b:5b:cd:c6:fd:8a:d7:3c:e6:2e:c1:ba:01:
                    d9:86:6d:a8:53:14:c4:12:49:3a:d2:88:99:f0:22:0d:
                    49:b5:ac:30:67:c3:cb:4a:9b:da:44:0e:d0:bc:d6:97:
                    4a:d5:9b:df:69:ad:56:2d:c0:d8:bc:4f:4f:fc:61:43:
                    e0:e2:13:e1:f1:4e:08:e7:42:eb:45:c2:37:7e:ff:0a:
                    50:a0:ab:e0:4d:e3:33:32:76:2c:ab:64:e1:fd:09:13:
                    40:12:48:29:f8:4d:b8:da:d1:58:f6:5a:e3:03:e3:73:
                    fc:5d:7e:3e:15:ed:33:d1:e2:b0:c7:51:a3:c0:db:d9:
                    0f:df:31:29:ff:26:d4:d0:77:bf:f1:d2:7b:0a:01:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:a3:4a:92:50:a4:14:19:33:2a:b7:3b:b0:e3:b8:
        03:61:6c:0c:67:0e:a1:5b:37:10:80:16:ce:2a:7c:52:
        c2:23:4d:32:58:49:9a:cb:91:09:06:e3:66:89:c3:aa:
        49:a9:83:ea:dd:25:88:8c:ce:99:86:74:28:98:df:4a:
        9f:2a:3b:4b:b9:4a:36:c8:e3:92:96:09:e2:47:4b:e8:
        94:a8:09:35:2a:d6:a3:50:d4:53:9d:74:06:8b:76:23:
        34:87:7d:c1:d6:ce:4b:2f:ac:cb:10:f7:77:70:4a:23:
        e6:80:9d:8e:f2:62:93:e3:06:df:7b:ce:c2:98:84:92:
        27:5f:1a:ad:8f:d7:43:c8:15:98:15:e0:96:b8:3b:f2:
        2b:8a:c4:1d:c0:31:c2:3d:91:de:fe:df:cc:0a:3c:89:
        87:f5:96:96:dd:f5:96:84:b6:7c:0a:18:28:7b:fa:7b:
        49:c4:45:e8:77:96:15:42:24:be:95:38:90:87:75:16:
        cf:0d:ee:eb:06:06:6f:ca:de:54:27:30:e6:e6:85:62:
        e2:69:9c:69:b5:d0:d8:08:41:c7:ce:e2:71:66:e9:4b:
        fd:ca:e6:9a:2c:fa:21:1b:9d:37:be:cc:9b:aa:54:5a:
        7f:76:e3:1a:c2:e9:29:91:14:fc:a9:78:6d:fd:b2:5e
    Fingerprint (SHA-256):
        A7:56:AB:40:90:E5:2F:0A:48:71:68:38:46:33:E5:1B:10:0C:6B:B5:D9:6C:D7:15:C2:9A:CA:3B:BC:D2:8B:3B
    Fingerprint (SHA1):
        66:F1:2D:90:AE:9E:E7:5B:11:FC:80:71:28:BA:13:9D:E5:13:E5:32
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6113: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6114: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153379 (0x1dee40a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:05 2017
            Not After : Mon May 02 15:34:05 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:ba:39:4f:1e:4b:49:cc:06:ad:1f:e4:aa:84:be:ab:
                    06:9a:fd:99:b3:ab:27:50:73:4a:4d:05:e5:55:6f:37:
                    c1:d0:8e:51:4d:b7:75:11:6c:77:4e:8a:78:84:8b:19:
                    10:ba:87:5c:62:03:45:58:82:69:c0:8c:7b:cd:b4:8f:
                    3d:9e:a2:06:d9:43:a8:c2:b9:ac:32:c3:0b:28:5c:74:
                    ea:c5:9e:59:c7:09:c5:50:1f:f4:6b:5e:28:3b:8b:ce:
                    0d:9d:77:f8:1f:ea:69:2b:0a:f7:66:14:21:88:d1:9b:
                    bb:7b:f3:ae:db:ec:6e:a9:53:2e:98:2d:64:b1:1b:3c:
                    3b:29:06:c8:64:04:c1:31:d5:8b:f0:d5:b1:ba:c9:76:
                    e2:55:f5:33:96:eb:89:2f:47:5d:22:21:28:79:a9:d2:
                    52:3f:88:5f:bc:14:b8:9c:04:a8:0d:ce:23:59:b6:00:
                    a3:8d:a9:03:a0:7e:e3:83:3c:2c:b0:34:cb:c6:2e:97:
                    9b:6c:21:70:52:f9:bb:86:80:e7:96:a7:1d:58:10:a0:
                    7b:8b:c3:22:6e:29:91:52:ce:1e:99:ef:db:c6:9c:d0:
                    b0:2d:66:2e:a2:10:62:83:67:a8:22:cd:ff:eb:6a:61:
                    53:19:b1:4e:67:69:a7:e0:87:dc:ba:cb:ca:64:9c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0e:76:6e:92:ae:e5:67:1a:86:c9:12:82:8d:2b:e6:
        51:4a:a9:a6:a6:b0:53:74:d8:f4:63:7b:d4:f0:ed:a7:
        6f:24:26:d4:93:cf:17:e6:98:be:d4:a8:13:fb:33:4d:
        84:69:e6:e5:28:32:31:36:e4:02:2c:fa:ac:5d:3a:5a:
        4c:cd:59:7f:a5:30:4e:1c:cb:88:59:10:84:71:7a:d0:
        98:66:8d:5c:0a:4c:db:0f:2f:3e:e2:6e:47:98:39:ca:
        e8:6a:09:af:88:7c:27:8b:07:a2:9c:ec:e1:fb:77:09:
        9f:cb:5a:fe:4e:20:e4:cf:88:78:91:c6:45:2d:ba:db:
        81:7c:88:07:20:ce:52:50:2c:02:56:36:24:61:c0:53:
        43:ae:78:86:04:39:97:f5:6c:de:31:28:16:88:15:71:
        d8:3d:7d:0a:0f:57:87:56:de:66:ed:94:27:be:7d:6b:
        30:16:3d:ac:43:58:f6:0f:94:a8:02:36:a6:8a:b8:b9:
        8b:38:3a:a0:fd:d4:a2:11:92:b4:c0:88:5e:2f:fc:b5:
        05:90:d3:81:51:89:11:57:6e:73:2b:b2:91:24:c9:8b:
        70:78:73:5d:05:72:dd:b3:90:5b:5e:b7:38:5b:6c:ef:
        16:9e:a2:ad:e7:ae:e6:ca:65:4f:26:f1:0a:6a:8a:ef
    Fingerprint (SHA-256):
        EC:CF:2B:A9:F8:51:01:2E:3D:09:C6:CD:5A:B1:C5:09:25:38:89:25:67:02:B6:5A:21:C6:9C:68:5D:92:1B:78
    Fingerprint (SHA1):
        BD:FD:C5:F9:B2:29:CE:29:E6:47:12:C9:98:35:4E:2D:12:39:69:F8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6115: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6116: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6117: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6118: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6119: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153377 (0x1dee40a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:04 2017
            Not After : Mon May 02 15:34:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:4b:4a:f5:fb:f9:b6:be:f3:21:31:9d:d3:34:49:30:
                    a6:8e:7a:ce:ce:82:8d:9a:83:c6:e7:69:93:38:6e:08:
                    0f:43:2c:b3:55:e0:9e:31:84:fc:7a:b9:94:63:aa:db:
                    d2:65:91:32:2c:9c:c5:0f:53:42:bb:48:ac:22:34:d1:
                    c6:db:77:4b:b8:75:9f:81:4c:58:ca:eb:09:ad:62:0f:
                    8d:a9:47:4f:35:ca:72:94:43:97:60:88:50:a3:cc:e8:
                    00:1e:4f:62:f5:20:d1:06:54:03:48:e9:07:49:ef:fd:
                    cc:2e:1a:b6:46:c3:fe:c9:11:ad:de:a3:e5:5a:6e:2b:
                    14:69:6d:99:52:6c:07:76:05:24:66:f0:f4:55:d6:9c:
                    9c:20:fe:f8:14:53:68:01:b8:10:b6:af:16:1e:ba:9d:
                    af:53:dc:10:ea:3a:fe:00:2e:bf:07:d1:a0:29:76:bb:
                    09:b8:2b:5f:cd:cf:6b:a2:b2:82:a0:22:fb:76:2c:8a:
                    95:c5:a2:56:50:f1:7d:aa:dd:70:84:c4:95:6c:19:95:
                    9b:3d:9b:7d:2a:6c:18:d3:69:41:28:b0:51:d6:12:5d:
                    06:be:8d:53:a4:44:c9:6c:15:b8:e8:2b:a3:1a:bb:b7:
                    19:a4:83:8a:2b:ae:21:aa:b8:1d:f3:05:e9:b6:42:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:a6:c5:1c:3c:90:98:c5:a8:b9:c4:d8:82:f3:9f:d2:
        10:e3:36:6d:cc:0f:e0:95:ff:35:36:85:81:81:7c:78:
        e0:72:d2:9c:c1:36:30:58:2e:a8:bb:b0:52:1d:eb:d8:
        40:21:4a:02:54:14:a1:e2:7e:b4:de:3d:41:5e:78:73:
        87:e7:8c:26:d0:4a:8f:f7:9d:4c:04:a2:6c:8c:37:a8:
        97:e1:9b:e1:7b:86:0e:09:5d:dd:ba:ef:4b:d9:f1:00:
        dd:4b:0d:bc:28:d8:06:d8:26:50:37:04:fd:1c:cf:8b:
        0b:71:c1:ba:a8:cf:b6:84:a9:ca:a4:47:7d:44:8b:66:
        27:40:45:4e:43:5a:fb:33:73:a1:71:6f:bf:7d:40:28:
        9d:b4:2f:f8:6f:53:0c:40:02:ab:49:fb:c0:28:54:75:
        59:b9:d8:f0:a0:40:4a:38:10:db:55:6a:3f:a9:f2:ed:
        d9:06:87:55:ba:13:d5:78:35:db:bc:9e:5b:56:3c:23:
        d0:b0:f0:89:3a:ae:69:43:af:7f:a9:0b:86:64:f4:50:
        b0:7a:6d:af:91:65:aa:6f:f1:bf:8f:10:79:34:76:62:
        43:5d:20:f7:55:91:17:58:a5:9a:7e:57:b0:b4:a7:06:
        3e:28:a2:d1:5c:48:d1:09:c0:96:93:dc:00:12:5c:3c
    Fingerprint (SHA-256):
        66:B9:35:98:2A:6E:BF:AC:E8:17:45:5A:77:46:AF:AA:8C:43:83:A5:91:B8:F1:6C:81:F2:18:E3:BC:39:4D:24
    Fingerprint (SHA1):
        BE:3A:3E:C9:3E:D3:D8:EE:8B:D2:FF:06:17:78:68:94:67:BC:A6:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6120: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6121: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153378 (0x1dee40a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:04 2017
            Not After : Mon May 02 15:34:04 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:b4:a6:81:db:23:a0:11:ac:86:1b:28:a7:c9:38:55:
                    f9:c3:87:6a:07:ca:7f:13:1a:de:f6:1d:20:c0:01:08:
                    1a:92:2c:80:35:95:1b:33:ec:54:59:df:15:43:ab:25:
                    8d:88:f2:3a:37:12:f7:8e:0f:ff:13:0c:83:3e:57:d8:
                    93:56:1f:84:6e:ba:4a:d8:67:15:cf:a4:05:a8:88:76:
                    ac:6b:89:86:b8:e8:d9:5c:82:f1:a4:7a:2a:5a:28:cf:
                    45:39:57:c4:46:cf:65:35:6b:5b:8f:34:7a:db:f1:68:
                    4e:45:06:5b:5b:cd:c6:fd:8a:d7:3c:e6:2e:c1:ba:01:
                    d9:86:6d:a8:53:14:c4:12:49:3a:d2:88:99:f0:22:0d:
                    49:b5:ac:30:67:c3:cb:4a:9b:da:44:0e:d0:bc:d6:97:
                    4a:d5:9b:df:69:ad:56:2d:c0:d8:bc:4f:4f:fc:61:43:
                    e0:e2:13:e1:f1:4e:08:e7:42:eb:45:c2:37:7e:ff:0a:
                    50:a0:ab:e0:4d:e3:33:32:76:2c:ab:64:e1:fd:09:13:
                    40:12:48:29:f8:4d:b8:da:d1:58:f6:5a:e3:03:e3:73:
                    fc:5d:7e:3e:15:ed:33:d1:e2:b0:c7:51:a3:c0:db:d9:
                    0f:df:31:29:ff:26:d4:d0:77:bf:f1:d2:7b:0a:01:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:a3:4a:92:50:a4:14:19:33:2a:b7:3b:b0:e3:b8:
        03:61:6c:0c:67:0e:a1:5b:37:10:80:16:ce:2a:7c:52:
        c2:23:4d:32:58:49:9a:cb:91:09:06:e3:66:89:c3:aa:
        49:a9:83:ea:dd:25:88:8c:ce:99:86:74:28:98:df:4a:
        9f:2a:3b:4b:b9:4a:36:c8:e3:92:96:09:e2:47:4b:e8:
        94:a8:09:35:2a:d6:a3:50:d4:53:9d:74:06:8b:76:23:
        34:87:7d:c1:d6:ce:4b:2f:ac:cb:10:f7:77:70:4a:23:
        e6:80:9d:8e:f2:62:93:e3:06:df:7b:ce:c2:98:84:92:
        27:5f:1a:ad:8f:d7:43:c8:15:98:15:e0:96:b8:3b:f2:
        2b:8a:c4:1d:c0:31:c2:3d:91:de:fe:df:cc:0a:3c:89:
        87:f5:96:96:dd:f5:96:84:b6:7c:0a:18:28:7b:fa:7b:
        49:c4:45:e8:77:96:15:42:24:be:95:38:90:87:75:16:
        cf:0d:ee:eb:06:06:6f:ca:de:54:27:30:e6:e6:85:62:
        e2:69:9c:69:b5:d0:d8:08:41:c7:ce:e2:71:66:e9:4b:
        fd:ca:e6:9a:2c:fa:21:1b:9d:37:be:cc:9b:aa:54:5a:
        7f:76:e3:1a:c2:e9:29:91:14:fc:a9:78:6d:fd:b2:5e
    Fingerprint (SHA-256):
        A7:56:AB:40:90:E5:2F:0A:48:71:68:38:46:33:E5:1B:10:0C:6B:B5:D9:6C:D7:15:C2:9A:CA:3B:BC:D2:8B:3B
    Fingerprint (SHA1):
        66:F1:2D:90:AE:9E:E7:5B:11:FC:80:71:28:BA:13:9D:E5:13:E5:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6122: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6123: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153379 (0x1dee40a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:05 2017
            Not After : Mon May 02 15:34:05 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:ba:39:4f:1e:4b:49:cc:06:ad:1f:e4:aa:84:be:ab:
                    06:9a:fd:99:b3:ab:27:50:73:4a:4d:05:e5:55:6f:37:
                    c1:d0:8e:51:4d:b7:75:11:6c:77:4e:8a:78:84:8b:19:
                    10:ba:87:5c:62:03:45:58:82:69:c0:8c:7b:cd:b4:8f:
                    3d:9e:a2:06:d9:43:a8:c2:b9:ac:32:c3:0b:28:5c:74:
                    ea:c5:9e:59:c7:09:c5:50:1f:f4:6b:5e:28:3b:8b:ce:
                    0d:9d:77:f8:1f:ea:69:2b:0a:f7:66:14:21:88:d1:9b:
                    bb:7b:f3:ae:db:ec:6e:a9:53:2e:98:2d:64:b1:1b:3c:
                    3b:29:06:c8:64:04:c1:31:d5:8b:f0:d5:b1:ba:c9:76:
                    e2:55:f5:33:96:eb:89:2f:47:5d:22:21:28:79:a9:d2:
                    52:3f:88:5f:bc:14:b8:9c:04:a8:0d:ce:23:59:b6:00:
                    a3:8d:a9:03:a0:7e:e3:83:3c:2c:b0:34:cb:c6:2e:97:
                    9b:6c:21:70:52:f9:bb:86:80:e7:96:a7:1d:58:10:a0:
                    7b:8b:c3:22:6e:29:91:52:ce:1e:99:ef:db:c6:9c:d0:
                    b0:2d:66:2e:a2:10:62:83:67:a8:22:cd:ff:eb:6a:61:
                    53:19:b1:4e:67:69:a7:e0:87:dc:ba:cb:ca:64:9c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0e:76:6e:92:ae:e5:67:1a:86:c9:12:82:8d:2b:e6:
        51:4a:a9:a6:a6:b0:53:74:d8:f4:63:7b:d4:f0:ed:a7:
        6f:24:26:d4:93:cf:17:e6:98:be:d4:a8:13:fb:33:4d:
        84:69:e6:e5:28:32:31:36:e4:02:2c:fa:ac:5d:3a:5a:
        4c:cd:59:7f:a5:30:4e:1c:cb:88:59:10:84:71:7a:d0:
        98:66:8d:5c:0a:4c:db:0f:2f:3e:e2:6e:47:98:39:ca:
        e8:6a:09:af:88:7c:27:8b:07:a2:9c:ec:e1:fb:77:09:
        9f:cb:5a:fe:4e:20:e4:cf:88:78:91:c6:45:2d:ba:db:
        81:7c:88:07:20:ce:52:50:2c:02:56:36:24:61:c0:53:
        43:ae:78:86:04:39:97:f5:6c:de:31:28:16:88:15:71:
        d8:3d:7d:0a:0f:57:87:56:de:66:ed:94:27:be:7d:6b:
        30:16:3d:ac:43:58:f6:0f:94:a8:02:36:a6:8a:b8:b9:
        8b:38:3a:a0:fd:d4:a2:11:92:b4:c0:88:5e:2f:fc:b5:
        05:90:d3:81:51:89:11:57:6e:73:2b:b2:91:24:c9:8b:
        70:78:73:5d:05:72:dd:b3:90:5b:5e:b7:38:5b:6c:ef:
        16:9e:a2:ad:e7:ae:e6:ca:65:4f:26:f1:0a:6a:8a:ef
    Fingerprint (SHA-256):
        EC:CF:2B:A9:F8:51:01:2E:3D:09:C6:CD:5A:B1:C5:09:25:38:89:25:67:02:B6:5A:21:C6:9C:68:5D:92:1B:78
    Fingerprint (SHA1):
        BD:FD:C5:F9:B2:29:CE:29:E6:47:12:C9:98:35:4E:2D:12:39:69:F8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6124: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6125: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153377 (0x1dee40a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:04 2017
            Not After : Mon May 02 15:34:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:4b:4a:f5:fb:f9:b6:be:f3:21:31:9d:d3:34:49:30:
                    a6:8e:7a:ce:ce:82:8d:9a:83:c6:e7:69:93:38:6e:08:
                    0f:43:2c:b3:55:e0:9e:31:84:fc:7a:b9:94:63:aa:db:
                    d2:65:91:32:2c:9c:c5:0f:53:42:bb:48:ac:22:34:d1:
                    c6:db:77:4b:b8:75:9f:81:4c:58:ca:eb:09:ad:62:0f:
                    8d:a9:47:4f:35:ca:72:94:43:97:60:88:50:a3:cc:e8:
                    00:1e:4f:62:f5:20:d1:06:54:03:48:e9:07:49:ef:fd:
                    cc:2e:1a:b6:46:c3:fe:c9:11:ad:de:a3:e5:5a:6e:2b:
                    14:69:6d:99:52:6c:07:76:05:24:66:f0:f4:55:d6:9c:
                    9c:20:fe:f8:14:53:68:01:b8:10:b6:af:16:1e:ba:9d:
                    af:53:dc:10:ea:3a:fe:00:2e:bf:07:d1:a0:29:76:bb:
                    09:b8:2b:5f:cd:cf:6b:a2:b2:82:a0:22:fb:76:2c:8a:
                    95:c5:a2:56:50:f1:7d:aa:dd:70:84:c4:95:6c:19:95:
                    9b:3d:9b:7d:2a:6c:18:d3:69:41:28:b0:51:d6:12:5d:
                    06:be:8d:53:a4:44:c9:6c:15:b8:e8:2b:a3:1a:bb:b7:
                    19:a4:83:8a:2b:ae:21:aa:b8:1d:f3:05:e9:b6:42:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:a6:c5:1c:3c:90:98:c5:a8:b9:c4:d8:82:f3:9f:d2:
        10:e3:36:6d:cc:0f:e0:95:ff:35:36:85:81:81:7c:78:
        e0:72:d2:9c:c1:36:30:58:2e:a8:bb:b0:52:1d:eb:d8:
        40:21:4a:02:54:14:a1:e2:7e:b4:de:3d:41:5e:78:73:
        87:e7:8c:26:d0:4a:8f:f7:9d:4c:04:a2:6c:8c:37:a8:
        97:e1:9b:e1:7b:86:0e:09:5d:dd:ba:ef:4b:d9:f1:00:
        dd:4b:0d:bc:28:d8:06:d8:26:50:37:04:fd:1c:cf:8b:
        0b:71:c1:ba:a8:cf:b6:84:a9:ca:a4:47:7d:44:8b:66:
        27:40:45:4e:43:5a:fb:33:73:a1:71:6f:bf:7d:40:28:
        9d:b4:2f:f8:6f:53:0c:40:02:ab:49:fb:c0:28:54:75:
        59:b9:d8:f0:a0:40:4a:38:10:db:55:6a:3f:a9:f2:ed:
        d9:06:87:55:ba:13:d5:78:35:db:bc:9e:5b:56:3c:23:
        d0:b0:f0:89:3a:ae:69:43:af:7f:a9:0b:86:64:f4:50:
        b0:7a:6d:af:91:65:aa:6f:f1:bf:8f:10:79:34:76:62:
        43:5d:20:f7:55:91:17:58:a5:9a:7e:57:b0:b4:a7:06:
        3e:28:a2:d1:5c:48:d1:09:c0:96:93:dc:00:12:5c:3c
    Fingerprint (SHA-256):
        66:B9:35:98:2A:6E:BF:AC:E8:17:45:5A:77:46:AF:AA:8C:43:83:A5:91:B8:F1:6C:81:F2:18:E3:BC:39:4D:24
    Fingerprint (SHA1):
        BE:3A:3E:C9:3E:D3:D8:EE:8B:D2:FF:06:17:78:68:94:67:BC:A6:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6126: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153377 (0x1dee40a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:04 2017
            Not After : Mon May 02 15:34:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:4b:4a:f5:fb:f9:b6:be:f3:21:31:9d:d3:34:49:30:
                    a6:8e:7a:ce:ce:82:8d:9a:83:c6:e7:69:93:38:6e:08:
                    0f:43:2c:b3:55:e0:9e:31:84:fc:7a:b9:94:63:aa:db:
                    d2:65:91:32:2c:9c:c5:0f:53:42:bb:48:ac:22:34:d1:
                    c6:db:77:4b:b8:75:9f:81:4c:58:ca:eb:09:ad:62:0f:
                    8d:a9:47:4f:35:ca:72:94:43:97:60:88:50:a3:cc:e8:
                    00:1e:4f:62:f5:20:d1:06:54:03:48:e9:07:49:ef:fd:
                    cc:2e:1a:b6:46:c3:fe:c9:11:ad:de:a3:e5:5a:6e:2b:
                    14:69:6d:99:52:6c:07:76:05:24:66:f0:f4:55:d6:9c:
                    9c:20:fe:f8:14:53:68:01:b8:10:b6:af:16:1e:ba:9d:
                    af:53:dc:10:ea:3a:fe:00:2e:bf:07:d1:a0:29:76:bb:
                    09:b8:2b:5f:cd:cf:6b:a2:b2:82:a0:22:fb:76:2c:8a:
                    95:c5:a2:56:50:f1:7d:aa:dd:70:84:c4:95:6c:19:95:
                    9b:3d:9b:7d:2a:6c:18:d3:69:41:28:b0:51:d6:12:5d:
                    06:be:8d:53:a4:44:c9:6c:15:b8:e8:2b:a3:1a:bb:b7:
                    19:a4:83:8a:2b:ae:21:aa:b8:1d:f3:05:e9:b6:42:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:a6:c5:1c:3c:90:98:c5:a8:b9:c4:d8:82:f3:9f:d2:
        10:e3:36:6d:cc:0f:e0:95:ff:35:36:85:81:81:7c:78:
        e0:72:d2:9c:c1:36:30:58:2e:a8:bb:b0:52:1d:eb:d8:
        40:21:4a:02:54:14:a1:e2:7e:b4:de:3d:41:5e:78:73:
        87:e7:8c:26:d0:4a:8f:f7:9d:4c:04:a2:6c:8c:37:a8:
        97:e1:9b:e1:7b:86:0e:09:5d:dd:ba:ef:4b:d9:f1:00:
        dd:4b:0d:bc:28:d8:06:d8:26:50:37:04:fd:1c:cf:8b:
        0b:71:c1:ba:a8:cf:b6:84:a9:ca:a4:47:7d:44:8b:66:
        27:40:45:4e:43:5a:fb:33:73:a1:71:6f:bf:7d:40:28:
        9d:b4:2f:f8:6f:53:0c:40:02:ab:49:fb:c0:28:54:75:
        59:b9:d8:f0:a0:40:4a:38:10:db:55:6a:3f:a9:f2:ed:
        d9:06:87:55:ba:13:d5:78:35:db:bc:9e:5b:56:3c:23:
        d0:b0:f0:89:3a:ae:69:43:af:7f:a9:0b:86:64:f4:50:
        b0:7a:6d:af:91:65:aa:6f:f1:bf:8f:10:79:34:76:62:
        43:5d:20:f7:55:91:17:58:a5:9a:7e:57:b0:b4:a7:06:
        3e:28:a2:d1:5c:48:d1:09:c0:96:93:dc:00:12:5c:3c
    Fingerprint (SHA-256):
        66:B9:35:98:2A:6E:BF:AC:E8:17:45:5A:77:46:AF:AA:8C:43:83:A5:91:B8:F1:6C:81:F2:18:E3:BC:39:4D:24
    Fingerprint (SHA1):
        BE:3A:3E:C9:3E:D3:D8:EE:8B:D2:FF:06:17:78:68:94:67:BC:A6:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6127: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153378 (0x1dee40a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:04 2017
            Not After : Mon May 02 15:34:04 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:b4:a6:81:db:23:a0:11:ac:86:1b:28:a7:c9:38:55:
                    f9:c3:87:6a:07:ca:7f:13:1a:de:f6:1d:20:c0:01:08:
                    1a:92:2c:80:35:95:1b:33:ec:54:59:df:15:43:ab:25:
                    8d:88:f2:3a:37:12:f7:8e:0f:ff:13:0c:83:3e:57:d8:
                    93:56:1f:84:6e:ba:4a:d8:67:15:cf:a4:05:a8:88:76:
                    ac:6b:89:86:b8:e8:d9:5c:82:f1:a4:7a:2a:5a:28:cf:
                    45:39:57:c4:46:cf:65:35:6b:5b:8f:34:7a:db:f1:68:
                    4e:45:06:5b:5b:cd:c6:fd:8a:d7:3c:e6:2e:c1:ba:01:
                    d9:86:6d:a8:53:14:c4:12:49:3a:d2:88:99:f0:22:0d:
                    49:b5:ac:30:67:c3:cb:4a:9b:da:44:0e:d0:bc:d6:97:
                    4a:d5:9b:df:69:ad:56:2d:c0:d8:bc:4f:4f:fc:61:43:
                    e0:e2:13:e1:f1:4e:08:e7:42:eb:45:c2:37:7e:ff:0a:
                    50:a0:ab:e0:4d:e3:33:32:76:2c:ab:64:e1:fd:09:13:
                    40:12:48:29:f8:4d:b8:da:d1:58:f6:5a:e3:03:e3:73:
                    fc:5d:7e:3e:15:ed:33:d1:e2:b0:c7:51:a3:c0:db:d9:
                    0f:df:31:29:ff:26:d4:d0:77:bf:f1:d2:7b:0a:01:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:a3:4a:92:50:a4:14:19:33:2a:b7:3b:b0:e3:b8:
        03:61:6c:0c:67:0e:a1:5b:37:10:80:16:ce:2a:7c:52:
        c2:23:4d:32:58:49:9a:cb:91:09:06:e3:66:89:c3:aa:
        49:a9:83:ea:dd:25:88:8c:ce:99:86:74:28:98:df:4a:
        9f:2a:3b:4b:b9:4a:36:c8:e3:92:96:09:e2:47:4b:e8:
        94:a8:09:35:2a:d6:a3:50:d4:53:9d:74:06:8b:76:23:
        34:87:7d:c1:d6:ce:4b:2f:ac:cb:10:f7:77:70:4a:23:
        e6:80:9d:8e:f2:62:93:e3:06:df:7b:ce:c2:98:84:92:
        27:5f:1a:ad:8f:d7:43:c8:15:98:15:e0:96:b8:3b:f2:
        2b:8a:c4:1d:c0:31:c2:3d:91:de:fe:df:cc:0a:3c:89:
        87:f5:96:96:dd:f5:96:84:b6:7c:0a:18:28:7b:fa:7b:
        49:c4:45:e8:77:96:15:42:24:be:95:38:90:87:75:16:
        cf:0d:ee:eb:06:06:6f:ca:de:54:27:30:e6:e6:85:62:
        e2:69:9c:69:b5:d0:d8:08:41:c7:ce:e2:71:66:e9:4b:
        fd:ca:e6:9a:2c:fa:21:1b:9d:37:be:cc:9b:aa:54:5a:
        7f:76:e3:1a:c2:e9:29:91:14:fc:a9:78:6d:fd:b2:5e
    Fingerprint (SHA-256):
        A7:56:AB:40:90:E5:2F:0A:48:71:68:38:46:33:E5:1B:10:0C:6B:B5:D9:6C:D7:15:C2:9A:CA:3B:BC:D2:8B:3B
    Fingerprint (SHA1):
        66:F1:2D:90:AE:9E:E7:5B:11:FC:80:71:28:BA:13:9D:E5:13:E5:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6128: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153378 (0x1dee40a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:04 2017
            Not After : Mon May 02 15:34:04 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:b4:a6:81:db:23:a0:11:ac:86:1b:28:a7:c9:38:55:
                    f9:c3:87:6a:07:ca:7f:13:1a:de:f6:1d:20:c0:01:08:
                    1a:92:2c:80:35:95:1b:33:ec:54:59:df:15:43:ab:25:
                    8d:88:f2:3a:37:12:f7:8e:0f:ff:13:0c:83:3e:57:d8:
                    93:56:1f:84:6e:ba:4a:d8:67:15:cf:a4:05:a8:88:76:
                    ac:6b:89:86:b8:e8:d9:5c:82:f1:a4:7a:2a:5a:28:cf:
                    45:39:57:c4:46:cf:65:35:6b:5b:8f:34:7a:db:f1:68:
                    4e:45:06:5b:5b:cd:c6:fd:8a:d7:3c:e6:2e:c1:ba:01:
                    d9:86:6d:a8:53:14:c4:12:49:3a:d2:88:99:f0:22:0d:
                    49:b5:ac:30:67:c3:cb:4a:9b:da:44:0e:d0:bc:d6:97:
                    4a:d5:9b:df:69:ad:56:2d:c0:d8:bc:4f:4f:fc:61:43:
                    e0:e2:13:e1:f1:4e:08:e7:42:eb:45:c2:37:7e:ff:0a:
                    50:a0:ab:e0:4d:e3:33:32:76:2c:ab:64:e1:fd:09:13:
                    40:12:48:29:f8:4d:b8:da:d1:58:f6:5a:e3:03:e3:73:
                    fc:5d:7e:3e:15:ed:33:d1:e2:b0:c7:51:a3:c0:db:d9:
                    0f:df:31:29:ff:26:d4:d0:77:bf:f1:d2:7b:0a:01:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:a3:4a:92:50:a4:14:19:33:2a:b7:3b:b0:e3:b8:
        03:61:6c:0c:67:0e:a1:5b:37:10:80:16:ce:2a:7c:52:
        c2:23:4d:32:58:49:9a:cb:91:09:06:e3:66:89:c3:aa:
        49:a9:83:ea:dd:25:88:8c:ce:99:86:74:28:98:df:4a:
        9f:2a:3b:4b:b9:4a:36:c8:e3:92:96:09:e2:47:4b:e8:
        94:a8:09:35:2a:d6:a3:50:d4:53:9d:74:06:8b:76:23:
        34:87:7d:c1:d6:ce:4b:2f:ac:cb:10:f7:77:70:4a:23:
        e6:80:9d:8e:f2:62:93:e3:06:df:7b:ce:c2:98:84:92:
        27:5f:1a:ad:8f:d7:43:c8:15:98:15:e0:96:b8:3b:f2:
        2b:8a:c4:1d:c0:31:c2:3d:91:de:fe:df:cc:0a:3c:89:
        87:f5:96:96:dd:f5:96:84:b6:7c:0a:18:28:7b:fa:7b:
        49:c4:45:e8:77:96:15:42:24:be:95:38:90:87:75:16:
        cf:0d:ee:eb:06:06:6f:ca:de:54:27:30:e6:e6:85:62:
        e2:69:9c:69:b5:d0:d8:08:41:c7:ce:e2:71:66:e9:4b:
        fd:ca:e6:9a:2c:fa:21:1b:9d:37:be:cc:9b:aa:54:5a:
        7f:76:e3:1a:c2:e9:29:91:14:fc:a9:78:6d:fd:b2:5e
    Fingerprint (SHA-256):
        A7:56:AB:40:90:E5:2F:0A:48:71:68:38:46:33:E5:1B:10:0C:6B:B5:D9:6C:D7:15:C2:9A:CA:3B:BC:D2:8B:3B
    Fingerprint (SHA1):
        66:F1:2D:90:AE:9E:E7:5B:11:FC:80:71:28:BA:13:9D:E5:13:E5:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6129: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153379 (0x1dee40a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:05 2017
            Not After : Mon May 02 15:34:05 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:ba:39:4f:1e:4b:49:cc:06:ad:1f:e4:aa:84:be:ab:
                    06:9a:fd:99:b3:ab:27:50:73:4a:4d:05:e5:55:6f:37:
                    c1:d0:8e:51:4d:b7:75:11:6c:77:4e:8a:78:84:8b:19:
                    10:ba:87:5c:62:03:45:58:82:69:c0:8c:7b:cd:b4:8f:
                    3d:9e:a2:06:d9:43:a8:c2:b9:ac:32:c3:0b:28:5c:74:
                    ea:c5:9e:59:c7:09:c5:50:1f:f4:6b:5e:28:3b:8b:ce:
                    0d:9d:77:f8:1f:ea:69:2b:0a:f7:66:14:21:88:d1:9b:
                    bb:7b:f3:ae:db:ec:6e:a9:53:2e:98:2d:64:b1:1b:3c:
                    3b:29:06:c8:64:04:c1:31:d5:8b:f0:d5:b1:ba:c9:76:
                    e2:55:f5:33:96:eb:89:2f:47:5d:22:21:28:79:a9:d2:
                    52:3f:88:5f:bc:14:b8:9c:04:a8:0d:ce:23:59:b6:00:
                    a3:8d:a9:03:a0:7e:e3:83:3c:2c:b0:34:cb:c6:2e:97:
                    9b:6c:21:70:52:f9:bb:86:80:e7:96:a7:1d:58:10:a0:
                    7b:8b:c3:22:6e:29:91:52:ce:1e:99:ef:db:c6:9c:d0:
                    b0:2d:66:2e:a2:10:62:83:67:a8:22:cd:ff:eb:6a:61:
                    53:19:b1:4e:67:69:a7:e0:87:dc:ba:cb:ca:64:9c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0e:76:6e:92:ae:e5:67:1a:86:c9:12:82:8d:2b:e6:
        51:4a:a9:a6:a6:b0:53:74:d8:f4:63:7b:d4:f0:ed:a7:
        6f:24:26:d4:93:cf:17:e6:98:be:d4:a8:13:fb:33:4d:
        84:69:e6:e5:28:32:31:36:e4:02:2c:fa:ac:5d:3a:5a:
        4c:cd:59:7f:a5:30:4e:1c:cb:88:59:10:84:71:7a:d0:
        98:66:8d:5c:0a:4c:db:0f:2f:3e:e2:6e:47:98:39:ca:
        e8:6a:09:af:88:7c:27:8b:07:a2:9c:ec:e1:fb:77:09:
        9f:cb:5a:fe:4e:20:e4:cf:88:78:91:c6:45:2d:ba:db:
        81:7c:88:07:20:ce:52:50:2c:02:56:36:24:61:c0:53:
        43:ae:78:86:04:39:97:f5:6c:de:31:28:16:88:15:71:
        d8:3d:7d:0a:0f:57:87:56:de:66:ed:94:27:be:7d:6b:
        30:16:3d:ac:43:58:f6:0f:94:a8:02:36:a6:8a:b8:b9:
        8b:38:3a:a0:fd:d4:a2:11:92:b4:c0:88:5e:2f:fc:b5:
        05:90:d3:81:51:89:11:57:6e:73:2b:b2:91:24:c9:8b:
        70:78:73:5d:05:72:dd:b3:90:5b:5e:b7:38:5b:6c:ef:
        16:9e:a2:ad:e7:ae:e6:ca:65:4f:26:f1:0a:6a:8a:ef
    Fingerprint (SHA-256):
        EC:CF:2B:A9:F8:51:01:2E:3D:09:C6:CD:5A:B1:C5:09:25:38:89:25:67:02:B6:5A:21:C6:9C:68:5D:92:1B:78
    Fingerprint (SHA1):
        BD:FD:C5:F9:B2:29:CE:29:E6:47:12:C9:98:35:4E:2D:12:39:69:F8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6130: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153379 (0x1dee40a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:05 2017
            Not After : Mon May 02 15:34:05 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:ba:39:4f:1e:4b:49:cc:06:ad:1f:e4:aa:84:be:ab:
                    06:9a:fd:99:b3:ab:27:50:73:4a:4d:05:e5:55:6f:37:
                    c1:d0:8e:51:4d:b7:75:11:6c:77:4e:8a:78:84:8b:19:
                    10:ba:87:5c:62:03:45:58:82:69:c0:8c:7b:cd:b4:8f:
                    3d:9e:a2:06:d9:43:a8:c2:b9:ac:32:c3:0b:28:5c:74:
                    ea:c5:9e:59:c7:09:c5:50:1f:f4:6b:5e:28:3b:8b:ce:
                    0d:9d:77:f8:1f:ea:69:2b:0a:f7:66:14:21:88:d1:9b:
                    bb:7b:f3:ae:db:ec:6e:a9:53:2e:98:2d:64:b1:1b:3c:
                    3b:29:06:c8:64:04:c1:31:d5:8b:f0:d5:b1:ba:c9:76:
                    e2:55:f5:33:96:eb:89:2f:47:5d:22:21:28:79:a9:d2:
                    52:3f:88:5f:bc:14:b8:9c:04:a8:0d:ce:23:59:b6:00:
                    a3:8d:a9:03:a0:7e:e3:83:3c:2c:b0:34:cb:c6:2e:97:
                    9b:6c:21:70:52:f9:bb:86:80:e7:96:a7:1d:58:10:a0:
                    7b:8b:c3:22:6e:29:91:52:ce:1e:99:ef:db:c6:9c:d0:
                    b0:2d:66:2e:a2:10:62:83:67:a8:22:cd:ff:eb:6a:61:
                    53:19:b1:4e:67:69:a7:e0:87:dc:ba:cb:ca:64:9c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0e:76:6e:92:ae:e5:67:1a:86:c9:12:82:8d:2b:e6:
        51:4a:a9:a6:a6:b0:53:74:d8:f4:63:7b:d4:f0:ed:a7:
        6f:24:26:d4:93:cf:17:e6:98:be:d4:a8:13:fb:33:4d:
        84:69:e6:e5:28:32:31:36:e4:02:2c:fa:ac:5d:3a:5a:
        4c:cd:59:7f:a5:30:4e:1c:cb:88:59:10:84:71:7a:d0:
        98:66:8d:5c:0a:4c:db:0f:2f:3e:e2:6e:47:98:39:ca:
        e8:6a:09:af:88:7c:27:8b:07:a2:9c:ec:e1:fb:77:09:
        9f:cb:5a:fe:4e:20:e4:cf:88:78:91:c6:45:2d:ba:db:
        81:7c:88:07:20:ce:52:50:2c:02:56:36:24:61:c0:53:
        43:ae:78:86:04:39:97:f5:6c:de:31:28:16:88:15:71:
        d8:3d:7d:0a:0f:57:87:56:de:66:ed:94:27:be:7d:6b:
        30:16:3d:ac:43:58:f6:0f:94:a8:02:36:a6:8a:b8:b9:
        8b:38:3a:a0:fd:d4:a2:11:92:b4:c0:88:5e:2f:fc:b5:
        05:90:d3:81:51:89:11:57:6e:73:2b:b2:91:24:c9:8b:
        70:78:73:5d:05:72:dd:b3:90:5b:5e:b7:38:5b:6c:ef:
        16:9e:a2:ad:e7:ae:e6:ca:65:4f:26:f1:0a:6a:8a:ef
    Fingerprint (SHA-256):
        EC:CF:2B:A9:F8:51:01:2E:3D:09:C6:CD:5A:B1:C5:09:25:38:89:25:67:02:B6:5A:21:C6:9C:68:5D:92:1B:78
    Fingerprint (SHA1):
        BD:FD:C5:F9:B2:29:CE:29:E6:47:12:C9:98:35:4E:2D:12:39:69:F8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6131: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6132: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153382 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6133: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6134: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6135: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6136: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153383   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6137: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6138: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6139: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6140: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153384   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6141: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6142: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6143: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6144: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502153385   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6145: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6146: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6147: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6148: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153386   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6149: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6150: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6151: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6152: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153387   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6153: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6154: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #6155: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6156: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502153388   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6157: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6158: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6159: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #6160: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #6161: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6162: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #6163: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153382 (0x1dee40a6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:a8:27:2c:98:50:b5:c7:34:e2:fb:2e:8e:a3:d4:5b:
                    3a:78:06:83:d1:a6:7d:cf:f1:23:0a:84:52:0f:0c:0d:
                    8e:7a:a8:a8:d3:30:31:24:7b:fe:35:8c:e7:6f:1b:8b:
                    23:63:4f:96:47:fc:77:84:1c:dd:f2:e7:91:7b:5a:73:
                    a5:cf:4b:40:e6:68:2a:d8:1a:b5:04:02:dc:de:cc:43:
                    24:27:76:b1:9f:31:00:15:14:88:89:22:4a:14:a4:14:
                    58:31:26:5f:5d:e0:ef:30:d1:86:8e:d4:8e:3d:31:7f:
                    9b:8f:9b:c1:3d:5b:22:b5:ac:8b:18:43:30:bd:03:c3:
                    a7:ba:87:47:ff:e4:20:da:42:82:18:1f:13:ad:ea:5a:
                    b4:3c:14:36:fa:53:68:82:b8:e2:43:94:00:68:01:50:
                    eb:f6:7e:60:46:97:74:cf:24:ef:e6:ee:19:0d:68:d1:
                    6c:0b:04:5b:12:a3:21:27:15:94:62:75:e0:d0:f5:46:
                    64:58:76:91:0b:67:a3:8f:a5:ed:04:3e:cc:21:9d:44:
                    01:c3:ff:70:db:76:1a:54:32:2b:b5:32:a0:12:68:b3:
                    95:d7:77:fe:4d:b4:a0:e1:a0:eb:06:5c:59:66:7f:f5:
                    55:e6:a9:ea:64:40:7a:3b:fe:07:dd:34:05:ed:51:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:ab:91:23:cc:6b:24:cb:a1:48:85:5d:40:07:d9:ad:
        1e:1b:49:0d:29:78:82:f6:c9:fb:c7:0f:b7:c4:70:57:
        5e:80:a1:e4:5a:d7:ac:51:0c:17:a0:bb:5d:89:25:f5:
        dd:40:04:22:9d:2f:b2:86:4a:98:59:ff:34:70:54:96:
        02:01:64:2f:9c:2d:18:91:31:ec:bb:ce:f7:c4:85:de:
        98:8b:a6:56:d2:ad:8c:35:68:88:5e:c9:a0:23:28:42:
        00:11:86:10:a0:07:4f:17:9a:d4:9e:bf:7a:0a:b3:11:
        1a:98:88:1d:5b:8b:35:fc:66:03:66:7b:e0:21:16:a8:
        25:fb:65:ff:f0:61:1a:be:12:38:51:3f:bd:4a:68:a7:
        82:5b:8b:09:6f:71:da:c3:46:dd:15:44:85:e1:4a:8d:
        e8:b2:eb:da:a0:0f:08:88:1e:bb:65:c1:04:bc:3c:e3:
        f2:b0:86:14:58:6e:b1:be:a2:38:de:9f:f2:23:e9:52:
        cd:8d:f2:98:85:82:91:67:70:d7:b3:e3:f7:af:bd:20:
        ab:ae:13:42:56:94:b8:b8:2d:1f:62:4f:7b:ed:cc:9d:
        ab:36:ee:d3:df:51:db:a6:b3:9a:3c:cf:66:d1:2c:49:
        f1:4c:9e:89:7a:b6:9c:79:59:2a:90:db:38:60:e0:66
    Fingerprint (SHA-256):
        B9:07:73:A1:0E:CB:CA:59:F0:C0:6F:62:F3:39:6D:F2:DC:0E:CB:7C:6E:C0:D7:56:F6:F5:04:4C:19:B6:82:0C
    Fingerprint (SHA1):
        DC:E1:B0:27:8D:0F:FD:8E:2A:79:4F:E2:7C:B7:35:6C:7E:AA:3B:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6164: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6165: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6166: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6167: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153382 (0x1dee40a6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:a8:27:2c:98:50:b5:c7:34:e2:fb:2e:8e:a3:d4:5b:
                    3a:78:06:83:d1:a6:7d:cf:f1:23:0a:84:52:0f:0c:0d:
                    8e:7a:a8:a8:d3:30:31:24:7b:fe:35:8c:e7:6f:1b:8b:
                    23:63:4f:96:47:fc:77:84:1c:dd:f2:e7:91:7b:5a:73:
                    a5:cf:4b:40:e6:68:2a:d8:1a:b5:04:02:dc:de:cc:43:
                    24:27:76:b1:9f:31:00:15:14:88:89:22:4a:14:a4:14:
                    58:31:26:5f:5d:e0:ef:30:d1:86:8e:d4:8e:3d:31:7f:
                    9b:8f:9b:c1:3d:5b:22:b5:ac:8b:18:43:30:bd:03:c3:
                    a7:ba:87:47:ff:e4:20:da:42:82:18:1f:13:ad:ea:5a:
                    b4:3c:14:36:fa:53:68:82:b8:e2:43:94:00:68:01:50:
                    eb:f6:7e:60:46:97:74:cf:24:ef:e6:ee:19:0d:68:d1:
                    6c:0b:04:5b:12:a3:21:27:15:94:62:75:e0:d0:f5:46:
                    64:58:76:91:0b:67:a3:8f:a5:ed:04:3e:cc:21:9d:44:
                    01:c3:ff:70:db:76:1a:54:32:2b:b5:32:a0:12:68:b3:
                    95:d7:77:fe:4d:b4:a0:e1:a0:eb:06:5c:59:66:7f:f5:
                    55:e6:a9:ea:64:40:7a:3b:fe:07:dd:34:05:ed:51:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:ab:91:23:cc:6b:24:cb:a1:48:85:5d:40:07:d9:ad:
        1e:1b:49:0d:29:78:82:f6:c9:fb:c7:0f:b7:c4:70:57:
        5e:80:a1:e4:5a:d7:ac:51:0c:17:a0:bb:5d:89:25:f5:
        dd:40:04:22:9d:2f:b2:86:4a:98:59:ff:34:70:54:96:
        02:01:64:2f:9c:2d:18:91:31:ec:bb:ce:f7:c4:85:de:
        98:8b:a6:56:d2:ad:8c:35:68:88:5e:c9:a0:23:28:42:
        00:11:86:10:a0:07:4f:17:9a:d4:9e:bf:7a:0a:b3:11:
        1a:98:88:1d:5b:8b:35:fc:66:03:66:7b:e0:21:16:a8:
        25:fb:65:ff:f0:61:1a:be:12:38:51:3f:bd:4a:68:a7:
        82:5b:8b:09:6f:71:da:c3:46:dd:15:44:85:e1:4a:8d:
        e8:b2:eb:da:a0:0f:08:88:1e:bb:65:c1:04:bc:3c:e3:
        f2:b0:86:14:58:6e:b1:be:a2:38:de:9f:f2:23:e9:52:
        cd:8d:f2:98:85:82:91:67:70:d7:b3:e3:f7:af:bd:20:
        ab:ae:13:42:56:94:b8:b8:2d:1f:62:4f:7b:ed:cc:9d:
        ab:36:ee:d3:df:51:db:a6:b3:9a:3c:cf:66:d1:2c:49:
        f1:4c:9e:89:7a:b6:9c:79:59:2a:90:db:38:60:e0:66
    Fingerprint (SHA-256):
        B9:07:73:A1:0E:CB:CA:59:F0:C0:6F:62:F3:39:6D:F2:DC:0E:CB:7C:6E:C0:D7:56:F6:F5:04:4C:19:B6:82:0C
    Fingerprint (SHA1):
        DC:E1:B0:27:8D:0F:FD:8E:2A:79:4F:E2:7C:B7:35:6C:7E:AA:3B:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6168: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6169: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6170: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153389 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6171: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6172: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6173: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6174: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153390   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6175: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6176: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #6177: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6178: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502153391   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6179: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6180: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #6181: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6182: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502153392   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6183: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6184: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6185: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6186: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502153393   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6187: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6188: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #6189: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6190: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502153394   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6191: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6192: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #6193: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6194: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502153395   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6195: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6196: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6197: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6198: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502153396   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6199: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6200: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #6201: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6202: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502153397   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6203: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6204: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #6205: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6206: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502153398   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6207: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6208: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6209: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6210: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502153399   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6211: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6212: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #6213: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6214: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502153400   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6215: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6216: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #6217: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6218: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502153401   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6219: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6220: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6221: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6222: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502153402   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6223: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6224: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #6225: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6226: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502153403   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6227: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6228: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #6229: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6230: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502153404   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6231: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6232: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #6233: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6234: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502153405   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6235: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6236: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #6237: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6238: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502153406   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6239: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6240: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #6241: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6242: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502153407   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6243: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6244: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #6245: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6246: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502153408   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6247: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6248: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #6249: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6250: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502153409   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6251: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6252: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #6253: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6254: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502153410   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6255: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6256: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #6257: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6258: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502153411   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6259: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6260: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #6261: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6262: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502153412   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6263: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6264: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #6265: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6266: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502153413   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6267: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6268: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #6269: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6270: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502153414   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6271: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6272: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #6273: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6274: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502153415   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6275: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6276: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #6277: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6278: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502153416   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6279: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6280: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #6281: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6282: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502153417   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6283: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6284: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #6285: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6286: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502153418   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6287: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6288: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6289: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6290: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6291: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6292: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6293: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6294: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6295: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6296: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6297: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6298: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6299: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6300: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6301: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6302: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6303: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6304: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6305: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6306: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6307: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6308: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6309: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6310: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6311: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153389 (0x1dee40ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:08 2017
            Not After : Mon May 02 15:34:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:cb:80:7c:7b:1c:43:70:67:09:54:34:a7:d4:b9:33:
                    fc:36:a4:9d:9d:c7:ae:50:72:6a:74:04:96:bc:c2:2d:
                    c8:58:62:b8:5a:ac:18:1c:a2:1d:23:a7:e0:d2:80:22:
                    f7:53:88:24:48:01:20:71:d1:f1:ad:b7:34:92:5b:ca:
                    9b:12:c6:3e:2d:e9:25:5c:85:f1:39:e4:de:1c:23:92:
                    e6:8f:60:f8:4b:7a:d8:25:b9:81:b0:76:29:c6:54:a8:
                    65:df:6b:f6:48:1b:6d:9d:b8:27:af:41:72:ab:78:54:
                    0a:a9:f2:ae:1c:ac:dd:65:cf:fb:b4:2d:f4:8a:9a:1d:
                    48:19:9e:e0:8b:5f:7f:f2:8c:75:51:22:88:ec:9b:eb:
                    8a:66:cd:48:5e:80:36:e1:7a:d3:12:59:2b:5c:b2:d0:
                    a6:b5:23:e3:7f:19:32:dd:af:a9:48:79:b2:7c:fc:1e:
                    70:0d:69:df:81:e0:ea:09:cf:56:99:97:58:a5:77:b9:
                    63:1a:e3:29:55:fb:ab:65:a2:3a:75:f0:1e:72:9a:2e:
                    d4:e7:9d:88:b5:c6:52:f3:02:7a:dc:96:d3:ca:0f:9c:
                    a1:68:46:ff:97:11:08:2e:e4:d8:5e:81:1d:ac:52:01:
                    67:7e:bf:87:13:03:1a:e4:9e:89:71:9d:93:a9:56:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:2f:0b:1e:34:f0:0c:a6:52:75:fe:d1:60:a7:be:7a:
        f1:25:97:ff:77:eb:8e:0c:53:fe:18:ab:fb:29:2b:70:
        7b:34:53:dd:df:e6:99:5f:ce:d0:e6:97:63:3a:d4:0c:
        9e:f8:40:c1:4c:13:2f:46:1b:a8:e9:9b:ef:dc:0d:99:
        9a:7c:c1:62:be:10:1d:55:f2:2d:19:44:0a:7d:cf:81:
        7e:6d:cb:68:4e:c8:18:a1:c7:2c:8d:8f:08:ee:4d:f9:
        1f:4d:94:93:0f:ee:9a:0f:a9:52:4e:3d:fb:39:a4:c8:
        1e:0b:a2:0e:20:e8:cf:b0:38:f4:14:f4:f9:41:9c:33:
        04:36:db:fb:8d:78:c8:fd:9c:14:64:a5:d4:d6:88:0d:
        b4:59:5d:28:06:0b:5a:7f:4d:14:e8:83:ac:78:01:29:
        2d:9c:1b:d5:ea:88:82:01:48:9f:2f:21:d3:16:cc:77:
        af:e1:57:96:74:2b:f8:c6:4f:d6:eb:42:18:0a:4e:1c:
        7c:af:55:88:95:fe:f5:c8:e1:50:d7:5b:73:e6:85:56:
        cb:33:af:b4:99:1f:7e:55:fd:24:2c:6b:fc:38:2d:c0:
        9b:a0:7d:b5:42:b6:ba:9d:45:6b:aa:58:a1:42:47:69:
        2e:a6:7c:64:91:0b:8b:14:4d:ea:6c:a8:9e:9b:38:91
    Fingerprint (SHA-256):
        C6:E7:80:84:B6:B9:D5:25:3D:52:21:63:47:E6:E8:87:86:47:D4:0A:4A:8A:86:F7:55:18:D2:05:2F:71:00:61
    Fingerprint (SHA1):
        28:8A:6E:F4:7E:EB:0B:1C:E3:3A:68:96:29:AC:C0:24:8E:24:8C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6312: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6313: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6314: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153419 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6315: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6316: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #6317: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6318: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502153420   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6319: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6320: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #6321: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6322: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502153421   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6323: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6324: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #6325: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6326: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502153422   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6327: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6328: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #6329: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6330: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502153423   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6331: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6332: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #6333: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6334: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502153424   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6335: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6336: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #6337: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6338: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502153425   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6339: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6340: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6341: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153419 (0x1dee40cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:19 2017
            Not After : Mon May 02 15:34:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:04:dc:6b:d9:3d:96:e8:57:6e:72:07:2b:92:21:a1:
                    46:c3:a1:f6:96:5c:5e:83:7e:9c:43:e2:09:ea:b1:fd:
                    07:80:3f:e8:df:ba:55:04:79:58:8d:b2:ac:60:c7:09:
                    0d:c9:7b:7d:f5:6c:de:8c:eb:ea:b6:1b:64:e4:2f:ed:
                    5f:4c:57:41:84:92:d6:d9:fc:34:87:03:0f:63:90:e6:
                    58:c0:93:88:80:00:d5:dd:7b:a0:af:2e:90:40:a8:7f:
                    02:06:a7:7b:db:40:6b:f7:2d:e0:5c:00:f8:3e:5a:ad:
                    ad:59:33:e3:a9:e8:3b:1d:22:79:63:09:b2:55:58:c2:
                    72:d9:ab:7e:1d:ae:e5:b4:44:70:1c:cb:3f:e4:cd:56:
                    93:2b:32:a2:f7:67:b1:31:a4:c1:a3:81:0e:ab:23:e5:
                    8e:6a:4b:c5:0c:b8:6d:5d:a4:fb:63:f7:72:95:91:91:
                    e6:9e:aa:35:22:7d:12:40:ad:74:b1:58:7b:38:76:51:
                    d6:5c:9d:92:e3:fc:ee:f0:4c:6d:51:71:fe:a2:53:13:
                    b3:56:26:12:e3:c3:e6:e2:be:cc:7c:96:df:3e:43:7c:
                    ab:13:6c:04:2c:b1:ba:0c:8e:bb:5d:3e:7a:4c:88:48:
                    6b:87:91:6e:23:a2:35:f1:c2:69:c0:9c:73:0e:1c:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:e4:0f:63:d8:5a:5b:94:85:98:e0:83:6c:01:cd:da:
        8c:78:3b:40:e3:95:51:4a:32:07:08:a6:5c:35:14:ae:
        9c:44:cb:2a:18:81:d2:dd:7e:c8:73:2e:cf:65:44:7a:
        b5:c5:22:d3:66:2d:a4:ec:09:4d:43:d6:45:78:40:0c:
        84:15:6c:23:83:73:fc:d7:f4:b4:a1:46:e5:1f:5c:77:
        e9:eb:4d:3b:0a:e1:9f:49:09:08:c4:80:34:39:6e:94:
        b9:55:f2:0f:72:28:17:b5:3c:08:a0:3d:22:46:f3:97:
        d9:5d:08:5e:c7:d7:85:5d:eb:bf:93:6b:2e:7e:4f:b1:
        45:12:8a:a8:17:9a:52:16:11:dd:75:ca:18:d6:36:6c:
        c2:88:76:68:e1:f0:4a:f2:ed:02:46:21:81:21:86:d8:
        db:f2:ef:2a:f2:63:a9:21:2c:d9:b4:cb:f4:4d:55:16:
        e5:4d:8c:cb:f6:d1:3f:bc:c1:95:6c:d6:ab:65:34:cd:
        82:fc:f5:e5:3a:87:d4:a8:01:e5:a1:a5:e7:50:bb:84:
        48:0d:3f:7e:a1:82:d1:4a:a6:56:fa:b2:09:9d:b9:a3:
        d0:a4:3d:16:45:e4:b5:1f:a6:4c:b2:41:f8:c2:5d:d8:
        53:fd:cf:71:1c:bf:d5:3c:5c:97:c1:bd:f9:1d:e6:5e
    Fingerprint (SHA-256):
        47:15:E5:30:51:B3:05:AA:39:1E:71:00:D3:27:D3:3E:B1:A3:10:75:4D:4C:3C:A9:23:41:91:E1:F4:DE:C2:45
    Fingerprint (SHA1):
        0C:3C:79:12:D5:DB:65:21:BF:5C:70:72:19:60:18:1A:24:C9:E1:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6342: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6343: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6344: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6345: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153419 (0x1dee40cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:19 2017
            Not After : Mon May 02 15:34:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:04:dc:6b:d9:3d:96:e8:57:6e:72:07:2b:92:21:a1:
                    46:c3:a1:f6:96:5c:5e:83:7e:9c:43:e2:09:ea:b1:fd:
                    07:80:3f:e8:df:ba:55:04:79:58:8d:b2:ac:60:c7:09:
                    0d:c9:7b:7d:f5:6c:de:8c:eb:ea:b6:1b:64:e4:2f:ed:
                    5f:4c:57:41:84:92:d6:d9:fc:34:87:03:0f:63:90:e6:
                    58:c0:93:88:80:00:d5:dd:7b:a0:af:2e:90:40:a8:7f:
                    02:06:a7:7b:db:40:6b:f7:2d:e0:5c:00:f8:3e:5a:ad:
                    ad:59:33:e3:a9:e8:3b:1d:22:79:63:09:b2:55:58:c2:
                    72:d9:ab:7e:1d:ae:e5:b4:44:70:1c:cb:3f:e4:cd:56:
                    93:2b:32:a2:f7:67:b1:31:a4:c1:a3:81:0e:ab:23:e5:
                    8e:6a:4b:c5:0c:b8:6d:5d:a4:fb:63:f7:72:95:91:91:
                    e6:9e:aa:35:22:7d:12:40:ad:74:b1:58:7b:38:76:51:
                    d6:5c:9d:92:e3:fc:ee:f0:4c:6d:51:71:fe:a2:53:13:
                    b3:56:26:12:e3:c3:e6:e2:be:cc:7c:96:df:3e:43:7c:
                    ab:13:6c:04:2c:b1:ba:0c:8e:bb:5d:3e:7a:4c:88:48:
                    6b:87:91:6e:23:a2:35:f1:c2:69:c0:9c:73:0e:1c:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:e4:0f:63:d8:5a:5b:94:85:98:e0:83:6c:01:cd:da:
        8c:78:3b:40:e3:95:51:4a:32:07:08:a6:5c:35:14:ae:
        9c:44:cb:2a:18:81:d2:dd:7e:c8:73:2e:cf:65:44:7a:
        b5:c5:22:d3:66:2d:a4:ec:09:4d:43:d6:45:78:40:0c:
        84:15:6c:23:83:73:fc:d7:f4:b4:a1:46:e5:1f:5c:77:
        e9:eb:4d:3b:0a:e1:9f:49:09:08:c4:80:34:39:6e:94:
        b9:55:f2:0f:72:28:17:b5:3c:08:a0:3d:22:46:f3:97:
        d9:5d:08:5e:c7:d7:85:5d:eb:bf:93:6b:2e:7e:4f:b1:
        45:12:8a:a8:17:9a:52:16:11:dd:75:ca:18:d6:36:6c:
        c2:88:76:68:e1:f0:4a:f2:ed:02:46:21:81:21:86:d8:
        db:f2:ef:2a:f2:63:a9:21:2c:d9:b4:cb:f4:4d:55:16:
        e5:4d:8c:cb:f6:d1:3f:bc:c1:95:6c:d6:ab:65:34:cd:
        82:fc:f5:e5:3a:87:d4:a8:01:e5:a1:a5:e7:50:bb:84:
        48:0d:3f:7e:a1:82:d1:4a:a6:56:fa:b2:09:9d:b9:a3:
        d0:a4:3d:16:45:e4:b5:1f:a6:4c:b2:41:f8:c2:5d:d8:
        53:fd:cf:71:1c:bf:d5:3c:5c:97:c1:bd:f9:1d:e6:5e
    Fingerprint (SHA-256):
        47:15:E5:30:51:B3:05:AA:39:1E:71:00:D3:27:D3:3E:B1:A3:10:75:4D:4C:3C:A9:23:41:91:E1:F4:DE:C2:45
    Fingerprint (SHA1):
        0C:3C:79:12:D5:DB:65:21:BF:5C:70:72:19:60:18:1A:24:C9:E1:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6346: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6347: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6348: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6349: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153426 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6350: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6351: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6352: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6353: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153427   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6354: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6355: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6356: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6357: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153428   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6358: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6359: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6360: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6361: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153429   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6362: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6363: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6364: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6365: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6366: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6367: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153426 (0x1dee40d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:21 2017
            Not After : Mon May 02 15:34:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    93:1e:b9:9d:a7:34:3c:30:70:85:7a:71:b9:da:c8:af:
                    5e:5e:58:b6:04:f4:94:c4:e9:86:25:96:8d:72:71:d9:
                    d3:41:47:45:da:11:8a:e8:f3:13:6a:a5:8d:aa:18:24:
                    a1:1f:83:e2:47:da:67:84:09:18:3a:6f:da:80:a7:09:
                    80:65:6c:bf:d9:47:5d:39:09:71:7f:66:ad:54:d3:d2:
                    8e:55:4f:dd:05:27:b0:53:ed:3f:98:da:0b:c7:ab:04:
                    2f:cf:13:2b:1c:9c:f6:8a:d7:d1:82:61:32:79:d1:fd:
                    e5:ef:f8:0f:a9:f0:a2:a4:91:c4:ae:13:07:c6:a2:d9:
                    fc:6f:6f:56:c7:e1:78:f1:ac:78:38:96:db:e7:f2:d0:
                    3f:1e:14:84:c7:3c:9d:01:19:c3:c3:12:61:ff:e8:30:
                    a7:4b:c6:9e:20:c4:22:eb:73:65:65:d4:e2:25:db:ef:
                    08:8d:fe:73:ac:5d:b7:83:eb:29:bf:b5:55:36:05:1e:
                    01:0d:3b:4b:ce:41:bf:9c:29:9d:bd:4a:5b:5c:ad:9e:
                    d9:a7:83:e5:11:20:f3:fc:db:52:f7:42:00:7c:87:00:
                    e4:73:7e:d6:4b:69:b5:a3:f7:e3:b0:08:5d:56:be:4d:
                    d3:01:ce:2a:b0:db:a1:21:26:0f:20:ac:b5:31:d9:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:e9:f7:c4:e8:be:78:a7:58:be:56:ee:f7:9e:af:fc:
        b3:42:61:64:2c:b3:f9:42:b5:07:88:a0:8f:0d:63:c7:
        76:84:2e:ad:f8:4c:f6:02:63:c5:af:24:9f:45:f1:d8:
        a3:e7:f2:09:76:43:fb:91:f7:23:69:e3:11:c3:d4:50:
        00:4f:47:45:74:b0:56:76:b0:a3:63:e9:11:4a:62:cd:
        75:82:8e:98:01:72:ab:44:f7:b4:9d:de:ff:68:b2:6c:
        08:71:2a:ad:26:37:ca:46:ea:ad:77:5f:d5:03:d4:47:
        1c:21:ee:f9:1f:41:0a:f9:5e:d6:f3:58:3e:64:18:16:
        44:a6:e1:85:79:14:0a:aa:a3:6d:a3:12:5b:a4:db:d5:
        bd:d8:a6:82:4e:a5:d7:8e:ac:7b:c0:c5:7b:4b:76:ea:
        2b:19:d7:dd:f7:f4:a7:89:dd:4e:c3:a5:04:9a:9e:11:
        42:4b:fe:1e:6d:2d:10:79:14:72:5d:3a:fc:e7:70:b7:
        03:22:47:8a:2f:4e:47:29:45:cd:e3:fc:47:a8:d3:b8:
        30:76:a5:c9:12:2d:7f:45:ae:0f:6d:b0:74:9a:a5:c6:
        e0:1e:13:29:78:0d:3d:e1:88:64:6b:54:17:93:e4:c0:
        5d:be:ad:fa:9e:a0:9a:3b:f1:cd:2a:20:27:a2:38:d3
    Fingerprint (SHA-256):
        20:F4:1E:5E:3D:DE:F6:6B:2E:BF:2F:B9:0A:64:25:91:B8:50:51:EE:9A:06:1B:F0:9D:7C:1C:8A:12:63:AE:CB
    Fingerprint (SHA1):
        D5:8A:44:68:74:FC:23:FA:2A:3D:56:4B:7B:38:A9:71:21:87:6C:AA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6368: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6369: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6370: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153427 (0x1dee40d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:21 2017
            Not After : Mon May 02 15:34:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:37:49:b9:02:a6:51:20:90:c1:b7:f8:1e:a1:f3:4e:
                    ef:1b:3a:2b:a8:72:dc:2b:48:c7:c9:26:20:e2:c5:71:
                    93:2f:5c:f4:ac:df:d8:28:ab:f6:fd:94:52:08:ae:cf:
                    1a:03:45:cc:b8:03:c5:f2:4e:ff:2f:74:d7:21:7f:6b:
                    08:f1:9e:0e:9d:08:4b:d4:72:e5:86:3a:5d:b0:47:30:
                    32:c6:bf:29:e5:91:8a:fb:9d:3c:21:04:91:2a:de:71:
                    87:c9:94:d1:35:c3:62:03:33:a9:14:ac:0e:4a:3e:cd:
                    c8:1d:6a:cd:7d:05:4c:01:73:c0:df:19:c5:df:01:14:
                    6f:8e:27:5c:0b:dc:5f:d5:6a:7f:a5:9d:df:5c:4b:6e:
                    e7:a0:5e:28:2a:22:b0:e2:55:4e:73:1c:69:74:db:c3:
                    71:b0:95:3e:0c:58:7f:6b:e7:90:36:f3:15:66:69:93:
                    37:ee:5b:20:97:76:00:4f:7f:c2:dd:70:9c:be:96:58:
                    c8:cf:e8:a3:a4:a6:1b:96:83:8b:77:de:67:7e:9b:86:
                    f7:93:b9:f3:d3:e5:76:ea:c1:f3:c0:74:97:f2:f7:49:
                    d9:87:b8:c0:01:38:b6:09:6a:8c:41:af:35:db:da:21:
                    ba:3b:53:73:74:d1:41:13:24:43:ae:93:f3:bb:9c:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:3a:4d:d6:78:98:1a:90:6b:5f:83:34:8f:fe:ce:ed:
        04:de:36:63:d3:41:b3:b2:12:56:fc:24:d5:3f:15:37:
        2b:28:c7:c5:ed:f9:7e:dc:f8:b4:d6:64:a8:51:90:34:
        77:da:95:dd:ad:00:d3:11:0d:36:a1:e4:ef:7f:4d:68:
        81:75:db:36:6c:ec:83:4e:87:de:62:9c:53:d3:24:de:
        b7:a4:5a:f7:88:dc:ea:38:5f:03:65:fe:17:89:c9:64:
        fd:d0:cf:fa:b9:6b:a8:2f:cc:79:02:30:b0:89:f2:ce:
        ae:d2:c5:ba:85:85:a0:d5:1b:eb:7f:09:c1:21:f0:99:
        fe:4a:54:33:12:b6:34:78:60:03:f6:13:14:b0:c2:b6:
        1a:3e:c9:72:8d:40:2f:88:88:9f:11:34:fe:bd:28:e3:
        6b:8f:dd:4c:8c:fb:a5:9f:dd:1c:37:86:71:bc:14:d1:
        7d:ac:45:1a:84:84:ff:49:db:b0:8b:83:ba:5c:3b:06:
        d0:59:a6:c7:7a:72:1d:a2:2e:b7:88:9c:29:ee:ca:f0:
        ed:85:3b:f4:43:8a:c4:9d:8b:96:50:e9:f2:c0:56:88:
        14:70:37:79:c2:4b:4d:0d:5d:cd:be:c9:b3:de:ae:98:
        c0:b3:89:13:34:c6:c7:72:d0:88:5c:8f:99:66:6c:9d
    Fingerprint (SHA-256):
        BC:49:98:1B:A3:76:54:C2:3B:F8:69:1B:08:18:1B:81:C8:A0:F3:D6:0C:CE:99:72:03:63:FB:FF:7F:A9:61:EE
    Fingerprint (SHA1):
        12:FB:5C:F2:BF:9E:B0:DD:FD:E6:3B:6E:34:2B:3A:43:C6:85:CE:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6371: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6372: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153428 (0x1dee40d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:21 2017
            Not After : Mon May 02 15:34:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:9b:3d:b1:1d:6b:01:11:83:72:82:94:d5:5e:94:13:
                    51:c3:a6:02:e1:ae:9c:9d:a1:e9:22:9f:b7:14:53:a7:
                    6a:ae:5f:b8:39:78:f7:23:e3:f0:b0:dc:42:1e:8b:6d:
                    df:a5:07:0b:8e:e7:ae:b0:44:61:f9:e2:65:0c:ca:88:
                    2e:09:8c:dc:96:4d:ee:40:00:de:04:00:47:4a:71:f7:
                    0f:41:e6:35:07:6d:2d:bc:84:80:13:78:f9:f2:bc:7e:
                    06:67:26:0d:5d:02:17:87:e4:cb:01:d4:33:b5:c5:f4:
                    9d:8f:f5:96:52:37:30:6a:2e:57:e5:27:c8:0d:dd:ed:
                    e2:6b:ef:55:26:75:dc:cd:78:22:c3:c5:02:92:03:74:
                    cf:de:d0:59:4f:d9:49:e3:43:40:55:14:5e:43:8e:a2:
                    9d:33:81:bc:5a:4a:60:81:aa:34:83:34:ea:fc:35:fd:
                    0c:24:a7:cd:fd:83:04:f8:96:03:06:3f:0b:04:ff:da:
                    df:55:24:77:19:bf:68:d6:47:a4:ae:01:8a:e3:2a:fc:
                    86:46:ed:f0:e4:54:a6:10:1b:7b:3d:43:b1:54:91:d2:
                    fd:d8:af:94:78:26:dc:d4:8d:ed:73:44:74:be:7a:6d:
                    51:3a:c7:98:c0:7f:75:4b:dc:b8:8d:99:55:69:24:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:b6:f9:6f:80:2a:e5:6b:0c:2b:21:c1:3e:7c:8c:52:
        ca:a3:a7:61:70:c0:a1:c0:56:d4:9f:c3:b4:f6:b3:53:
        cb:54:88:10:8f:e7:06:ee:59:33:91:7c:5d:04:5e:17:
        2f:b9:3e:e7:78:53:85:02:15:40:08:88:46:fc:f1:3a:
        36:e3:5c:02:21:db:23:d3:c9:59:88:cb:71:5d:bb:73:
        47:0d:c4:61:39:ba:53:7d:d7:e9:1e:5a:5d:c0:3e:9f:
        9a:53:bd:b8:3b:71:2a:25:b6:eb:38:d5:9a:3b:95:69:
        30:50:b0:5e:f2:fa:79:5d:62:6d:72:8b:a2:3d:d7:d9:
        ad:b2:65:b9:b1:dd:bb:0e:f0:05:7f:e6:7a:82:51:f9:
        d1:cb:97:cd:9c:1c:56:23:a6:05:d1:81:59:b3:31:20:
        33:14:e7:6a:46:c6:ee:4d:f9:4a:20:61:8b:b7:b3:aa:
        7a:d3:ce:78:00:ae:76:c6:fc:bc:b5:54:25:d8:fb:b4:
        d3:40:8a:77:74:5c:0d:30:5d:64:2f:98:cf:7e:d4:49:
        4f:98:6a:7a:35:d0:ab:93:63:a1:69:d2:88:c7:e4:df:
        dd:c4:a8:ff:70:cf:db:5b:54:38:fc:77:60:d8:31:50:
        05:4e:d6:10:00:99:43:08:2f:2e:3c:26:76:72:25:c7
    Fingerprint (SHA-256):
        64:83:02:70:12:9B:1D:FF:D7:B5:FB:85:66:1A:E5:00:5C:33:D1:23:7E:FB:4A:B1:55:08:3C:95:A8:A9:14:B4
    Fingerprint (SHA1):
        3D:77:82:93:8D:CC:D5:CA:49:03:C0:DB:36:6C:F0:5B:B8:49:77:C1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6373: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6374: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153430 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6375: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6376: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6377: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6378: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153431   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6379: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6380: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6381: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6382: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153432   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6383: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6384: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6385: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6386: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502153433   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6387: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6388: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6389: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6390: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502153434   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6391: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6392: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6393: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6394: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6395: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6396: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #6397: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153430 (0x1dee40d6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:22 2017
            Not After : Mon May 02 15:34:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:e9:93:14:a7:45:65:46:dc:63:fe:49:28:82:c2:40:
                    09:49:db:b0:42:f8:29:65:03:2e:0f:21:ac:3d:fe:59:
                    45:35:bd:cb:a3:2b:99:61:73:69:63:97:f1:a3:60:2d:
                    5c:58:c3:d7:ef:53:bd:7a:7f:de:15:cd:25:53:4b:08:
                    13:e1:63:63:a5:05:28:de:ab:63:e8:06:74:96:3e:af:
                    17:11:67:73:c1:fb:f6:ef:bb:19:b4:70:86:ae:36:56:
                    0c:35:f1:66:f5:42:e7:ed:32:e8:24:a5:9f:16:f3:5e:
                    e3:9b:27:d5:81:28:16:dd:be:43:d9:81:d5:93:f9:5c:
                    f5:69:c9:3f:d8:f2:21:52:b1:d6:15:04:0b:7b:18:35:
                    a9:2a:55:44:ce:b4:35:f7:6b:9a:2f:a3:1a:1b:08:e4:
                    f8:2b:f5:38:cb:4d:7d:a7:f6:e1:79:9a:b4:3f:cf:04:
                    5a:1b:86:40:19:93:03:16:d7:6a:d1:9b:b6:35:ae:91:
                    34:cd:ff:4c:21:6c:f2:6e:b7:60:9e:53:42:63:e5:47:
                    a9:44:a4:63:bd:4f:25:26:15:a3:fb:81:57:20:68:db:
                    db:ae:14:dc:2f:17:0c:6e:71:bf:f2:be:86:e3:22:d6:
                    72:20:9e:dd:c2:bb:f4:39:a9:91:f9:d8:d9:e0:f6:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:98:e8:a3:e5:81:ac:88:04:f7:bf:a2:ae:97:7e:36:
        91:7c:62:47:35:e1:27:c3:d6:ba:24:d0:10:af:c2:88:
        32:1f:b0:c4:e8:21:05:be:5c:a5:f2:78:21:59:a2:4f:
        20:7e:09:0d:7a:97:29:6b:b0:b9:c6:53:66:90:91:53:
        9a:04:12:77:15:82:67:8a:35:a6:ea:5c:74:b4:0c:a5:
        57:1c:f0:fa:cc:e7:65:56:86:fe:4a:e3:5b:20:81:ab:
        84:0a:5a:6c:62:cd:75:ed:54:59:78:32:e2:b9:7b:69:
        71:01:dc:f6:8e:06:e2:c4:5d:f3:4a:3b:c8:86:95:12:
        5d:45:10:fa:d8:f0:a5:a6:32:69:00:7d:01:ca:71:0c:
        20:90:7d:cf:3e:7d:5d:3e:23:27:90:c1:a9:52:5e:d9:
        8e:52:86:a2:0b:9f:6e:c7:70:46:4a:c7:43:29:7b:8c:
        1c:66:6c:ef:29:80:8d:db:31:f2:28:a1:fc:79:42:4a:
        9e:38:dd:bb:c6:88:49:1d:12:f2:b1:6e:98:05:ff:61:
        08:28:82:ba:d5:8c:c8:e3:72:ec:45:15:91:6a:b5:69:
        89:ad:47:ca:00:26:4b:ee:73:13:31:d6:5f:82:66:e8:
        e0:15:25:de:ab:ee:4f:f1:33:75:e7:2f:2c:a8:91:96
    Fingerprint (SHA-256):
        12:58:3F:3C:4D:63:C8:62:2A:D1:34:66:52:C3:F5:8B:69:F2:67:DB:7E:C3:08:45:FD:9D:A9:EA:2B:FE:C0:49
    Fingerprint (SHA1):
        6E:0E:56:41:C5:41:9B:B5:1E:ED:79:CF:8E:D5:95:A7:AE:E2:CA:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6398: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6399: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153431 (0x1dee40d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:23 2017
            Not After : Mon May 02 15:34:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:24:b4:51:b4:e8:fa:78:69:a6:ff:7c:18:e7:6e:4b:
                    5a:dc:89:ec:fd:77:ef:0b:ff:ed:58:04:ed:a1:45:bb:
                    8e:66:71:26:99:a0:b9:c0:a4:34:90:0e:ac:87:18:05:
                    6f:97:ad:61:c0:c0:40:a9:91:59:47:73:e1:e0:1b:77:
                    ad:af:15:90:e9:9f:f0:95:d0:6e:b9:7f:c4:ef:53:d6:
                    37:0e:b1:37:f7:fc:ba:bf:3b:7d:03:6b:f3:d8:79:5a:
                    69:8c:3f:6b:ef:c2:ca:ec:1d:9c:24:80:15:37:44:1d:
                    e6:7a:82:d3:12:44:92:13:39:85:32:57:05:62:4b:18:
                    1d:92:6e:34:c8:d3:d4:47:82:28:26:ce:e4:45:ce:05:
                    53:41:d3:d6:1c:4e:49:ba:fe:fa:cb:be:34:8f:90:d2:
                    1b:0a:30:3d:94:ae:30:19:58:28:e7:c1:04:e5:ee:86:
                    b2:9f:3a:43:cf:74:f3:26:22:94:6e:56:3d:68:24:0c:
                    06:2b:b4:93:7b:18:9d:1b:ef:3f:7d:53:b0:99:f1:e4:
                    e3:66:7c:b9:44:a7:cb:4b:ba:fd:65:a2:d4:23:39:ce:
                    21:03:d9:d8:57:18:e6:cc:8d:a5:33:64:6c:db:76:b2:
                    1a:99:4c:7f:88:27:a5:9b:1e:8c:9f:a1:37:ef:f0:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:a6:6f:b7:45:11:f9:f7:0d:52:d7:fe:b7:51:e4:df:
        2f:8a:41:28:84:93:60:85:5e:aa:11:48:ed:56:2f:13:
        00:38:4c:55:f4:f4:94:ea:7b:ae:da:ee:67:46:22:5a:
        3c:a6:5e:06:99:09:31:41:1f:12:b4:71:a2:e0:f2:6c:
        81:f2:8c:55:f3:98:2d:07:74:82:00:76:a5:b7:e7:a4:
        4f:5a:cc:0f:85:19:e8:3f:92:8d:a0:f3:d8:78:bf:05:
        13:b7:ef:12:ef:17:45:38:07:53:aa:26:c1:3c:87:21:
        a0:d2:12:ab:16:59:96:f3:09:54:f5:45:7e:34:6e:af:
        a9:14:8b:a3:3f:53:4d:83:4a:2a:92:f6:34:5a:6b:e9:
        3c:dd:d6:a6:43:2e:8b:93:30:ca:bb:9e:4d:40:0c:4a:
        a8:82:ff:2f:65:e0:c9:3c:06:48:bc:49:43:52:4c:96:
        cb:66:e5:8f:06:e5:8a:76:3c:78:66:2f:95:e1:b7:f7:
        72:0e:03:e2:8d:cb:83:05:1e:65:55:b0:ff:41:cb:8a:
        dd:ed:a8:d2:3a:d8:bf:ed:08:f2:2d:1d:97:56:19:19:
        41:36:d1:e8:db:df:b0:68:fc:c6:65:5a:b3:29:a7:ab:
        87:00:3f:a1:a1:3d:1c:ae:1b:a5:8c:17:f2:c9:5d:e0
    Fingerprint (SHA-256):
        DD:68:EE:14:62:64:71:74:FD:00:21:40:AF:91:0D:9D:C0:65:73:EB:F7:78:A7:1D:52:AF:7C:98:F2:9B:07:11
    Fingerprint (SHA1):
        CE:1C:F7:50:41:DB:93:28:C3:AD:0F:CD:2C:0A:B5:80:33:3F:48:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6400: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6401: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6402: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153432 (0x1dee40d8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:23 2017
            Not After : Mon May 02 15:34:23 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:4d:74:7a:c0:3b:fa:72:d9:bb:41:5c:6a:fa:45:a0:
                    2b:f8:1b:de:23:fb:5c:34:4b:db:de:f8:37:84:b7:0d:
                    e2:f5:6d:e9:d6:57:05:c7:ba:52:0d:86:ad:88:13:74:
                    32:b0:f3:e9:43:2e:4c:ae:02:6f:8c:2b:4b:8b:24:9b:
                    98:4f:94:be:49:8e:0a:cb:e1:8b:1d:8c:73:89:57:92:
                    85:80:ec:61:28:da:ca:4d:44:dd:7b:a4:4d:a5:a8:ed:
                    bc:24:d3:71:0e:76:51:6e:f6:1c:38:5f:f8:00:be:92:
                    d0:6e:4e:43:3c:e0:6f:88:bf:fd:d0:d1:38:5a:e5:64:
                    06:20:52:70:80:80:04:a4:b8:af:50:47:1d:1a:3e:50:
                    6f:4e:cc:17:74:90:e6:26:b7:7d:ef:cd:28:fb:a7:96:
                    b6:a8:c2:fa:a2:b3:8f:cb:62:35:7a:0d:62:11:c2:39:
                    c6:37:a1:e1:c9:8d:80:15:48:f3:dd:f7:8f:88:b0:c7:
                    0f:08:16:ca:c1:e4:e5:90:4d:9d:37:c0:8f:57:1d:6f:
                    b6:fc:73:f9:f9:74:fa:b7:7c:d6:55:b0:84:e9:9b:55:
                    7e:30:a7:5f:f5:e1:d3:cb:c1:ea:3a:ae:a0:3f:9a:f3:
                    b5:5e:4e:75:78:da:3d:13:df:ec:b3:e1:ed:43:cc:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:3a:c1:48:2c:89:b0:50:fa:d4:43:cc:69:ce:d8:a2:
        32:9f:36:c6:26:02:dc:04:06:86:4d:96:45:18:89:c7:
        ca:79:59:fb:e9:1e:6b:e1:21:0e:e7:a5:e7:e5:64:22:
        b7:40:7a:2d:05:40:32:2f:57:c1:4f:27:59:70:0c:39:
        3e:0e:32:79:b3:f7:2f:a0:18:a0:e7:a4:35:19:d4:13:
        59:15:32:76:69:5d:ba:a9:e7:f1:65:66:af:a3:b9:e1:
        99:21:af:5a:60:f4:4f:62:0c:f6:5a:44:21:a7:cc:de:
        46:79:df:09:c4:a5:7c:44:1c:b8:ac:b1:d0:de:f4:19:
        85:d1:d3:0c:8c:ec:4a:cf:4c:07:bf:4c:8d:cd:57:8d:
        03:02:c3:0e:43:0e:cd:6b:b1:59:ce:d1:63:2a:c2:c3:
        ce:46:ef:ca:e1:25:ba:d9:7c:13:aa:1c:d9:e3:4f:81:
        35:bd:a8:8a:36:5b:02:63:87:d8:3c:4d:56:93:7c:bb:
        8b:11:c0:98:79:b6:03:cc:5d:2d:fa:13:1d:5b:28:e4:
        47:7b:77:5e:9b:ed:8d:1d:83:9b:3d:b8:18:76:49:b5:
        ee:4a:d7:d8:d9:15:d4:18:53:3c:3c:51:7c:57:74:9f:
        8d:4d:e3:c5:f8:63:3b:19:34:e3:1a:5d:b7:c2:76:e9
    Fingerprint (SHA-256):
        D5:E8:20:85:84:B0:54:B7:99:86:DC:92:E2:FB:91:A3:AE:E3:DC:B1:1D:62:D4:02:BE:0A:AA:A1:2B:29:40:DA
    Fingerprint (SHA1):
        90:3F:B5:CC:73:D5:6C:5D:77:73:76:9C:DD:AF:06:2A:98:E9:68:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6403: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6404: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153435 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6405: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6406: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6407: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6408: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153436   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6409: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6410: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6411: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6412: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153437   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA1Root-502153344.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6413: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6414: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6415: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6416: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153438   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6417: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6418: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #6419: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153435 (0x1dee40db)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:24 2017
            Not After : Mon May 02 15:34:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:bb:2b:2d:42:6a:d3:e0:5e:af:f4:56:32:48:1d:b4:
                    4b:a2:bf:e8:7e:31:49:70:75:9b:5e:da:c0:73:0f:60:
                    4a:be:b1:7b:17:dd:f8:25:97:a7:ef:c9:43:8a:03:9a:
                    61:bf:7e:f9:28:f8:2a:16:1d:08:1f:f8:5f:d9:6d:58:
                    a9:35:be:2d:84:fd:13:0f:a3:e8:28:82:dd:34:f0:1e:
                    f3:8f:59:b3:71:ab:25:23:1e:6f:49:a6:9c:10:09:09:
                    0c:15:7f:ad:fe:28:7e:a9:60:df:23:f0:99:59:05:2a:
                    9a:ac:6a:19:9a:e8:74:bf:91:c5:72:24:33:76:93:ce:
                    94:f9:5e:a8:6e:63:83:7c:0c:7f:b5:97:da:a4:a7:1c:
                    31:39:2a:5a:af:88:3c:1b:e4:d1:98:74:80:7a:8e:1b:
                    86:51:73:6b:59:46:fd:bc:0c:12:ae:ef:6b:c5:c8:d2:
                    fd:14:5d:0a:3f:f1:48:5d:19:43:0d:8c:c3:cb:d7:e2:
                    41:f0:83:80:64:32:ac:e2:c4:1a:3e:9a:78:55:90:32:
                    a2:d0:aa:85:e7:75:8a:e5:b4:a3:a2:05:cf:df:63:b1:
                    db:d2:57:fc:64:9f:00:68:10:0d:a8:a1:21:5a:e9:1c:
                    05:d9:39:a1:51:a0:85:4a:29:55:87:87:9e:4d:05:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:c4:c8:f0:a2:00:ab:27:9c:64:9b:6e:3e:58:77:40:
        69:4f:ed:10:63:47:1e:cb:0f:b8:b9:0b:0e:be:ea:b3:
        ae:ec:df:49:e3:ec:ef:5d:58:73:dd:a6:6a:f4:30:f9:
        35:6a:b7:de:23:ca:46:d5:78:07:5d:0f:64:61:e5:d1:
        1b:b3:60:eb:ec:b2:9e:1a:48:85:d6:7f:0a:40:4b:4f:
        4f:de:9d:37:f9:75:a8:58:ac:c8:2e:42:95:e2:12:c0:
        e3:4a:af:56:78:a2:3a:f7:f8:5f:89:19:cb:e9:96:ae:
        b1:42:18:28:55:2b:b5:94:6b:53:15:04:18:07:cf:e7:
        6f:7c:aa:8b:9d:00:5e:0e:51:e1:e1:ff:8c:57:6d:16:
        59:d7:03:d9:dc:b0:64:90:37:ca:43:f3:ba:7a:c8:8a:
        aa:cc:0f:3d:7c:a3:9b:c2:93:03:62:a4:78:7c:42:a6:
        24:d9:be:8b:21:15:42:8d:c6:53:44:c8:de:64:0d:4b:
        55:20:fc:10:a1:3f:dc:52:4d:31:73:61:7b:85:b1:e7:
        3d:f2:00:9b:36:c7:0c:e0:07:7f:c8:c7:c0:f0:d4:87:
        0c:5d:5f:23:4c:71:38:53:86:73:53:da:df:1b:2e:e9:
        05:d2:56:50:ad:63:e4:d1:4e:84:a0:a8:5d:bf:bf:01
    Fingerprint (SHA-256):
        21:85:87:2A:D2:8A:68:B5:C0:F6:43:D7:F5:FE:98:07:E5:CF:0D:0E:8A:A4:7D:9B:9C:5A:36:93:DD:F7:4C:7B
    Fingerprint (SHA1):
        4E:A3:A6:4D:79:E7:72:D7:03:A1:E2:F5:32:5C:F8:CC:EA:77:83:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6420: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6421: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153439 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6422: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6423: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6424: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153440 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6425: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6426: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6427: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6428: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153441 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6429: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6430: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153442 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6431: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6432: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6433: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6434: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6435: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153443   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502153345.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6436: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6437: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6438: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6439: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153444   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6440: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6441: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6442: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6443: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153440 (0x1dee40e0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:25 2017
            Not After : Mon May 02 15:34:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:4f:cd:7a:03:53:23:01:f3:0f:20:ed:8e:93:61:c9:
                    34:73:3f:34:97:68:eb:3d:03:51:4c:0a:de:74:28:05:
                    8e:0a:30:b6:61:a3:93:e6:f8:58:45:2a:35:86:fc:31:
                    dd:cd:82:9d:ee:ca:1f:6b:a9:e8:1e:72:44:5a:91:65:
                    ff:36:99:7e:83:a4:53:34:04:96:5d:96:74:e8:1b:d3:
                    ea:f3:5a:33:4c:7f:b6:ce:ea:eb:ef:7c:f5:fa:a4:f9:
                    dd:c8:6b:8e:e6:12:6f:6f:86:e1:66:9b:fd:8a:b4:89:
                    24:fe:53:a1:6d:41:24:7c:8d:84:6f:2a:41:d8:37:ce:
                    a6:1c:a7:4a:6d:4c:52:5e:d0:9b:41:b0:a9:8b:25:0c:
                    ec:f9:0e:12:e2:19:b4:52:07:2e:5b:aa:54:b2:ac:cf:
                    1e:74:e7:f6:e4:85:d9:0e:c7:12:17:0b:7d:d9:d2:54:
                    76:44:22:1c:27:ee:e1:de:f4:19:cb:02:0b:71:e0:46:
                    ca:de:b9:9c:6c:45:2b:1d:d9:c2:b9:1e:d2:4e:ee:70:
                    c5:97:45:81:7e:61:5b:07:bf:f8:c0:07:8c:dd:d7:97:
                    a4:92:b1:2e:7d:a5:8a:4e:24:a8:63:70:a2:eb:e5:e9:
                    9b:91:52:9f:33:12:dc:97:a2:e4:0e:e4:49:52:42:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:20:c5:58:5f:8a:3b:f9:06:58:6c:12:a7:a1:62:63:
        39:7c:1b:a3:ea:7a:9f:c8:1a:a6:40:65:91:3b:64:49:
        01:c9:d0:4c:a7:41:02:b8:6c:29:5d:a8:90:03:7a:97:
        9a:75:82:e1:1b:e0:41:f9:07:08:ac:49:9f:75:6c:5e:
        8d:e4:31:65:17:60:9e:d5:05:36:48:b2:71:6b:71:51:
        2d:1f:88:0e:97:93:f1:18:38:3f:62:eb:fb:f0:02:7a:
        8b:e3:3d:5e:b9:f1:22:be:39:70:e2:1a:30:f0:86:0b:
        17:44:c0:55:ec:2b:4b:36:c8:09:af:4f:43:13:df:fd:
        20:ea:d9:12:89:61:ad:42:bc:c9:b6:32:73:7f:70:5c:
        19:37:64:f1:92:76:1b:8b:5a:3d:2e:99:48:77:a8:53:
        9d:10:48:72:87:a1:92:65:43:fa:2b:94:fc:ef:df:df:
        56:a5:3e:71:80:c9:96:ed:a4:30:1d:99:71:ab:9f:92:
        36:10:75:43:38:1e:6d:0b:f9:74:9d:3e:2c:81:5b:78:
        17:6e:fc:66:bf:e7:de:3f:38:fa:ba:08:11:67:05:9a:
        ba:7e:5b:5d:65:5d:6e:93:46:e3:31:5e:ff:71:a9:a1:
        df:65:f2:cc:fd:a8:3b:b3:d1:55:57:1c:e6:dd:ef:3c
    Fingerprint (SHA-256):
        CC:83:4C:A0:AE:BB:98:E8:42:62:66:50:18:14:A1:A3:84:24:EA:F1:5C:8D:D5:66:DA:0D:92:03:FE:46:3C:15
    Fingerprint (SHA1):
        26:DE:A0:2D:A3:3B:27:C2:42:24:0B:94:0C:BB:27:3F:BF:AC:80:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6444: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153440 (0x1dee40e0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:25 2017
            Not After : Mon May 02 15:34:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:4f:cd:7a:03:53:23:01:f3:0f:20:ed:8e:93:61:c9:
                    34:73:3f:34:97:68:eb:3d:03:51:4c:0a:de:74:28:05:
                    8e:0a:30:b6:61:a3:93:e6:f8:58:45:2a:35:86:fc:31:
                    dd:cd:82:9d:ee:ca:1f:6b:a9:e8:1e:72:44:5a:91:65:
                    ff:36:99:7e:83:a4:53:34:04:96:5d:96:74:e8:1b:d3:
                    ea:f3:5a:33:4c:7f:b6:ce:ea:eb:ef:7c:f5:fa:a4:f9:
                    dd:c8:6b:8e:e6:12:6f:6f:86:e1:66:9b:fd:8a:b4:89:
                    24:fe:53:a1:6d:41:24:7c:8d:84:6f:2a:41:d8:37:ce:
                    a6:1c:a7:4a:6d:4c:52:5e:d0:9b:41:b0:a9:8b:25:0c:
                    ec:f9:0e:12:e2:19:b4:52:07:2e:5b:aa:54:b2:ac:cf:
                    1e:74:e7:f6:e4:85:d9:0e:c7:12:17:0b:7d:d9:d2:54:
                    76:44:22:1c:27:ee:e1:de:f4:19:cb:02:0b:71:e0:46:
                    ca:de:b9:9c:6c:45:2b:1d:d9:c2:b9:1e:d2:4e:ee:70:
                    c5:97:45:81:7e:61:5b:07:bf:f8:c0:07:8c:dd:d7:97:
                    a4:92:b1:2e:7d:a5:8a:4e:24:a8:63:70:a2:eb:e5:e9:
                    9b:91:52:9f:33:12:dc:97:a2:e4:0e:e4:49:52:42:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:20:c5:58:5f:8a:3b:f9:06:58:6c:12:a7:a1:62:63:
        39:7c:1b:a3:ea:7a:9f:c8:1a:a6:40:65:91:3b:64:49:
        01:c9:d0:4c:a7:41:02:b8:6c:29:5d:a8:90:03:7a:97:
        9a:75:82:e1:1b:e0:41:f9:07:08:ac:49:9f:75:6c:5e:
        8d:e4:31:65:17:60:9e:d5:05:36:48:b2:71:6b:71:51:
        2d:1f:88:0e:97:93:f1:18:38:3f:62:eb:fb:f0:02:7a:
        8b:e3:3d:5e:b9:f1:22:be:39:70:e2:1a:30:f0:86:0b:
        17:44:c0:55:ec:2b:4b:36:c8:09:af:4f:43:13:df:fd:
        20:ea:d9:12:89:61:ad:42:bc:c9:b6:32:73:7f:70:5c:
        19:37:64:f1:92:76:1b:8b:5a:3d:2e:99:48:77:a8:53:
        9d:10:48:72:87:a1:92:65:43:fa:2b:94:fc:ef:df:df:
        56:a5:3e:71:80:c9:96:ed:a4:30:1d:99:71:ab:9f:92:
        36:10:75:43:38:1e:6d:0b:f9:74:9d:3e:2c:81:5b:78:
        17:6e:fc:66:bf:e7:de:3f:38:fa:ba:08:11:67:05:9a:
        ba:7e:5b:5d:65:5d:6e:93:46:e3:31:5e:ff:71:a9:a1:
        df:65:f2:cc:fd:a8:3b:b3:d1:55:57:1c:e6:dd:ef:3c
    Fingerprint (SHA-256):
        CC:83:4C:A0:AE:BB:98:E8:42:62:66:50:18:14:A1:A3:84:24:EA:F1:5C:8D:D5:66:DA:0D:92:03:FE:46:3C:15
    Fingerprint (SHA1):
        26:DE:A0:2D:A3:3B:27:C2:42:24:0B:94:0C:BB:27:3F:BF:AC:80:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6445: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6446: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153445 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6447: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6448: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6449: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153446 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6450: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6451: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6452: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6453: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153447 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6454: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6455: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153448 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6456: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6457: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6458: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6459: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6460: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153449   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502153346.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6461: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6462: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6463: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6464: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153450   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6465: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6466: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6467: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6468: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153451   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-BridgeNavy-502153347.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6469: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6470: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6471: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6472: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153452   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6473: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6474: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6475: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6476: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153446 (0x1dee40e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:27 2017
            Not After : Mon May 02 15:34:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:e6:3f:5a:a9:ea:82:ee:29:e3:77:46:c5:07:a1:c2:
                    0e:a3:2e:82:f4:85:3e:96:02:ac:1e:e6:d8:5b:ed:74:
                    f5:6c:86:d2:f6:79:c1:b2:76:f5:68:de:61:87:a2:c4:
                    63:4a:ad:ad:55:dd:62:73:7e:67:5a:fd:61:a9:76:32:
                    99:17:cd:e5:98:3d:4c:eb:23:44:c8:85:58:f0:85:b8:
                    bd:d1:83:af:d9:76:a1:56:59:cd:05:fe:3f:88:b7:0c:
                    fa:d6:71:ea:8a:a0:9b:0c:39:f8:8e:09:8a:0a:82:42:
                    cb:bd:e6:8e:f0:01:3e:0d:b0:56:09:a7:fb:95:42:51:
                    fa:7d:bb:59:a4:e6:00:25:ac:3f:fc:e3:97:b8:b8:0e:
                    bd:d2:5b:9e:8a:34:01:32:70:a5:60:62:69:5a:40:7f:
                    d1:a0:fa:a8:18:e7:5e:04:77:80:b0:2b:4b:2e:aa:c6:
                    8b:56:dc:1b:e8:52:9a:c9:33:81:37:13:c8:bf:ba:6a:
                    44:a5:95:1b:54:95:50:49:c7:01:56:b0:9b:e0:de:cd:
                    15:1b:70:ad:12:f6:18:c6:7e:65:34:2f:2e:23:57:20:
                    d5:c5:b6:b2:63:01:6a:11:f7:92:82:32:06:6f:ed:26:
                    37:ab:ed:09:74:27:ea:c9:64:89:36:f5:fd:68:4f:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:58:ac:ae:f7:17:95:43:74:34:05:e4:a3:97:13:d3:
        80:93:b5:79:91:6f:c9:25:fd:6c:64:09:81:3e:90:50:
        22:b2:1b:c5:ea:53:18:4a:a6:ab:eb:0b:f4:63:a7:77:
        28:65:91:b3:7e:51:a3:7d:b1:be:2e:47:e6:38:d7:ec:
        d4:3d:fe:3d:d7:76:d8:b9:f5:b9:4e:b3:e7:18:04:27:
        79:04:1f:fe:46:3b:83:bb:d6:ca:c9:cd:2e:23:d4:12:
        4d:01:60:16:80:9f:f8:09:f2:fe:b0:1f:9f:5d:ba:1f:
        da:7d:6d:b2:b8:8b:bf:87:eb:1a:e9:a0:02:13:bc:f6:
        ef:44:74:4a:e3:8d:d2:f2:a5:87:32:27:a7:6e:19:92:
        43:3b:ce:31:31:d9:80:23:1f:8b:15:a4:80:82:1d:ab:
        86:c7:0f:c9:47:34:9e:53:e8:13:ac:49:c3:09:3c:22:
        6b:30:dc:b2:e1:a5:13:b5:70:62:61:c3:a4:6b:24:1c:
        d0:89:09:c0:ed:f0:68:db:41:e3:eb:80:11:0e:15:bf:
        b1:57:60:6c:ac:7b:e6:14:f0:6d:8d:91:9b:a1:12:67:
        ba:9a:54:70:56:b4:e7:9e:c1:5c:f8:69:93:2c:fb:ce:
        02:23:59:24:28:2d:46:f3:0d:70:82:a8:eb:82:56:9c
    Fingerprint (SHA-256):
        14:DC:3B:F7:A3:00:0A:1E:2D:C8:68:57:AC:BF:23:5F:AD:47:98:35:19:90:76:97:B1:8D:7A:3C:E1:F9:6C:91
    Fingerprint (SHA1):
        AF:CF:CB:73:33:2C:C3:27:BE:BB:07:A2:D0:5D:85:05:E0:90:3B:9F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6477: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153446 (0x1dee40e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:27 2017
            Not After : Mon May 02 15:34:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:e6:3f:5a:a9:ea:82:ee:29:e3:77:46:c5:07:a1:c2:
                    0e:a3:2e:82:f4:85:3e:96:02:ac:1e:e6:d8:5b:ed:74:
                    f5:6c:86:d2:f6:79:c1:b2:76:f5:68:de:61:87:a2:c4:
                    63:4a:ad:ad:55:dd:62:73:7e:67:5a:fd:61:a9:76:32:
                    99:17:cd:e5:98:3d:4c:eb:23:44:c8:85:58:f0:85:b8:
                    bd:d1:83:af:d9:76:a1:56:59:cd:05:fe:3f:88:b7:0c:
                    fa:d6:71:ea:8a:a0:9b:0c:39:f8:8e:09:8a:0a:82:42:
                    cb:bd:e6:8e:f0:01:3e:0d:b0:56:09:a7:fb:95:42:51:
                    fa:7d:bb:59:a4:e6:00:25:ac:3f:fc:e3:97:b8:b8:0e:
                    bd:d2:5b:9e:8a:34:01:32:70:a5:60:62:69:5a:40:7f:
                    d1:a0:fa:a8:18:e7:5e:04:77:80:b0:2b:4b:2e:aa:c6:
                    8b:56:dc:1b:e8:52:9a:c9:33:81:37:13:c8:bf:ba:6a:
                    44:a5:95:1b:54:95:50:49:c7:01:56:b0:9b:e0:de:cd:
                    15:1b:70:ad:12:f6:18:c6:7e:65:34:2f:2e:23:57:20:
                    d5:c5:b6:b2:63:01:6a:11:f7:92:82:32:06:6f:ed:26:
                    37:ab:ed:09:74:27:ea:c9:64:89:36:f5:fd:68:4f:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:58:ac:ae:f7:17:95:43:74:34:05:e4:a3:97:13:d3:
        80:93:b5:79:91:6f:c9:25:fd:6c:64:09:81:3e:90:50:
        22:b2:1b:c5:ea:53:18:4a:a6:ab:eb:0b:f4:63:a7:77:
        28:65:91:b3:7e:51:a3:7d:b1:be:2e:47:e6:38:d7:ec:
        d4:3d:fe:3d:d7:76:d8:b9:f5:b9:4e:b3:e7:18:04:27:
        79:04:1f:fe:46:3b:83:bb:d6:ca:c9:cd:2e:23:d4:12:
        4d:01:60:16:80:9f:f8:09:f2:fe:b0:1f:9f:5d:ba:1f:
        da:7d:6d:b2:b8:8b:bf:87:eb:1a:e9:a0:02:13:bc:f6:
        ef:44:74:4a:e3:8d:d2:f2:a5:87:32:27:a7:6e:19:92:
        43:3b:ce:31:31:d9:80:23:1f:8b:15:a4:80:82:1d:ab:
        86:c7:0f:c9:47:34:9e:53:e8:13:ac:49:c3:09:3c:22:
        6b:30:dc:b2:e1:a5:13:b5:70:62:61:c3:a4:6b:24:1c:
        d0:89:09:c0:ed:f0:68:db:41:e3:eb:80:11:0e:15:bf:
        b1:57:60:6c:ac:7b:e6:14:f0:6d:8d:91:9b:a1:12:67:
        ba:9a:54:70:56:b4:e7:9e:c1:5c:f8:69:93:2c:fb:ce:
        02:23:59:24:28:2d:46:f3:0d:70:82:a8:eb:82:56:9c
    Fingerprint (SHA-256):
        14:DC:3B:F7:A3:00:0A:1E:2D:C8:68:57:AC:BF:23:5F:AD:47:98:35:19:90:76:97:B1:8D:7A:3C:E1:F9:6C:91
    Fingerprint (SHA1):
        AF:CF:CB:73:33:2C:C3:27:BE:BB:07:A2:D0:5D:85:05:E0:90:3B:9F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6478: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #6479: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153445 (0x1dee40e5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:34:26 2017
            Not After : Mon May 02 15:34:26 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:10:69:b4:ac:d0:40:c8:cc:0c:37:6a:cb:de:81:ab:
                    9c:2b:6e:29:b6:a4:62:66:5c:b8:07:b7:48:90:c8:56:
                    d7:1f:2e:fa:4b:dc:78:d5:d0:c0:79:68:a4:f0:33:ba:
                    6d:dd:68:93:00:0a:96:e0:f3:9e:5c:07:6b:22:a5:db:
                    dc:b2:03:fa:45:1e:9e:3d:8a:66:13:69:20:bb:54:29:
                    9d:8f:17:5e:99:df:cf:22:48:67:48:d2:71:04:ba:81:
                    4b:1e:7d:0a:f5:ec:09:b9:48:81:71:05:19:db:fa:c3:
                    af:22:de:3d:7a:fa:a5:f2:70:a1:5f:0b:f3:19:76:95:
                    6e:29:ec:8b:1e:79:ab:d1:4f:66:92:75:46:a9:b1:f7:
                    42:84:04:78:e5:f6:c7:b1:e2:dd:2d:24:ae:66:b8:b8:
                    33:f8:e8:25:7f:89:27:1f:9c:25:61:7c:aa:4f:0e:47:
                    92:02:7a:2c:9a:ee:11:f0:72:a9:42:ed:50:88:01:45:
                    c0:27:2d:3d:b8:54:da:ff:07:85:a2:06:71:38:ca:2e:
                    c1:56:9e:9e:df:a8:f4:12:5c:3b:07:48:bd:75:db:3e:
                    fe:85:6a:6d:ad:ab:89:95:06:b1:a4:62:40:43:2e:05:
                    5d:f6:a5:e4:5e:7b:44:43:7a:a0:b0:e8:a0:13:a9:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:a8:37:8d:ff:9a:ee:c8:18:d2:96:37:7a:b8:11:b3:
        09:aa:ec:fb:74:25:ef:5b:0c:27:2d:2d:c6:fd:86:01:
        76:eb:f5:8d:54:b4:1e:b5:c4:7f:52:73:71:7e:45:60:
        8c:2c:15:74:b9:7c:16:e3:e1:00:f3:4b:c4:97:a1:e6:
        ac:41:2c:c7:a4:af:f8:63:3d:22:9a:51:1c:08:a4:ea:
        cb:8d:f4:23:6b:17:e0:e3:d3:8a:e0:87:ea:11:af:a7:
        ac:c6:96:38:37:b4:17:7d:0d:ab:04:a7:08:63:e5:2f:
        05:19:eb:d6:16:83:f5:bf:3f:c8:f7:4c:5d:59:7f:c5:
        29:e7:ab:87:a6:12:07:16:b0:a3:0c:85:65:b5:05:66:
        ef:72:f1:cb:8c:a3:d2:33:ed:61:a6:6b:9a:f3:59:75:
        a7:75:3f:af:5f:67:93:ab:9c:bc:c6:26:f9:5d:1d:c1:
        0b:e6:44:09:c2:ea:e4:a4:41:26:aa:62:5c:57:e1:e5:
        3b:37:c5:66:b5:e2:a2:86:eb:05:8c:25:94:3d:38:ea:
        5c:d3:24:06:4b:b5:13:7b:a3:c0:9a:c4:1e:cf:41:4d:
        85:6a:f9:d4:ac:58:6b:04:95:8b:86:24:ef:49:0f:58:
        f4:c1:95:e7:d1:c7:d8:f3:bc:16:18:9e:c5:58:b4:15
    Fingerprint (SHA-256):
        FE:FC:33:D2:8B:F4:68:73:CC:57:24:81:0B:D5:5D:58:DF:D7:35:2B:B9:D5:69:A1:99:8B:F4:B9:3E:09:96:1F
    Fingerprint (SHA1):
        FC:82:50:2E:E6:2C:93:60:48:21:65:91:57:55:E3:33:69:6C:24:5C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6480: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153446 (0x1dee40e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:27 2017
            Not After : Mon May 02 15:34:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:e6:3f:5a:a9:ea:82:ee:29:e3:77:46:c5:07:a1:c2:
                    0e:a3:2e:82:f4:85:3e:96:02:ac:1e:e6:d8:5b:ed:74:
                    f5:6c:86:d2:f6:79:c1:b2:76:f5:68:de:61:87:a2:c4:
                    63:4a:ad:ad:55:dd:62:73:7e:67:5a:fd:61:a9:76:32:
                    99:17:cd:e5:98:3d:4c:eb:23:44:c8:85:58:f0:85:b8:
                    bd:d1:83:af:d9:76:a1:56:59:cd:05:fe:3f:88:b7:0c:
                    fa:d6:71:ea:8a:a0:9b:0c:39:f8:8e:09:8a:0a:82:42:
                    cb:bd:e6:8e:f0:01:3e:0d:b0:56:09:a7:fb:95:42:51:
                    fa:7d:bb:59:a4:e6:00:25:ac:3f:fc:e3:97:b8:b8:0e:
                    bd:d2:5b:9e:8a:34:01:32:70:a5:60:62:69:5a:40:7f:
                    d1:a0:fa:a8:18:e7:5e:04:77:80:b0:2b:4b:2e:aa:c6:
                    8b:56:dc:1b:e8:52:9a:c9:33:81:37:13:c8:bf:ba:6a:
                    44:a5:95:1b:54:95:50:49:c7:01:56:b0:9b:e0:de:cd:
                    15:1b:70:ad:12:f6:18:c6:7e:65:34:2f:2e:23:57:20:
                    d5:c5:b6:b2:63:01:6a:11:f7:92:82:32:06:6f:ed:26:
                    37:ab:ed:09:74:27:ea:c9:64:89:36:f5:fd:68:4f:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:58:ac:ae:f7:17:95:43:74:34:05:e4:a3:97:13:d3:
        80:93:b5:79:91:6f:c9:25:fd:6c:64:09:81:3e:90:50:
        22:b2:1b:c5:ea:53:18:4a:a6:ab:eb:0b:f4:63:a7:77:
        28:65:91:b3:7e:51:a3:7d:b1:be:2e:47:e6:38:d7:ec:
        d4:3d:fe:3d:d7:76:d8:b9:f5:b9:4e:b3:e7:18:04:27:
        79:04:1f:fe:46:3b:83:bb:d6:ca:c9:cd:2e:23:d4:12:
        4d:01:60:16:80:9f:f8:09:f2:fe:b0:1f:9f:5d:ba:1f:
        da:7d:6d:b2:b8:8b:bf:87:eb:1a:e9:a0:02:13:bc:f6:
        ef:44:74:4a:e3:8d:d2:f2:a5:87:32:27:a7:6e:19:92:
        43:3b:ce:31:31:d9:80:23:1f:8b:15:a4:80:82:1d:ab:
        86:c7:0f:c9:47:34:9e:53:e8:13:ac:49:c3:09:3c:22:
        6b:30:dc:b2:e1:a5:13:b5:70:62:61:c3:a4:6b:24:1c:
        d0:89:09:c0:ed:f0:68:db:41:e3:eb:80:11:0e:15:bf:
        b1:57:60:6c:ac:7b:e6:14:f0:6d:8d:91:9b:a1:12:67:
        ba:9a:54:70:56:b4:e7:9e:c1:5c:f8:69:93:2c:fb:ce:
        02:23:59:24:28:2d:46:f3:0d:70:82:a8:eb:82:56:9c
    Fingerprint (SHA-256):
        14:DC:3B:F7:A3:00:0A:1E:2D:C8:68:57:AC:BF:23:5F:AD:47:98:35:19:90:76:97:B1:8D:7A:3C:E1:F9:6C:91
    Fingerprint (SHA1):
        AF:CF:CB:73:33:2C:C3:27:BE:BB:07:A2:D0:5D:85:05:E0:90:3B:9F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6481: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153446 (0x1dee40e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:27 2017
            Not After : Mon May 02 15:34:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:e6:3f:5a:a9:ea:82:ee:29:e3:77:46:c5:07:a1:c2:
                    0e:a3:2e:82:f4:85:3e:96:02:ac:1e:e6:d8:5b:ed:74:
                    f5:6c:86:d2:f6:79:c1:b2:76:f5:68:de:61:87:a2:c4:
                    63:4a:ad:ad:55:dd:62:73:7e:67:5a:fd:61:a9:76:32:
                    99:17:cd:e5:98:3d:4c:eb:23:44:c8:85:58:f0:85:b8:
                    bd:d1:83:af:d9:76:a1:56:59:cd:05:fe:3f:88:b7:0c:
                    fa:d6:71:ea:8a:a0:9b:0c:39:f8:8e:09:8a:0a:82:42:
                    cb:bd:e6:8e:f0:01:3e:0d:b0:56:09:a7:fb:95:42:51:
                    fa:7d:bb:59:a4:e6:00:25:ac:3f:fc:e3:97:b8:b8:0e:
                    bd:d2:5b:9e:8a:34:01:32:70:a5:60:62:69:5a:40:7f:
                    d1:a0:fa:a8:18:e7:5e:04:77:80:b0:2b:4b:2e:aa:c6:
                    8b:56:dc:1b:e8:52:9a:c9:33:81:37:13:c8:bf:ba:6a:
                    44:a5:95:1b:54:95:50:49:c7:01:56:b0:9b:e0:de:cd:
                    15:1b:70:ad:12:f6:18:c6:7e:65:34:2f:2e:23:57:20:
                    d5:c5:b6:b2:63:01:6a:11:f7:92:82:32:06:6f:ed:26:
                    37:ab:ed:09:74:27:ea:c9:64:89:36:f5:fd:68:4f:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:58:ac:ae:f7:17:95:43:74:34:05:e4:a3:97:13:d3:
        80:93:b5:79:91:6f:c9:25:fd:6c:64:09:81:3e:90:50:
        22:b2:1b:c5:ea:53:18:4a:a6:ab:eb:0b:f4:63:a7:77:
        28:65:91:b3:7e:51:a3:7d:b1:be:2e:47:e6:38:d7:ec:
        d4:3d:fe:3d:d7:76:d8:b9:f5:b9:4e:b3:e7:18:04:27:
        79:04:1f:fe:46:3b:83:bb:d6:ca:c9:cd:2e:23:d4:12:
        4d:01:60:16:80:9f:f8:09:f2:fe:b0:1f:9f:5d:ba:1f:
        da:7d:6d:b2:b8:8b:bf:87:eb:1a:e9:a0:02:13:bc:f6:
        ef:44:74:4a:e3:8d:d2:f2:a5:87:32:27:a7:6e:19:92:
        43:3b:ce:31:31:d9:80:23:1f:8b:15:a4:80:82:1d:ab:
        86:c7:0f:c9:47:34:9e:53:e8:13:ac:49:c3:09:3c:22:
        6b:30:dc:b2:e1:a5:13:b5:70:62:61:c3:a4:6b:24:1c:
        d0:89:09:c0:ed:f0:68:db:41:e3:eb:80:11:0e:15:bf:
        b1:57:60:6c:ac:7b:e6:14:f0:6d:8d:91:9b:a1:12:67:
        ba:9a:54:70:56:b4:e7:9e:c1:5c:f8:69:93:2c:fb:ce:
        02:23:59:24:28:2d:46:f3:0d:70:82:a8:eb:82:56:9c
    Fingerprint (SHA-256):
        14:DC:3B:F7:A3:00:0A:1E:2D:C8:68:57:AC:BF:23:5F:AD:47:98:35:19:90:76:97:B1:8D:7A:3C:E1:F9:6C:91
    Fingerprint (SHA1):
        AF:CF:CB:73:33:2C:C3:27:BE:BB:07:A2:D0:5D:85:05:E0:90:3B:9F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6482: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6483: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153453 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6484: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6485: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6486: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153454 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6487: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6488: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #6489: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6490: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502153455   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6491: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6492: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #6493: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6494: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502153456   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6495: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6496: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6497: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6498: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502153457 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6499: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6500: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502153458 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6501: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6502: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #6503: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6504: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6505: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153459   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6506: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6507: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6508: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6509: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153460   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6510: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6511: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6512: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6513: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153461   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6514: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6515: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6516: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6517: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153462   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6518: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6519: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6520: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153453 (0x1dee40ed)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:34:29 2017
            Not After : Mon May 02 15:34:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:39:5b:fe:b6:09:43:14:ff:77:2d:99:47:b3:fc:18:
                    a8:37:f7:6e:50:58:e7:51:df:8d:86:15:06:eb:5e:1a:
                    e4:9c:a6:15:5f:5f:58:9b:75:4e:7d:63:c2:c0:3d:f8:
                    85:05:98:24:ed:44:d3:72:56:55:3a:75:90:22:9f:4a:
                    56:15:e9:57:8a:43:e7:6d:9b:8c:8c:a0:b3:26:6d:1b:
                    9c:ad:db:28:fd:ab:ce:c5:f7:a2:0c:c3:80:4a:ea:d4:
                    22:9d:7d:a6:1c:b4:dc:c9:72:5c:c0:0f:c3:34:ce:fa:
                    e2:90:ee:04:77:b6:9a:ee:78:72:67:14:0b:7b:27:ee:
                    bc:94:77:78:8a:3f:6a:cc:54:b6:d6:cd:d9:19:4d:15:
                    fd:d6:97:5d:bf:73:22:dd:73:4c:8f:3a:26:c0:ca:fa:
                    f1:9c:ac:31:d7:2d:e3:6a:10:1c:d3:80:14:3b:94:98:
                    1f:13:eb:7f:f6:b0:cf:d5:d0:7a:2d:cb:2a:75:91:b0:
                    d3:38:ee:6e:ab:38:89:42:67:a3:b0:b5:c2:77:ce:6f:
                    de:8c:2a:72:ca:38:78:a7:a9:bc:a8:57:ce:aa:4d:26:
                    42:96:36:f5:ea:a1:29:e6:eb:c7:63:ad:71:a9:18:6b:
                    8d:17:fc:49:35:1c:08:2c:dd:dc:09:8b:17:c9:ec:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e5:a2:ab:f1:87:b7:ed:ff:11:27:60:d8:a7:5a:25:
        45:eb:25:45:3f:62:44:1b:4a:6e:7f:1c:6e:80:5d:79:
        8f:6f:c6:e7:43:ed:ed:d7:90:1d:4d:1d:8b:a5:c8:71:
        f5:47:21:8a:dc:50:53:da:ed:e9:70:e7:c5:12:5e:16:
        4d:70:f2:71:73:2c:5f:f5:6e:6a:2e:e2:6f:2e:ae:de:
        43:1f:9d:4b:46:7c:69:ab:3f:97:fa:81:92:1d:16:42:
        81:d5:e2:6a:56:f5:79:a8:b5:20:d8:65:4a:34:31:db:
        21:4a:40:9d:6c:61:a7:86:3f:ac:50:2e:c8:0d:25:31:
        95:57:72:9a:3f:7f:45:d0:5c:00:6f:f1:94:80:e0:49:
        30:e1:01:fb:b1:a0:7c:44:a3:7e:a5:45:4f:a7:be:44:
        40:da:fa:37:8d:19:ba:03:39:a1:71:b5:d4:d8:15:3e:
        2e:db:6a:1e:43:89:ca:f2:24:dc:1b:69:e8:8b:21:b6:
        ed:f9:12:71:f6:9e:e2:18:03:d2:a1:48:01:19:47:b6:
        25:3e:d2:16:dd:6f:b2:bd:37:15:3e:77:4f:89:ce:d2:
        56:92:3d:7f:48:ec:8c:c4:c6:a6:5e:b5:d0:93:20:5f:
        26:2c:63:02:52:a6:55:dc:79:a2:2b:5b:99:7e:fc:4f
    Fingerprint (SHA-256):
        89:10:B4:69:E2:49:89:B2:3D:BA:53:80:EE:6E:99:D3:6D:FF:A0:9C:1C:4F:73:79:E5:CD:64:05:51:C9:6F:09
    Fingerprint (SHA1):
        5D:04:3C:11:4C:D0:45:EB:C0:C5:63:CC:51:B4:A7:39:1B:7B:57:65
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6521: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6522: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6523: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6524: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6525: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6526: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6527: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6528: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6529: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153454 (0x1dee40ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:29 2017
            Not After : Mon May 02 15:34:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:2c:86:9e:46:e2:da:a1:e9:dc:00:3c:91:1c:16:02:
                    b1:e5:01:62:cf:36:79:e7:c2:81:d1:08:10:54:bd:b4:
                    a6:ec:5c:da:01:22:b9:87:bb:49:65:b6:6a:1a:dc:92:
                    4e:98:a2:ef:83:58:cc:41:df:de:3e:d2:e8:ff:f4:8d:
                    a6:3f:b0:1b:93:4b:45:73:3c:36:99:e2:ca:61:9d:21:
                    bb:2a:27:01:b3:9c:af:35:ef:6e:3a:f7:38:9a:a2:9b:
                    86:02:5b:e4:01:64:4c:e0:17:d2:a5:93:79:51:52:4e:
                    4f:84:6d:da:10:50:08:ab:e7:3c:6e:84:59:91:8c:29:
                    09:01:2a:d9:f7:12:d8:aa:a1:98:e0:f3:70:d8:0e:f2:
                    da:6e:f2:b2:14:ea:fe:f0:94:04:74:3e:a7:10:49:0c:
                    c1:77:b3:c2:92:85:16:e4:62:2f:73:9d:23:60:58:f2:
                    6b:8e:63:85:ec:d1:60:c2:3d:bd:6c:54:c5:56:59:ff:
                    62:d4:62:eb:3a:5b:a2:9f:a1:d5:bb:50:24:42:d9:1f:
                    61:d0:c2:9d:a6:e6:d4:88:bb:95:23:bb:a3:21:2f:81:
                    0f:21:cf:4a:09:c8:75:0c:7b:46:ef:22:63:d3:8c:85:
                    37:10:4d:38:35:11:63:28:71:ac:97:ab:34:d2:ad:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:88:20:a5:4a:b0:74:2b:2a:23:c2:27:20:1a:2a:c5:
        5e:d2:b6:5c:7c:4c:8f:9a:65:54:87:7f:76:74:99:8d:
        2a:cb:b2:74:19:a5:c6:fc:8a:06:5d:a1:e0:5f:a5:bc:
        92:0c:65:e4:1b:bf:9e:df:4a:21:25:42:52:93:6d:87:
        ce:c0:de:32:38:2c:a6:2a:17:9d:dc:b1:a2:cb:88:2b:
        cb:a2:d1:3a:12:75:d8:e3:c3:b9:ba:62:b5:9b:94:58:
        6e:56:c5:07:49:61:84:87:51:f1:17:b1:28:39:60:9d:
        ea:0e:46:c4:90:a9:1f:2e:dc:08:2b:50:53:ce:ea:dc:
        07:87:5e:c8:d0:d8:ff:40:2b:67:bf:e8:64:5e:80:7c:
        41:98:72:22:f9:4e:ed:8b:f8:44:80:1b:ab:9c:c1:39:
        6a:8e:c4:4c:16:53:5b:8b:cd:ca:96:aa:69:0e:c9:df:
        ff:40:c6:0a:be:91:76:37:9a:a9:e8:64:a6:6a:9a:4a:
        69:d9:55:a7:4b:40:56:68:36:bf:e7:96:9b:8e:be:1a:
        98:a5:d0:a2:46:4e:2d:b4:02:b2:9b:8c:31:d8:06:7e:
        4f:13:cd:d5:a8:04:e1:e1:67:72:66:8b:20:f1:1a:fa:
        f9:98:9d:79:76:cf:97:9c:41:06:07:54:58:a2:9e:e3
    Fingerprint (SHA-256):
        45:14:6D:11:EF:D6:A8:82:A6:25:24:0D:8F:F3:08:D3:31:D8:56:75:ED:5F:0C:21:11:5B:A6:6D:22:55:31:BE
    Fingerprint (SHA1):
        66:99:FF:1D:09:33:F0:82:8F:5B:F1:2D:3D:F5:44:C9:05:0B:F6:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6530: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6531: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6532: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6533: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6534: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6535: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6536: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #6537: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #6538: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #6539: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #6540: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #6541: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #6542: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #6543: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6544: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6545: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #6546: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #6547: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6548: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153463 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6549: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6550: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6551: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6552: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153464   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6553: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6554: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6555: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6556: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153465   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6557: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6558: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6559: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6560: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502153466   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6561: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6562: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6563: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6564: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153467   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6565: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6566: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6567: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6568: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502153468   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6569: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6570: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6571: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6572: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502153469   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6573: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6574: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #6575: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6576: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502153470   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6577: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6578: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6579: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6580: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502153471   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6581: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6582: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6583: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153463 (0x1dee40f7)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:32 2017
            Not After : Mon May 02 15:34:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    68:85:50:c0:a0:b2:94:8e:02:1c:51:6a:3c:87:91:14:
                    07:e6:f4:ba:f3:d3:63:55:7e:2b:e0:e9:0e:c7:5f:84:
                    eb:60:ef:64:e3:11:33:48:0a:37:a4:c5:95:73:45:24:
                    a2:49:40:40:ce:1b:d2:a6:7a:eb:0e:46:f4:74:46:99:
                    cd:78:40:85:98:da:1d:d3:10:e8:bb:d7:b3:4b:25:db:
                    84:56:3f:d2:7b:11:79:d0:2a:da:ea:d6:10:29:73:a5:
                    b4:39:b1:4c:7e:15:84:c6:2d:f4:f2:08:2d:cc:22:bc:
                    e5:2b:a0:42:52:38:12:b6:45:ee:88:7e:77:3e:82:e9:
                    64:09:3c:83:99:8a:08:5c:a0:76:88:70:cd:f8:c4:39:
                    eb:cd:82:f4:39:eb:a3:71:86:fa:b2:b6:14:5c:e0:04:
                    a2:c1:e9:7a:45:c1:21:44:49:15:34:12:81:03:aa:0f:
                    67:e4:fe:58:c8:f6:63:7f:75:a4:de:c9:28:78:7f:ce:
                    a3:16:5b:57:95:21:bf:20:f3:45:d8:52:c2:41:34:a0:
                    eb:0a:65:6c:dc:83:97:e8:d7:8d:6d:90:9f:b9:6c:1d:
                    16:d1:87:cb:d4:96:5d:a4:d1:db:c0:5b:6a:2d:10:5f:
                    75:50:9c:21:95:03:76:3c:92:c1:4d:a4:61:78:88:40
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:58:49:24:20:b0:0a:f0:22:bf:df:1a:79:
        d4:64:d2:e5:5a:29:1c:3e:68:f6:14:a9:0f:e5:dd:61:
        02:1c:4a:2b:75:22:dd:7c:dd:b7:de:5c:b6:d9:23:bb:
        70:1b:b7:40:32:e2:28:e0:d3:2a:7e:71:78:d0
    Fingerprint (SHA-256):
        26:50:BB:06:FB:34:87:98:8B:49:C8:CC:2C:5E:60:AC:96:BC:2D:8D:79:49:FD:9A:E6:E8:39:18:0E:7B:D6:E6
    Fingerprint (SHA1):
        5D:85:E5:D7:59:BD:05:21:08:30:B8:9C:DD:DA:BA:68:38:29:72:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6584: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153463 (0x1dee40f7)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:32 2017
            Not After : Mon May 02 15:34:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    68:85:50:c0:a0:b2:94:8e:02:1c:51:6a:3c:87:91:14:
                    07:e6:f4:ba:f3:d3:63:55:7e:2b:e0:e9:0e:c7:5f:84:
                    eb:60:ef:64:e3:11:33:48:0a:37:a4:c5:95:73:45:24:
                    a2:49:40:40:ce:1b:d2:a6:7a:eb:0e:46:f4:74:46:99:
                    cd:78:40:85:98:da:1d:d3:10:e8:bb:d7:b3:4b:25:db:
                    84:56:3f:d2:7b:11:79:d0:2a:da:ea:d6:10:29:73:a5:
                    b4:39:b1:4c:7e:15:84:c6:2d:f4:f2:08:2d:cc:22:bc:
                    e5:2b:a0:42:52:38:12:b6:45:ee:88:7e:77:3e:82:e9:
                    64:09:3c:83:99:8a:08:5c:a0:76:88:70:cd:f8:c4:39:
                    eb:cd:82:f4:39:eb:a3:71:86:fa:b2:b6:14:5c:e0:04:
                    a2:c1:e9:7a:45:c1:21:44:49:15:34:12:81:03:aa:0f:
                    67:e4:fe:58:c8:f6:63:7f:75:a4:de:c9:28:78:7f:ce:
                    a3:16:5b:57:95:21:bf:20:f3:45:d8:52:c2:41:34:a0:
                    eb:0a:65:6c:dc:83:97:e8:d7:8d:6d:90:9f:b9:6c:1d:
                    16:d1:87:cb:d4:96:5d:a4:d1:db:c0:5b:6a:2d:10:5f:
                    75:50:9c:21:95:03:76:3c:92:c1:4d:a4:61:78:88:40
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:58:49:24:20:b0:0a:f0:22:bf:df:1a:79:
        d4:64:d2:e5:5a:29:1c:3e:68:f6:14:a9:0f:e5:dd:61:
        02:1c:4a:2b:75:22:dd:7c:dd:b7:de:5c:b6:d9:23:bb:
        70:1b:b7:40:32:e2:28:e0:d3:2a:7e:71:78:d0
    Fingerprint (SHA-256):
        26:50:BB:06:FB:34:87:98:8B:49:C8:CC:2C:5E:60:AC:96:BC:2D:8D:79:49:FD:9A:E6:E8:39:18:0E:7B:D6:E6
    Fingerprint (SHA1):
        5D:85:E5:D7:59:BD:05:21:08:30:B8:9C:DD:DA:BA:68:38:29:72:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6585: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153463 (0x1dee40f7)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:32 2017
            Not After : Mon May 02 15:34:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    68:85:50:c0:a0:b2:94:8e:02:1c:51:6a:3c:87:91:14:
                    07:e6:f4:ba:f3:d3:63:55:7e:2b:e0:e9:0e:c7:5f:84:
                    eb:60:ef:64:e3:11:33:48:0a:37:a4:c5:95:73:45:24:
                    a2:49:40:40:ce:1b:d2:a6:7a:eb:0e:46:f4:74:46:99:
                    cd:78:40:85:98:da:1d:d3:10:e8:bb:d7:b3:4b:25:db:
                    84:56:3f:d2:7b:11:79:d0:2a:da:ea:d6:10:29:73:a5:
                    b4:39:b1:4c:7e:15:84:c6:2d:f4:f2:08:2d:cc:22:bc:
                    e5:2b:a0:42:52:38:12:b6:45:ee:88:7e:77:3e:82:e9:
                    64:09:3c:83:99:8a:08:5c:a0:76:88:70:cd:f8:c4:39:
                    eb:cd:82:f4:39:eb:a3:71:86:fa:b2:b6:14:5c:e0:04:
                    a2:c1:e9:7a:45:c1:21:44:49:15:34:12:81:03:aa:0f:
                    67:e4:fe:58:c8:f6:63:7f:75:a4:de:c9:28:78:7f:ce:
                    a3:16:5b:57:95:21:bf:20:f3:45:d8:52:c2:41:34:a0:
                    eb:0a:65:6c:dc:83:97:e8:d7:8d:6d:90:9f:b9:6c:1d:
                    16:d1:87:cb:d4:96:5d:a4:d1:db:c0:5b:6a:2d:10:5f:
                    75:50:9c:21:95:03:76:3c:92:c1:4d:a4:61:78:88:40
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:58:49:24:20:b0:0a:f0:22:bf:df:1a:79:
        d4:64:d2:e5:5a:29:1c:3e:68:f6:14:a9:0f:e5:dd:61:
        02:1c:4a:2b:75:22:dd:7c:dd:b7:de:5c:b6:d9:23:bb:
        70:1b:b7:40:32:e2:28:e0:d3:2a:7e:71:78:d0
    Fingerprint (SHA-256):
        26:50:BB:06:FB:34:87:98:8B:49:C8:CC:2C:5E:60:AC:96:BC:2D:8D:79:49:FD:9A:E6:E8:39:18:0E:7B:D6:E6
    Fingerprint (SHA1):
        5D:85:E5:D7:59:BD:05:21:08:30:B8:9C:DD:DA:BA:68:38:29:72:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6586: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153463 (0x1dee40f7)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:32 2017
            Not After : Mon May 02 15:34:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    68:85:50:c0:a0:b2:94:8e:02:1c:51:6a:3c:87:91:14:
                    07:e6:f4:ba:f3:d3:63:55:7e:2b:e0:e9:0e:c7:5f:84:
                    eb:60:ef:64:e3:11:33:48:0a:37:a4:c5:95:73:45:24:
                    a2:49:40:40:ce:1b:d2:a6:7a:eb:0e:46:f4:74:46:99:
                    cd:78:40:85:98:da:1d:d3:10:e8:bb:d7:b3:4b:25:db:
                    84:56:3f:d2:7b:11:79:d0:2a:da:ea:d6:10:29:73:a5:
                    b4:39:b1:4c:7e:15:84:c6:2d:f4:f2:08:2d:cc:22:bc:
                    e5:2b:a0:42:52:38:12:b6:45:ee:88:7e:77:3e:82:e9:
                    64:09:3c:83:99:8a:08:5c:a0:76:88:70:cd:f8:c4:39:
                    eb:cd:82:f4:39:eb:a3:71:86:fa:b2:b6:14:5c:e0:04:
                    a2:c1:e9:7a:45:c1:21:44:49:15:34:12:81:03:aa:0f:
                    67:e4:fe:58:c8:f6:63:7f:75:a4:de:c9:28:78:7f:ce:
                    a3:16:5b:57:95:21:bf:20:f3:45:d8:52:c2:41:34:a0:
                    eb:0a:65:6c:dc:83:97:e8:d7:8d:6d:90:9f:b9:6c:1d:
                    16:d1:87:cb:d4:96:5d:a4:d1:db:c0:5b:6a:2d:10:5f:
                    75:50:9c:21:95:03:76:3c:92:c1:4d:a4:61:78:88:40
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:58:49:24:20:b0:0a:f0:22:bf:df:1a:79:
        d4:64:d2:e5:5a:29:1c:3e:68:f6:14:a9:0f:e5:dd:61:
        02:1c:4a:2b:75:22:dd:7c:dd:b7:de:5c:b6:d9:23:bb:
        70:1b:b7:40:32:e2:28:e0:d3:2a:7e:71:78:d0
    Fingerprint (SHA-256):
        26:50:BB:06:FB:34:87:98:8B:49:C8:CC:2C:5E:60:AC:96:BC:2D:8D:79:49:FD:9A:E6:E8:39:18:0E:7B:D6:E6
    Fingerprint (SHA1):
        5D:85:E5:D7:59:BD:05:21:08:30:B8:9C:DD:DA:BA:68:38:29:72:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #6587: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6588: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6589: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6590: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6591: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6592: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6593: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6594: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6595: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6596: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6597: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6598: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6599: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6600: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6601: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6602: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #6603: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6604: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6605: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6606: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6607: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6608: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6609: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6610: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6611: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6612: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6613: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6614: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153435Z
nextupdate=20180502153435Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:34:35 2017
    Next Update: Wed May 02 15:34:35 2018
    CRL Extensions:
chains.sh: #6615: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153435Z
nextupdate=20180502153435Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:35 2017
    Next Update: Wed May 02 15:34:35 2018
    CRL Extensions:
chains.sh: #6616: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153436Z
nextupdate=20180502153436Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:34:36 2017
    Next Update: Wed May 02 15:34:36 2018
    CRL Extensions:
chains.sh: #6617: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153436Z
nextupdate=20180502153436Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:34:36 2017
    Next Update: Wed May 02 15:34:36 2018
    CRL Extensions:
chains.sh: #6618: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153437Z
addcert 14 20170502153437Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:34:37 2017
    Next Update: Wed May 02 15:34:36 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:34:37 2017
    CRL Extensions:
chains.sh: #6619: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153438Z
addcert 15 20170502153438Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:38 2017
    Next Update: Wed May 02 15:34:35 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:34:38 2017
    CRL Extensions:
chains.sh: #6620: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6621: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6622: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6623: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #6624: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #6625: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #6626: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #6627: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #6628: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #6629: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:34 2017
            Not After : Mon May 02 15:34:34 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:84:a2:3e:6f:86:eb:1d:a5:52:93:be:a6:5c:7d:9c:
                    49:c1:0f:8f:df:cd:30:ab:94:14:a3:7a:3b:c3:28:70:
                    8c:c2:13:57:e3:d4:11:4c:67:2e:c3:32:7f:1f:31:d1:
                    a7:c1:77:09:cc:fc:f4:48:6c:1d:9f:e1:ad:bf:47:34:
                    6f:e6:ae:04:d9:f0:a0:85:61:b7:30:af:42:df:4f:99:
                    87:fd:02:73:0e:49:42:98:ff:6a:2a:d1:0d:96:f6:45:
                    73:55:70:69:a4:a8:6e:92:73:53:82:d9:16:34:b4:55:
                    a3:2a:03:35:4d:7a:06:60:7e:4f:b7:0f:b9:6e:b5:7d:
                    a0:30:e7:10:5e:1f:fe:d2:26:86:3a:6d:dd:8d:84:b0:
                    8b:ee:8a:ed:8d:52:20:5f:27:40:41:d6:a1:94:d1:87:
                    9f:6e:c0:b2:fe:d5:77:b4:ea:43:10:d9:35:cb:ce:ba:
                    7c:0f:40:31:1b:dc:f2:ad:9a:5a:9f:b1:ec:88:54:70:
                    42:ee:f7:06:b0:ed:fd:53:57:9b:19:30:78:3a:b7:34:
                    6f:1e:b4:ac:d3:6a:79:41:50:c1:4e:ac:91:82:10:4f:
                    6d:88:bf:10:ff:06:3d:b9:7c:7b:23:9c:04:d8:4e:d9:
                    0b:4d:a3:a0:d5:dd:19:02:1b:f5:b0:9c:e6:34:dc:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b4:f1:00:f3:3d:d0:47:a3:fa:6a:4d:d6:17:cd:36:
        a5:78:fc:91:cd:d6:d9:15:13:30:2c:79:88:13:56:02:
        69:63:71:3e:78:c1:b4:f7:9f:b2:41:49:18:49:cd:ca:
        0c:40:5e:ea:f0:28:4b:1a:25:d1:a3:cb:81:ea:9a:d3:
        da:50:41:5c:15:08:36:50:2f:27:53:6f:80:21:25:0d:
        73:ac:58:31:39:47:0e:87:60:87:76:58:2e:a8:d1:b0:
        f0:e0:03:6e:df:5c:87:b1:79:98:c3:0b:6a:d5:24:4c:
        58:84:f6:d1:5f:fd:23:5d:f4:66:4b:56:f5:22:96:ce:
        ee:51:c1:fc:4e:0f:88:d4:9a:69:07:d8:25:80:0d:b5:
        7e:92:f9:9a:c6:38:71:87:ca:b6:61:8c:61:ce:67:ff:
        5d:13:49:e8:25:06:ce:eb:1a:29:9b:6e:f5:45:30:12:
        08:f4:05:45:9d:cc:ec:b9:7a:db:f5:7c:15:59:49:83:
        11:6a:81:32:88:00:41:05:fe:ff:80:62:2a:e5:c2:de:
        dd:58:26:58:b9:54:fd:25:cf:d0:c7:ff:f2:d7:79:74:
        8d:1a:3f:76:c1:80:9a:df:81:a2:2d:b2:16:7f:3b:34:
        09:18:2f:d7:fe:b2:c4:06:1a:32:31:bc:3f:da:0d:f5
    Fingerprint (SHA-256):
        50:4E:FE:49:22:F0:FB:51:41:06:0F:B3:79:66:42:AB:6D:4C:CF:51:13:25:7A:E3:06:48:DD:63:08:11:8B:7E
    Fingerprint (SHA1):
        BE:43:9B:89:D5:DB:49:1E:CA:0C:B4:43:37:FC:49:62:F5:BF:AB:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6630: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6631: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:34 2017
            Not After : Mon May 02 15:34:34 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:84:a2:3e:6f:86:eb:1d:a5:52:93:be:a6:5c:7d:9c:
                    49:c1:0f:8f:df:cd:30:ab:94:14:a3:7a:3b:c3:28:70:
                    8c:c2:13:57:e3:d4:11:4c:67:2e:c3:32:7f:1f:31:d1:
                    a7:c1:77:09:cc:fc:f4:48:6c:1d:9f:e1:ad:bf:47:34:
                    6f:e6:ae:04:d9:f0:a0:85:61:b7:30:af:42:df:4f:99:
                    87:fd:02:73:0e:49:42:98:ff:6a:2a:d1:0d:96:f6:45:
                    73:55:70:69:a4:a8:6e:92:73:53:82:d9:16:34:b4:55:
                    a3:2a:03:35:4d:7a:06:60:7e:4f:b7:0f:b9:6e:b5:7d:
                    a0:30:e7:10:5e:1f:fe:d2:26:86:3a:6d:dd:8d:84:b0:
                    8b:ee:8a:ed:8d:52:20:5f:27:40:41:d6:a1:94:d1:87:
                    9f:6e:c0:b2:fe:d5:77:b4:ea:43:10:d9:35:cb:ce:ba:
                    7c:0f:40:31:1b:dc:f2:ad:9a:5a:9f:b1:ec:88:54:70:
                    42:ee:f7:06:b0:ed:fd:53:57:9b:19:30:78:3a:b7:34:
                    6f:1e:b4:ac:d3:6a:79:41:50:c1:4e:ac:91:82:10:4f:
                    6d:88:bf:10:ff:06:3d:b9:7c:7b:23:9c:04:d8:4e:d9:
                    0b:4d:a3:a0:d5:dd:19:02:1b:f5:b0:9c:e6:34:dc:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b4:f1:00:f3:3d:d0:47:a3:fa:6a:4d:d6:17:cd:36:
        a5:78:fc:91:cd:d6:d9:15:13:30:2c:79:88:13:56:02:
        69:63:71:3e:78:c1:b4:f7:9f:b2:41:49:18:49:cd:ca:
        0c:40:5e:ea:f0:28:4b:1a:25:d1:a3:cb:81:ea:9a:d3:
        da:50:41:5c:15:08:36:50:2f:27:53:6f:80:21:25:0d:
        73:ac:58:31:39:47:0e:87:60:87:76:58:2e:a8:d1:b0:
        f0:e0:03:6e:df:5c:87:b1:79:98:c3:0b:6a:d5:24:4c:
        58:84:f6:d1:5f:fd:23:5d:f4:66:4b:56:f5:22:96:ce:
        ee:51:c1:fc:4e:0f:88:d4:9a:69:07:d8:25:80:0d:b5:
        7e:92:f9:9a:c6:38:71:87:ca:b6:61:8c:61:ce:67:ff:
        5d:13:49:e8:25:06:ce:eb:1a:29:9b:6e:f5:45:30:12:
        08:f4:05:45:9d:cc:ec:b9:7a:db:f5:7c:15:59:49:83:
        11:6a:81:32:88:00:41:05:fe:ff:80:62:2a:e5:c2:de:
        dd:58:26:58:b9:54:fd:25:cf:d0:c7:ff:f2:d7:79:74:
        8d:1a:3f:76:c1:80:9a:df:81:a2:2d:b2:16:7f:3b:34:
        09:18:2f:d7:fe:b2:c4:06:1a:32:31:bc:3f:da:0d:f5
    Fingerprint (SHA-256):
        50:4E:FE:49:22:F0:FB:51:41:06:0F:B3:79:66:42:AB:6D:4C:CF:51:13:25:7A:E3:06:48:DD:63:08:11:8B:7E
    Fingerprint (SHA1):
        BE:43:9B:89:D5:DB:49:1E:CA:0C:B4:43:37:FC:49:62:F5:BF:AB:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6632: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6633: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6634: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153472 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6635: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6636: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6637: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6638: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502153473   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6639: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6640: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6641: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6642: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502153348.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6643: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6644: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6645: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6646: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502153474   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6647: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6648: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6649: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6650: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502153349.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6651: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6652: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6653: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6654: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502153475   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6655: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6656: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6657: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6658: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502153350.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6659: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6660: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6661: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6662: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502153351.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6663: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6664: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153440Z
nextupdate=20180502153440Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:34:40 2017
    Next Update: Wed May 02 15:34:40 2018
    CRL Extensions:
chains.sh: #6665: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153440Z
nextupdate=20180502153440Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:40 2017
    Next Update: Wed May 02 15:34:40 2018
    CRL Extensions:
chains.sh: #6666: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153440Z
nextupdate=20180502153440Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:34:40 2017
    Next Update: Wed May 02 15:34:40 2018
    CRL Extensions:
chains.sh: #6667: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153440Z
nextupdate=20180502153440Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:34:40 2017
    Next Update: Wed May 02 15:34:40 2018
    CRL Extensions:
chains.sh: #6668: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153441Z
addcert 20 20170502153441Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:41 2017
    Next Update: Wed May 02 15:34:40 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:34:41 2017
    CRL Extensions:
chains.sh: #6669: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153442Z
addcert 40 20170502153442Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:42 2017
    Next Update: Wed May 02 15:34:40 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:34:41 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:34:42 2017
    CRL Extensions:
chains.sh: #6670: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6671: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6672: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6673: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153472 (0x1dee4100)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:38 2017
            Not After : Mon May 02 15:34:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:ab:4c:f6:55:70:73:48:1d:4d:ed:33:65:0b:ba:52:
                    00:b5:8f:b3:2e:6f:8a:d4:90:c8:1f:f5:0c:0b:7d:c6:
                    ee:79:60:08:8f:81:e6:9c:1e:58:4f:23:71:7f:45:e0:
                    d0:a0:34:b5:35:7a:18:1f:42:9d:70:9f:c6:e9:e2:1c:
                    78:59:ca:20:c3:cf:17:99:9d:a0:f4:e6:ff:36:67:1e:
                    df:31:5f:f5:37:51:3a:2b:a1:51:18:44:fc:71:46:df:
                    31:60:81:99:dd:c1:3e:e3:83:68:d1:91:f1:31:b5:27:
                    04:17:5a:09:24:d0:45:ce:e2:03:bf:51:5d:73:e1:59:
                    1b:c6:82:61:27:6f:e3:a2:44:fa:15:37:ad:5d:9d:b7:
                    53:97:51:b6:50:4c:10:91:34:12:7c:4e:32:ff:85:09:
                    be:c7:1d:75:6b:fe:af:70:14:60:b5:df:e4:63:ed:16:
                    32:b5:95:93:3e:9c:bd:bf:32:b8:9e:41:6e:43:d8:cb:
                    5b:cd:8c:a1:fc:d5:21:e9:22:49:59:42:37:1f:16:f0:
                    38:c6:1f:df:7e:f9:dd:ef:d4:67:6b:db:83:c9:c6:6d:
                    5e:46:fb:8b:11:a0:2e:fb:39:38:d5:62:d0:c6:11:ce:
                    91:bf:16:1e:a3:49:4f:0a:e1:48:c5:aa:25:f6:2c:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:f3:a0:e5:39:90:94:46:9d:5b:24:fb:02:5c:29:54:
        6c:7b:d9:49:ee:60:86:e6:7f:2a:a9:bf:d7:6b:17:13:
        f9:bb:ab:ed:af:6d:cf:21:ec:82:2f:c1:67:55:3a:5a:
        88:27:55:33:b0:9a:9e:fe:c6:07:34:6c:db:46:17:a5:
        5c:c4:2e:e8:62:64:ac:16:06:f6:e4:9e:6e:46:f5:3b:
        4a:2e:d4:8d:ab:2d:9b:26:97:16:19:e2:d6:14:37:56:
        fe:b6:70:ac:8e:3b:4c:dd:0c:0a:9a:75:3d:56:56:64:
        92:d0:f4:73:e1:f4:82:15:e9:3c:e0:d0:6f:58:1a:43:
        87:98:71:e1:75:0d:d6:52:c0:13:5c:ef:59:d0:ab:1c:
        32:c7:eb:84:7f:19:f3:29:a6:15:42:92:7b:af:1d:80:
        b1:bb:af:69:ab:4c:8f:52:70:65:f4:9f:74:ee:92:d9:
        f0:4d:09:99:26:4f:9e:6b:89:5e:99:1e:7b:41:a6:e3:
        b7:4d:c4:59:35:bc:53:37:26:5b:95:e0:8f:45:48:ae:
        42:69:35:c8:1d:e3:60:7e:a4:a8:01:c5:87:d8:7f:fb:
        0a:db:06:9c:14:67:f6:18:48:c1:90:b2:03:e0:57:3a:
        4d:e9:6c:5a:cd:48:75:c6:e1:75:ab:4a:e9:20:7f:11
    Fingerprint (SHA-256):
        10:09:BD:D9:62:D9:1A:C5:08:43:6B:73:20:03:F5:BD:B9:4F:AB:38:36:6B:72:09:96:F0:54:56:91:74:14:EC
    Fingerprint (SHA1):
        83:42:50:05:7A:7D:EF:A7:A0:13:33:3E:D4:4E:28:94:B0:17:DE:C2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6674: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6675: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153472 (0x1dee4100)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:38 2017
            Not After : Mon May 02 15:34:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:ab:4c:f6:55:70:73:48:1d:4d:ed:33:65:0b:ba:52:
                    00:b5:8f:b3:2e:6f:8a:d4:90:c8:1f:f5:0c:0b:7d:c6:
                    ee:79:60:08:8f:81:e6:9c:1e:58:4f:23:71:7f:45:e0:
                    d0:a0:34:b5:35:7a:18:1f:42:9d:70:9f:c6:e9:e2:1c:
                    78:59:ca:20:c3:cf:17:99:9d:a0:f4:e6:ff:36:67:1e:
                    df:31:5f:f5:37:51:3a:2b:a1:51:18:44:fc:71:46:df:
                    31:60:81:99:dd:c1:3e:e3:83:68:d1:91:f1:31:b5:27:
                    04:17:5a:09:24:d0:45:ce:e2:03:bf:51:5d:73:e1:59:
                    1b:c6:82:61:27:6f:e3:a2:44:fa:15:37:ad:5d:9d:b7:
                    53:97:51:b6:50:4c:10:91:34:12:7c:4e:32:ff:85:09:
                    be:c7:1d:75:6b:fe:af:70:14:60:b5:df:e4:63:ed:16:
                    32:b5:95:93:3e:9c:bd:bf:32:b8:9e:41:6e:43:d8:cb:
                    5b:cd:8c:a1:fc:d5:21:e9:22:49:59:42:37:1f:16:f0:
                    38:c6:1f:df:7e:f9:dd:ef:d4:67:6b:db:83:c9:c6:6d:
                    5e:46:fb:8b:11:a0:2e:fb:39:38:d5:62:d0:c6:11:ce:
                    91:bf:16:1e:a3:49:4f:0a:e1:48:c5:aa:25:f6:2c:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:f3:a0:e5:39:90:94:46:9d:5b:24:fb:02:5c:29:54:
        6c:7b:d9:49:ee:60:86:e6:7f:2a:a9:bf:d7:6b:17:13:
        f9:bb:ab:ed:af:6d:cf:21:ec:82:2f:c1:67:55:3a:5a:
        88:27:55:33:b0:9a:9e:fe:c6:07:34:6c:db:46:17:a5:
        5c:c4:2e:e8:62:64:ac:16:06:f6:e4:9e:6e:46:f5:3b:
        4a:2e:d4:8d:ab:2d:9b:26:97:16:19:e2:d6:14:37:56:
        fe:b6:70:ac:8e:3b:4c:dd:0c:0a:9a:75:3d:56:56:64:
        92:d0:f4:73:e1:f4:82:15:e9:3c:e0:d0:6f:58:1a:43:
        87:98:71:e1:75:0d:d6:52:c0:13:5c:ef:59:d0:ab:1c:
        32:c7:eb:84:7f:19:f3:29:a6:15:42:92:7b:af:1d:80:
        b1:bb:af:69:ab:4c:8f:52:70:65:f4:9f:74:ee:92:d9:
        f0:4d:09:99:26:4f:9e:6b:89:5e:99:1e:7b:41:a6:e3:
        b7:4d:c4:59:35:bc:53:37:26:5b:95:e0:8f:45:48:ae:
        42:69:35:c8:1d:e3:60:7e:a4:a8:01:c5:87:d8:7f:fb:
        0a:db:06:9c:14:67:f6:18:48:c1:90:b2:03:e0:57:3a:
        4d:e9:6c:5a:cd:48:75:c6:e1:75:ab:4a:e9:20:7f:11
    Fingerprint (SHA-256):
        10:09:BD:D9:62:D9:1A:C5:08:43:6B:73:20:03:F5:BD:B9:4F:AB:38:36:6B:72:09:96:F0:54:56:91:74:14:EC
    Fingerprint (SHA1):
        83:42:50:05:7A:7D:EF:A7:A0:13:33:3E:D4:4E:28:94:B0:17:DE:C2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6676: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6677: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6678: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153476 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6679: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6680: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6681: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6682: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153477   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6683: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6684: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6685: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6686: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153478   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6687: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6688: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6689: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6690: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502153479   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6691: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6692: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #6693: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153480 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6694: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #6695: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #6696: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6697: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502153481   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6698: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6699: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6700: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6701: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502153482   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6702: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6703: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #6704: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #6705: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #6706: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153476 (0x1dee4104)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:42 2017
            Not After : Mon May 02 15:34:42 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:91:10:a2:56:53:4b:1c:ac:11:df:32:ab:76:9c:e2:
                    8f:3d:43:5c:8e:e9:8b:9a:c9:a3:7e:57:64:91:ec:15:
                    58:43:81:87:ae:f4:ba:99:44:96:86:db:c0:09:54:e3:
                    8a:10:27:b5:91:3f:7d:fd:07:bc:f0:d8:88:8a:be:d6:
                    59:80:e0:a1:95:21:e0:a6:34:e2:5b:11:d8:94:eb:22:
                    2d:de:c8:d5:a4:90:71:07:07:1a:de:ab:b8:cc:2e:85:
                    a6:bf:77:b0:45:65:56:e3:d5:d6:e8:03:29:32:f1:22:
                    a4:b1:03:a1:92:b0:48:12:f1:85:18:bc:ed:6e:3f:ef:
                    5f:10:c2:5b:b7:66:b1:e3:d6:5b:75:df:5a:e1:5d:f5:
                    f4:7b:c2:90:f1:94:77:0f:c3:75:dd:e1:55:df:56:38:
                    85:34:df:52:2e:ae:63:6e:41:21:85:55:4c:03:34:4c:
                    de:37:1f:88:23:4e:ed:7f:bb:6a:db:c5:cb:18:6f:d9:
                    80:5a:dd:0f:74:c5:ce:a7:9e:da:f1:4d:9f:2e:be:88:
                    7a:e9:0b:45:8c:d7:2f:9f:21:53:ef:00:fb:78:4c:d8:
                    ab:bd:a6:6f:53:89:f0:94:21:91:4a:5a:e8:ef:b5:2c:
                    03:12:fc:41:7b:ae:2c:ae:ac:99:ce:95:05:9b:97:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:82:9a:9a:fa:6f:40:a5:d9:bb:ff:f9:17:41:8a:4a:
        b8:36:3b:91:98:b8:7d:55:72:cd:a0:28:e6:6e:df:0d:
        e6:56:3e:59:76:25:64:e2:f5:bf:1e:8a:99:65:b7:35:
        11:79:d5:52:d7:f1:b8:54:23:48:d8:a8:96:e3:40:84:
        69:40:f7:a4:a0:b5:de:61:05:72:df:f5:45:ba:53:db:
        00:90:ad:d1:58:5e:65:78:bb:f3:11:94:cf:d3:c4:7f:
        2b:4a:ce:e7:1d:04:ef:6b:e6:ed:c6:0a:d0:65:16:7e:
        8f:f4:d4:7a:f8:7f:ca:68:0b:7b:d5:98:32:39:6f:5b:
        23:37:03:7d:0f:7b:2a:bc:06:ba:95:4b:51:f3:64:72:
        d2:b7:db:c1:fb:6c:88:cc:c8:c4:dd:d9:34:26:e6:c5:
        cd:ea:aa:f6:5a:8d:44:29:10:da:02:63:79:b6:fb:62:
        49:1e:ad:a1:91:10:a9:da:82:d4:95:2e:06:f6:ef:2a:
        72:38:de:3c:32:bb:9f:53:68:66:0b:5a:b3:ba:9a:13:
        18:0e:d5:34:ed:fd:1e:66:03:85:8a:53:ba:42:cf:3c:
        0d:d0:54:92:af:fa:9a:b8:25:ae:cf:32:b8:2c:5e:cb:
        fc:d8:4c:99:85:dd:b2:a0:a8:66:76:e6:28:09:d4:6a
    Fingerprint (SHA-256):
        97:22:F7:DB:29:57:3A:6D:F8:A9:B5:9B:A0:4D:86:90:53:E1:A1:3A:2A:25:60:E2:98:E4:38:68:73:46:73:E0
    Fingerprint (SHA1):
        22:84:EC:6A:C1:33:FF:64:03:DF:E2:4F:78:70:5D:A9:28:06:1B:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6707: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153478 (0x1dee4106)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:42 2017
            Not After : Mon May 02 15:34:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:fe:b5:46:48:43:a5:21:d6:90:01:85:ad:ba:69:09:
                    ec:9b:2e:e1:49:5b:5d:55:a4:e6:d1:8d:89:3d:de:5d:
                    88:d4:eb:1c:93:b4:8b:42:a7:67:78:13:4e:08:5f:3f:
                    4b:02:cd:74:53:b6:19:59:84:d4:5d:d0:8c:73:b2:f8:
                    f7:a8:a2:9c:e7:ed:b6:96:ed:1f:3d:a3:27:45:ac:fe:
                    f9:54:62:5b:c6:a1:7b:e1:ba:eb:41:d3:55:76:bd:62:
                    a9:71:64:8b:1d:ac:eb:8a:56:20:e9:ac:0e:e4:68:09:
                    37:59:e2:a8:7a:75:87:28:d8:a6:b8:55:78:a1:b6:b4:
                    9a:f9:e1:7c:0a:a8:37:1f:ed:2d:dc:c6:05:6b:48:ea:
                    b4:77:2f:13:f5:ea:a9:2b:d7:f6:53:bb:ba:16:bc:ea:
                    64:9d:1e:d5:ec:12:87:53:1d:89:b7:06:30:16:b2:3c:
                    10:54:da:bf:c6:1a:a5:54:0a:50:08:3d:8b:4d:8a:ae:
                    db:4b:6c:64:fc:cd:39:c5:96:0b:29:8c:2d:57:9c:cf:
                    41:d0:a6:37:4c:0a:13:55:f1:cc:5b:66:25:9c:f0:ce:
                    ad:16:86:3d:67:cd:5e:cb:ec:ea:5c:41:13:d0:b2:94:
                    12:53:3f:21:9e:4e:e7:b2:af:13:b9:cc:5e:dc:02:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:91:21:0a:c9:35:f0:7b:09:e6:f7:b9:da:c4:b1:5a:
        9b:cd:14:cf:3d:ef:a1:77:79:31:ef:8c:5a:d7:9b:99:
        d9:2a:f3:23:e5:fb:d1:46:59:b5:e4:74:e7:fa:cc:2a:
        35:b6:16:8a:04:66:4a:47:8c:bd:25:0d:06:e6:e5:41:
        21:69:0f:9f:55:24:e3:0e:8f:ac:98:3a:f7:71:58:f7:
        39:f1:27:23:c2:f3:ab:ad:aa:06:59:70:eb:2e:71:1b:
        04:5d:7e:68:a4:e9:0b:7b:71:c3:19:1a:c9:8b:bc:c7:
        65:d6:10:ee:ab:5a:cd:0c:8a:3a:1c:04:a6:3b:75:69:
        c2:83:3a:1f:60:c4:ef:92:ed:7f:d8:af:59:72:fd:a9:
        0a:2b:41:09:09:2e:59:99:53:a8:3c:8e:a5:30:fb:29:
        75:90:44:fe:c7:04:0c:09:18:a3:30:34:d6:92:84:4d:
        0f:3a:4f:26:fa:32:74:14:13:4a:46:92:e5:ab:13:92:
        d0:69:18:04:aa:6c:08:eb:bc:cb:0e:11:dc:05:d6:86:
        ff:2f:fe:db:6d:46:c0:b7:08:4a:e5:d9:39:56:c4:96:
        16:84:4a:e5:5d:5e:98:99:7f:2d:cf:c9:19:08:e5:68:
        d0:14:a6:a2:c1:a8:ea:b3:62:22:c8:d0:25:cd:2c:2e
    Fingerprint (SHA-256):
        E4:AE:D3:6B:9C:9B:31:46:AF:30:7D:9A:A1:48:21:29:94:1A:35:7E:00:9E:CD:34:34:4F:8B:5D:D6:8C:0F:20
    Fingerprint (SHA1):
        0E:40:58:E2:AB:01:4D:CD:A1:B1:8B:EF:05:4F:AF:E4:84:76:C5:50
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6708: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153476 (0x1dee4104)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:42 2017
            Not After : Mon May 02 15:34:42 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:91:10:a2:56:53:4b:1c:ac:11:df:32:ab:76:9c:e2:
                    8f:3d:43:5c:8e:e9:8b:9a:c9:a3:7e:57:64:91:ec:15:
                    58:43:81:87:ae:f4:ba:99:44:96:86:db:c0:09:54:e3:
                    8a:10:27:b5:91:3f:7d:fd:07:bc:f0:d8:88:8a:be:d6:
                    59:80:e0:a1:95:21:e0:a6:34:e2:5b:11:d8:94:eb:22:
                    2d:de:c8:d5:a4:90:71:07:07:1a:de:ab:b8:cc:2e:85:
                    a6:bf:77:b0:45:65:56:e3:d5:d6:e8:03:29:32:f1:22:
                    a4:b1:03:a1:92:b0:48:12:f1:85:18:bc:ed:6e:3f:ef:
                    5f:10:c2:5b:b7:66:b1:e3:d6:5b:75:df:5a:e1:5d:f5:
                    f4:7b:c2:90:f1:94:77:0f:c3:75:dd:e1:55:df:56:38:
                    85:34:df:52:2e:ae:63:6e:41:21:85:55:4c:03:34:4c:
                    de:37:1f:88:23:4e:ed:7f:bb:6a:db:c5:cb:18:6f:d9:
                    80:5a:dd:0f:74:c5:ce:a7:9e:da:f1:4d:9f:2e:be:88:
                    7a:e9:0b:45:8c:d7:2f:9f:21:53:ef:00:fb:78:4c:d8:
                    ab:bd:a6:6f:53:89:f0:94:21:91:4a:5a:e8:ef:b5:2c:
                    03:12:fc:41:7b:ae:2c:ae:ac:99:ce:95:05:9b:97:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:82:9a:9a:fa:6f:40:a5:d9:bb:ff:f9:17:41:8a:4a:
        b8:36:3b:91:98:b8:7d:55:72:cd:a0:28:e6:6e:df:0d:
        e6:56:3e:59:76:25:64:e2:f5:bf:1e:8a:99:65:b7:35:
        11:79:d5:52:d7:f1:b8:54:23:48:d8:a8:96:e3:40:84:
        69:40:f7:a4:a0:b5:de:61:05:72:df:f5:45:ba:53:db:
        00:90:ad:d1:58:5e:65:78:bb:f3:11:94:cf:d3:c4:7f:
        2b:4a:ce:e7:1d:04:ef:6b:e6:ed:c6:0a:d0:65:16:7e:
        8f:f4:d4:7a:f8:7f:ca:68:0b:7b:d5:98:32:39:6f:5b:
        23:37:03:7d:0f:7b:2a:bc:06:ba:95:4b:51:f3:64:72:
        d2:b7:db:c1:fb:6c:88:cc:c8:c4:dd:d9:34:26:e6:c5:
        cd:ea:aa:f6:5a:8d:44:29:10:da:02:63:79:b6:fb:62:
        49:1e:ad:a1:91:10:a9:da:82:d4:95:2e:06:f6:ef:2a:
        72:38:de:3c:32:bb:9f:53:68:66:0b:5a:b3:ba:9a:13:
        18:0e:d5:34:ed:fd:1e:66:03:85:8a:53:ba:42:cf:3c:
        0d:d0:54:92:af:fa:9a:b8:25:ae:cf:32:b8:2c:5e:cb:
        fc:d8:4c:99:85:dd:b2:a0:a8:66:76:e6:28:09:d4:6a
    Fingerprint (SHA-256):
        97:22:F7:DB:29:57:3A:6D:F8:A9:B5:9B:A0:4D:86:90:53:E1:A1:3A:2A:25:60:E2:98:E4:38:68:73:46:73:E0
    Fingerprint (SHA1):
        22:84:EC:6A:C1:33:FF:64:03:DF:E2:4F:78:70:5D:A9:28:06:1B:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6709: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #6710: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153476 (0x1dee4104)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:42 2017
            Not After : Mon May 02 15:34:42 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:91:10:a2:56:53:4b:1c:ac:11:df:32:ab:76:9c:e2:
                    8f:3d:43:5c:8e:e9:8b:9a:c9:a3:7e:57:64:91:ec:15:
                    58:43:81:87:ae:f4:ba:99:44:96:86:db:c0:09:54:e3:
                    8a:10:27:b5:91:3f:7d:fd:07:bc:f0:d8:88:8a:be:d6:
                    59:80:e0:a1:95:21:e0:a6:34:e2:5b:11:d8:94:eb:22:
                    2d:de:c8:d5:a4:90:71:07:07:1a:de:ab:b8:cc:2e:85:
                    a6:bf:77:b0:45:65:56:e3:d5:d6:e8:03:29:32:f1:22:
                    a4:b1:03:a1:92:b0:48:12:f1:85:18:bc:ed:6e:3f:ef:
                    5f:10:c2:5b:b7:66:b1:e3:d6:5b:75:df:5a:e1:5d:f5:
                    f4:7b:c2:90:f1:94:77:0f:c3:75:dd:e1:55:df:56:38:
                    85:34:df:52:2e:ae:63:6e:41:21:85:55:4c:03:34:4c:
                    de:37:1f:88:23:4e:ed:7f:bb:6a:db:c5:cb:18:6f:d9:
                    80:5a:dd:0f:74:c5:ce:a7:9e:da:f1:4d:9f:2e:be:88:
                    7a:e9:0b:45:8c:d7:2f:9f:21:53:ef:00:fb:78:4c:d8:
                    ab:bd:a6:6f:53:89:f0:94:21:91:4a:5a:e8:ef:b5:2c:
                    03:12:fc:41:7b:ae:2c:ae:ac:99:ce:95:05:9b:97:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:82:9a:9a:fa:6f:40:a5:d9:bb:ff:f9:17:41:8a:4a:
        b8:36:3b:91:98:b8:7d:55:72:cd:a0:28:e6:6e:df:0d:
        e6:56:3e:59:76:25:64:e2:f5:bf:1e:8a:99:65:b7:35:
        11:79:d5:52:d7:f1:b8:54:23:48:d8:a8:96:e3:40:84:
        69:40:f7:a4:a0:b5:de:61:05:72:df:f5:45:ba:53:db:
        00:90:ad:d1:58:5e:65:78:bb:f3:11:94:cf:d3:c4:7f:
        2b:4a:ce:e7:1d:04:ef:6b:e6:ed:c6:0a:d0:65:16:7e:
        8f:f4:d4:7a:f8:7f:ca:68:0b:7b:d5:98:32:39:6f:5b:
        23:37:03:7d:0f:7b:2a:bc:06:ba:95:4b:51:f3:64:72:
        d2:b7:db:c1:fb:6c:88:cc:c8:c4:dd:d9:34:26:e6:c5:
        cd:ea:aa:f6:5a:8d:44:29:10:da:02:63:79:b6:fb:62:
        49:1e:ad:a1:91:10:a9:da:82:d4:95:2e:06:f6:ef:2a:
        72:38:de:3c:32:bb:9f:53:68:66:0b:5a:b3:ba:9a:13:
        18:0e:d5:34:ed:fd:1e:66:03:85:8a:53:ba:42:cf:3c:
        0d:d0:54:92:af:fa:9a:b8:25:ae:cf:32:b8:2c:5e:cb:
        fc:d8:4c:99:85:dd:b2:a0:a8:66:76:e6:28:09:d4:6a
    Fingerprint (SHA-256):
        97:22:F7:DB:29:57:3A:6D:F8:A9:B5:9B:A0:4D:86:90:53:E1:A1:3A:2A:25:60:E2:98:E4:38:68:73:46:73:E0
    Fingerprint (SHA1):
        22:84:EC:6A:C1:33:FF:64:03:DF:E2:4F:78:70:5D:A9:28:06:1B:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6711: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153478 (0x1dee4106)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:42 2017
            Not After : Mon May 02 15:34:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:fe:b5:46:48:43:a5:21:d6:90:01:85:ad:ba:69:09:
                    ec:9b:2e:e1:49:5b:5d:55:a4:e6:d1:8d:89:3d:de:5d:
                    88:d4:eb:1c:93:b4:8b:42:a7:67:78:13:4e:08:5f:3f:
                    4b:02:cd:74:53:b6:19:59:84:d4:5d:d0:8c:73:b2:f8:
                    f7:a8:a2:9c:e7:ed:b6:96:ed:1f:3d:a3:27:45:ac:fe:
                    f9:54:62:5b:c6:a1:7b:e1:ba:eb:41:d3:55:76:bd:62:
                    a9:71:64:8b:1d:ac:eb:8a:56:20:e9:ac:0e:e4:68:09:
                    37:59:e2:a8:7a:75:87:28:d8:a6:b8:55:78:a1:b6:b4:
                    9a:f9:e1:7c:0a:a8:37:1f:ed:2d:dc:c6:05:6b:48:ea:
                    b4:77:2f:13:f5:ea:a9:2b:d7:f6:53:bb:ba:16:bc:ea:
                    64:9d:1e:d5:ec:12:87:53:1d:89:b7:06:30:16:b2:3c:
                    10:54:da:bf:c6:1a:a5:54:0a:50:08:3d:8b:4d:8a:ae:
                    db:4b:6c:64:fc:cd:39:c5:96:0b:29:8c:2d:57:9c:cf:
                    41:d0:a6:37:4c:0a:13:55:f1:cc:5b:66:25:9c:f0:ce:
                    ad:16:86:3d:67:cd:5e:cb:ec:ea:5c:41:13:d0:b2:94:
                    12:53:3f:21:9e:4e:e7:b2:af:13:b9:cc:5e:dc:02:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:91:21:0a:c9:35:f0:7b:09:e6:f7:b9:da:c4:b1:5a:
        9b:cd:14:cf:3d:ef:a1:77:79:31:ef:8c:5a:d7:9b:99:
        d9:2a:f3:23:e5:fb:d1:46:59:b5:e4:74:e7:fa:cc:2a:
        35:b6:16:8a:04:66:4a:47:8c:bd:25:0d:06:e6:e5:41:
        21:69:0f:9f:55:24:e3:0e:8f:ac:98:3a:f7:71:58:f7:
        39:f1:27:23:c2:f3:ab:ad:aa:06:59:70:eb:2e:71:1b:
        04:5d:7e:68:a4:e9:0b:7b:71:c3:19:1a:c9:8b:bc:c7:
        65:d6:10:ee:ab:5a:cd:0c:8a:3a:1c:04:a6:3b:75:69:
        c2:83:3a:1f:60:c4:ef:92:ed:7f:d8:af:59:72:fd:a9:
        0a:2b:41:09:09:2e:59:99:53:a8:3c:8e:a5:30:fb:29:
        75:90:44:fe:c7:04:0c:09:18:a3:30:34:d6:92:84:4d:
        0f:3a:4f:26:fa:32:74:14:13:4a:46:92:e5:ab:13:92:
        d0:69:18:04:aa:6c:08:eb:bc:cb:0e:11:dc:05:d6:86:
        ff:2f:fe:db:6d:46:c0:b7:08:4a:e5:d9:39:56:c4:96:
        16:84:4a:e5:5d:5e:98:99:7f:2d:cf:c9:19:08:e5:68:
        d0:14:a6:a2:c1:a8:ea:b3:62:22:c8:d0:25:cd:2c:2e
    Fingerprint (SHA-256):
        E4:AE:D3:6B:9C:9B:31:46:AF:30:7D:9A:A1:48:21:29:94:1A:35:7E:00:9E:CD:34:34:4F:8B:5D:D6:8C:0F:20
    Fingerprint (SHA1):
        0E:40:58:E2:AB:01:4D:CD:A1:B1:8B:EF:05:4F:AF:E4:84:76:C5:50
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6712: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #6713: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #6714: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #6715: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153476 (0x1dee4104)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:42 2017
            Not After : Mon May 02 15:34:42 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:91:10:a2:56:53:4b:1c:ac:11:df:32:ab:76:9c:e2:
                    8f:3d:43:5c:8e:e9:8b:9a:c9:a3:7e:57:64:91:ec:15:
                    58:43:81:87:ae:f4:ba:99:44:96:86:db:c0:09:54:e3:
                    8a:10:27:b5:91:3f:7d:fd:07:bc:f0:d8:88:8a:be:d6:
                    59:80:e0:a1:95:21:e0:a6:34:e2:5b:11:d8:94:eb:22:
                    2d:de:c8:d5:a4:90:71:07:07:1a:de:ab:b8:cc:2e:85:
                    a6:bf:77:b0:45:65:56:e3:d5:d6:e8:03:29:32:f1:22:
                    a4:b1:03:a1:92:b0:48:12:f1:85:18:bc:ed:6e:3f:ef:
                    5f:10:c2:5b:b7:66:b1:e3:d6:5b:75:df:5a:e1:5d:f5:
                    f4:7b:c2:90:f1:94:77:0f:c3:75:dd:e1:55:df:56:38:
                    85:34:df:52:2e:ae:63:6e:41:21:85:55:4c:03:34:4c:
                    de:37:1f:88:23:4e:ed:7f:bb:6a:db:c5:cb:18:6f:d9:
                    80:5a:dd:0f:74:c5:ce:a7:9e:da:f1:4d:9f:2e:be:88:
                    7a:e9:0b:45:8c:d7:2f:9f:21:53:ef:00:fb:78:4c:d8:
                    ab:bd:a6:6f:53:89:f0:94:21:91:4a:5a:e8:ef:b5:2c:
                    03:12:fc:41:7b:ae:2c:ae:ac:99:ce:95:05:9b:97:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:82:9a:9a:fa:6f:40:a5:d9:bb:ff:f9:17:41:8a:4a:
        b8:36:3b:91:98:b8:7d:55:72:cd:a0:28:e6:6e:df:0d:
        e6:56:3e:59:76:25:64:e2:f5:bf:1e:8a:99:65:b7:35:
        11:79:d5:52:d7:f1:b8:54:23:48:d8:a8:96:e3:40:84:
        69:40:f7:a4:a0:b5:de:61:05:72:df:f5:45:ba:53:db:
        00:90:ad:d1:58:5e:65:78:bb:f3:11:94:cf:d3:c4:7f:
        2b:4a:ce:e7:1d:04:ef:6b:e6:ed:c6:0a:d0:65:16:7e:
        8f:f4:d4:7a:f8:7f:ca:68:0b:7b:d5:98:32:39:6f:5b:
        23:37:03:7d:0f:7b:2a:bc:06:ba:95:4b:51:f3:64:72:
        d2:b7:db:c1:fb:6c:88:cc:c8:c4:dd:d9:34:26:e6:c5:
        cd:ea:aa:f6:5a:8d:44:29:10:da:02:63:79:b6:fb:62:
        49:1e:ad:a1:91:10:a9:da:82:d4:95:2e:06:f6:ef:2a:
        72:38:de:3c:32:bb:9f:53:68:66:0b:5a:b3:ba:9a:13:
        18:0e:d5:34:ed:fd:1e:66:03:85:8a:53:ba:42:cf:3c:
        0d:d0:54:92:af:fa:9a:b8:25:ae:cf:32:b8:2c:5e:cb:
        fc:d8:4c:99:85:dd:b2:a0:a8:66:76:e6:28:09:d4:6a
    Fingerprint (SHA-256):
        97:22:F7:DB:29:57:3A:6D:F8:A9:B5:9B:A0:4D:86:90:53:E1:A1:3A:2A:25:60:E2:98:E4:38:68:73:46:73:E0
    Fingerprint (SHA1):
        22:84:EC:6A:C1:33:FF:64:03:DF:E2:4F:78:70:5D:A9:28:06:1B:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6716: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153480 (0x1dee4108)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:34:43 2017
            Not After : Mon May 02 15:34:43 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:03:e8:b3:de:d5:cc:c3:71:ed:8d:d8:db:54:4f:cf:
                    49:7d:2f:d9:ef:d8:7b:2f:72:74:18:d3:41:a3:fd:e3:
                    73:49:12:b4:01:25:d5:cc:73:a0:62:f5:d5:68:78:d4:
                    fb:22:86:b2:b6:aa:12:a9:e9:5c:5a:c7:99:87:40:11:
                    3c:df:c1:4d:cc:8d:a4:d2:70:fe:9f:32:5b:1d:a0:be:
                    69:01:d0:ec:3c:e5:88:82:3f:7c:1d:57:17:4a:b3:12:
                    01:e2:36:38:39:a6:fc:9f:72:91:87:f7:81:2b:44:6d:
                    51:32:8e:47:e2:21:8d:40:aa:0f:a3:b5:62:00:97:90:
                    e7:17:fa:2e:e5:6d:82:29:f1:0a:9b:0d:4f:e9:1d:c7:
                    fd:7c:ff:14:b2:12:0f:05:3a:b8:9a:d6:61:9b:f6:e0:
                    0d:60:c3:03:c4:39:88:8b:6b:6b:43:2b:3d:67:05:14:
                    7b:04:fe:ca:53:57:f7:60:51:70:f3:6c:ea:e5:d3:3f:
                    54:97:3b:7b:92:6b:47:59:c7:5f:be:aa:44:fe:ec:22:
                    26:f9:39:9c:d5:b2:3a:fe:e3:e2:00:a7:7a:c0:25:fc:
                    04:f5:63:47:b6:c7:d4:99:38:11:b2:15:02:17:9d:dd:
                    d6:07:7b:ac:69:9f:c1:02:1f:23:1f:b1:0d:d2:ed:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:86:48:24:0f:a0:8b:53:eb:55:81:49:df:dd:f3:1d:
        ce:ca:e4:5e:5e:15:a0:36:74:d0:40:9e:94:43:3d:44:
        5e:e9:c2:78:28:44:3d:e3:d5:85:f8:5f:7f:d0:63:85:
        04:9b:a3:48:42:ca:22:26:a1:d2:85:a5:6f:3d:94:c5:
        9a:d9:5b:f1:b7:7e:79:50:59:54:f9:45:f2:82:3d:3a:
        4c:74:66:1a:05:b6:1b:7b:c7:af:7a:ff:e0:d3:b2:ce:
        b3:55:72:fe:7d:8d:d3:ce:b8:14:e8:af:17:e9:b8:da:
        2c:f8:08:7f:1e:32:09:73:28:86:98:89:64:30:93:d1:
        d5:d1:c1:d6:f7:ba:66:c3:06:62:03:5b:72:51:79:c7:
        14:53:36:86:32:41:0c:d4:23:59:79:71:b0:cd:d6:72:
        51:c1:38:e0:15:81:76:28:be:3c:41:e7:0b:61:27:bd:
        ee:6c:19:c5:ee:04:e2:de:6d:1f:e4:86:0b:6d:bd:13:
        4d:dd:78:7d:64:a3:78:f5:71:e7:5c:ef:a8:9b:4a:c0:
        2e:b5:3b:99:6f:cc:1b:08:ca:1b:6d:05:7c:ae:e8:84:
        90:3b:ef:ab:19:c0:81:77:7a:7e:07:55:4e:f4:a7:67:
        34:fd:4d:26:a1:0e:d3:fa:71:ac:f8:d4:e9:56:5b:64
    Fingerprint (SHA-256):
        A5:C9:C7:C9:19:34:4D:52:20:60:64:4C:86:98:A9:C6:58:A1:5C:3C:5D:1C:35:50:6A:F5:FC:6D:1E:BB:6E:28
    Fingerprint (SHA1):
        79:DA:C0:CB:F5:31:47:62:5A:6F:5F:94:EB:69:74:ED:8E:01:4B:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #6717: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153476 (0x1dee4104)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:42 2017
            Not After : Mon May 02 15:34:42 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:91:10:a2:56:53:4b:1c:ac:11:df:32:ab:76:9c:e2:
                    8f:3d:43:5c:8e:e9:8b:9a:c9:a3:7e:57:64:91:ec:15:
                    58:43:81:87:ae:f4:ba:99:44:96:86:db:c0:09:54:e3:
                    8a:10:27:b5:91:3f:7d:fd:07:bc:f0:d8:88:8a:be:d6:
                    59:80:e0:a1:95:21:e0:a6:34:e2:5b:11:d8:94:eb:22:
                    2d:de:c8:d5:a4:90:71:07:07:1a:de:ab:b8:cc:2e:85:
                    a6:bf:77:b0:45:65:56:e3:d5:d6:e8:03:29:32:f1:22:
                    a4:b1:03:a1:92:b0:48:12:f1:85:18:bc:ed:6e:3f:ef:
                    5f:10:c2:5b:b7:66:b1:e3:d6:5b:75:df:5a:e1:5d:f5:
                    f4:7b:c2:90:f1:94:77:0f:c3:75:dd:e1:55:df:56:38:
                    85:34:df:52:2e:ae:63:6e:41:21:85:55:4c:03:34:4c:
                    de:37:1f:88:23:4e:ed:7f:bb:6a:db:c5:cb:18:6f:d9:
                    80:5a:dd:0f:74:c5:ce:a7:9e:da:f1:4d:9f:2e:be:88:
                    7a:e9:0b:45:8c:d7:2f:9f:21:53:ef:00:fb:78:4c:d8:
                    ab:bd:a6:6f:53:89:f0:94:21:91:4a:5a:e8:ef:b5:2c:
                    03:12:fc:41:7b:ae:2c:ae:ac:99:ce:95:05:9b:97:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:82:9a:9a:fa:6f:40:a5:d9:bb:ff:f9:17:41:8a:4a:
        b8:36:3b:91:98:b8:7d:55:72:cd:a0:28:e6:6e:df:0d:
        e6:56:3e:59:76:25:64:e2:f5:bf:1e:8a:99:65:b7:35:
        11:79:d5:52:d7:f1:b8:54:23:48:d8:a8:96:e3:40:84:
        69:40:f7:a4:a0:b5:de:61:05:72:df:f5:45:ba:53:db:
        00:90:ad:d1:58:5e:65:78:bb:f3:11:94:cf:d3:c4:7f:
        2b:4a:ce:e7:1d:04:ef:6b:e6:ed:c6:0a:d0:65:16:7e:
        8f:f4:d4:7a:f8:7f:ca:68:0b:7b:d5:98:32:39:6f:5b:
        23:37:03:7d:0f:7b:2a:bc:06:ba:95:4b:51:f3:64:72:
        d2:b7:db:c1:fb:6c:88:cc:c8:c4:dd:d9:34:26:e6:c5:
        cd:ea:aa:f6:5a:8d:44:29:10:da:02:63:79:b6:fb:62:
        49:1e:ad:a1:91:10:a9:da:82:d4:95:2e:06:f6:ef:2a:
        72:38:de:3c:32:bb:9f:53:68:66:0b:5a:b3:ba:9a:13:
        18:0e:d5:34:ed:fd:1e:66:03:85:8a:53:ba:42:cf:3c:
        0d:d0:54:92:af:fa:9a:b8:25:ae:cf:32:b8:2c:5e:cb:
        fc:d8:4c:99:85:dd:b2:a0:a8:66:76:e6:28:09:d4:6a
    Fingerprint (SHA-256):
        97:22:F7:DB:29:57:3A:6D:F8:A9:B5:9B:A0:4D:86:90:53:E1:A1:3A:2A:25:60:E2:98:E4:38:68:73:46:73:E0
    Fingerprint (SHA1):
        22:84:EC:6A:C1:33:FF:64:03:DF:E2:4F:78:70:5D:A9:28:06:1B:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6718: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #6719: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #6720: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #6721: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #6722: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #6723: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153481 (0x1dee4109)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:34:43 2017
            Not After : Mon May 02 15:34:43 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:ee:55:0d:9e:4b:cf:e8:29:c1:7e:e4:a6:46:86:c5:
                    53:c1:94:9c:00:38:5f:f1:8d:06:e8:75:c5:4f:2e:37:
                    01:3d:96:3e:14:80:48:83:48:98:77:71:ef:14:73:14:
                    9e:be:46:1b:76:bf:49:e0:1a:e5:98:78:0c:1e:1e:23:
                    9b:c3:df:4e:f3:a3:37:38:31:c3:93:94:82:5d:49:dd:
                    be:8f:5b:fa:5a:9c:b2:62:07:e5:c9:ad:a6:08:ae:6f:
                    e6:0b:af:b7:22:18:25:9e:2f:2a:5e:08:e9:e4:bf:26:
                    47:02:63:ce:91:3a:d6:e2:98:2a:82:57:2f:6c:b0:83:
                    de:8a:5c:47:b5:47:b2:0e:87:f6:0f:01:cb:e2:d6:56:
                    1f:2e:fd:03:81:60:09:12:94:ac:54:96:40:cf:6c:62:
                    91:c8:a6:2f:3e:3a:98:1f:9a:9c:b9:92:c7:69:0e:41:
                    c3:62:3d:04:8c:13:00:e3:4a:3c:e3:74:2c:17:1f:23:
                    62:7c:fe:0c:15:90:2a:4b:cb:f3:d1:19:e8:de:b9:8f:
                    51:f0:6b:2e:4c:8d:8c:66:85:c7:06:11:dd:dc:fc:27:
                    84:71:fb:12:53:41:5c:22:30:30:48:99:12:6a:3c:4a:
                    94:4c:a2:0b:a7:3d:3b:fb:d0:98:0e:6a:72:5f:c9:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:bc:3c:85:69:71:38:e6:ff:1e:c9:23:75:8f:da:af:
        29:83:9f:85:92:4c:7b:ef:df:cb:f3:a7:98:e0:dc:63:
        97:e0:c9:e9:dc:fc:4c:41:6c:1a:b8:c6:7c:78:b7:c2:
        33:be:40:90:32:47:d8:77:2e:7b:e4:b6:b0:0e:d6:b1:
        f1:61:13:e3:84:dd:5a:00:fe:15:c0:00:ff:4e:f0:8c:
        8e:c5:5b:60:f9:26:95:74:f4:51:75:b6:23:03:ba:43:
        f7:10:70:85:a2:11:a9:b2:a5:66:e1:a6:78:57:65:dd:
        30:f4:f9:05:47:90:3c:4e:ca:a1:ba:e8:c4:14:1c:e2:
        4c:67:32:e4:d9:9a:61:85:d3:bc:e8:c9:5a:e6:4d:f1:
        98:4f:63:b2:c4:66:fa:7d:ab:dc:30:be:49:97:62:19:
        1e:a3:08:8e:a3:37:ec:15:d7:e8:bb:5c:78:bb:b0:db:
        4b:0c:29:cd:e6:82:4a:c3:c9:76:a2:61:44:d0:e3:c0:
        ec:0e:d0:e1:59:2f:56:ac:1c:ca:8b:27:ed:74:78:c6:
        60:30:22:f5:c2:9f:8e:29:25:4f:03:25:df:ed:bf:98:
        cf:57:c4:93:05:48:dd:5f:e0:21:ad:34:96:d3:50:cb:
        1a:46:58:1f:40:9d:b3:a4:62:4f:ae:05:51:cc:d2:95
    Fingerprint (SHA-256):
        CF:E3:E7:B6:56:39:BB:15:68:AA:80:F1:05:1F:F4:46:F0:2B:5B:29:28:4C:89:43:92:73:8D:D8:74:66:99:D5
    Fingerprint (SHA1):
        91:14:EF:09:68:7D:6A:D4:AC:05:51:CF:D5:54:EF:9F:DD:9F:B0:4C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6724: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #6725: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #6726: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #6727: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #6728: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6729: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6730: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6731: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6732: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6733: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6734: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6735: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6736: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6737: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6738: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6739: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6740: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6741: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6742: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #6743: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6744: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6745: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6746: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6747: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 24646 at Tue May  2 15:34:45 UTC 2017
kill -USR1 24646
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 24646 killed at Tue May  2 15:34:45 UTC 2017
httpserv starting at Tue May  2 15:34:45 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:34:45 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 7661 >/dev/null 2>/dev/null
httpserv with PID 7661 found at Tue May  2 15:34:45 UTC 2017
httpserv with PID 7661 started at Tue May  2 15:34:45 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6748: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153483 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6749: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6750: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6751: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153484 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6752: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6753: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6754: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6755: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153485 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6756: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6757: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153486 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6758: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6759: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6760: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6761: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6762: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502153487   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6763: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6764: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6765: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6766: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6767: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153484 (0x1dee410c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:46 2017
            Not After : Mon May 02 15:34:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:c4:66:3f:6d:da:41:80:71:2e:61:3a:7e:41:8c:8e:
                    f0:cd:d8:b3:6b:78:59:11:b7:12:c4:75:74:9b:80:4a:
                    fa:cc:dc:7f:3a:a2:27:c9:7d:3e:d2:88:c4:80:38:97:
                    ab:f8:c0:69:f0:63:e4:d2:cc:d1:4f:58:65:b1:1a:fb:
                    2a:45:67:b9:74:22:6c:11:65:5b:02:3d:d1:bf:4f:dd:
                    2c:9d:20:5d:81:a3:48:d0:d4:50:6a:40:13:51:5b:6f:
                    21:fc:bb:64:67:5e:12:17:64:4c:94:be:f1:74:52:06:
                    16:78:df:94:30:ba:98:ad:99:a2:be:72:19:85:40:d6:
                    b3:e1:2e:03:f3:6e:78:0c:a6:20:4f:98:00:10:ba:44:
                    d2:47:43:14:af:13:19:05:b3:31:d8:8a:a5:91:aa:71:
                    a5:bc:8a:cb:0e:8a:10:58:59:38:27:95:0d:e5:97:73:
                    84:4f:c3:4a:67:e8:b9:2c:15:d7:a2:94:c6:f5:35:f1:
                    eb:cb:16:d4:ec:b2:fd:c8:87:61:10:70:c3:6b:9f:9d:
                    94:ab:95:f9:58:ec:4b:ed:34:ec:52:87:83:66:52:69:
                    1e:a2:0b:af:8c:16:52:a8:4e:a8:f5:0f:95:eb:81:a7:
                    aa:d3:9e:f2:4a:eb:02:1f:f8:e5:3f:2f:0a:c2:cd:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:f9:b0:d4:1c:fb:25:81:d2:60:c7:48:98:c6:02:74:
        3b:44:09:f4:0b:43:a4:7f:a5:12:33:94:32:4a:71:a6:
        d1:a0:98:03:8f:b0:69:a7:ae:af:7f:17:96:b8:86:e4:
        0a:7e:06:2f:b0:a0:30:d6:c3:13:f2:15:08:57:ca:24:
        b6:71:4d:91:c7:74:42:d7:35:48:8a:b4:ea:49:5f:d4:
        a5:ed:96:52:3c:75:9d:9b:b0:af:7e:d5:46:58:d0:52:
        d2:f9:f5:5f:0a:1a:8b:52:94:09:b9:56:a8:ec:0c:2c:
        79:9b:ee:e3:2e:d5:62:6a:3c:ce:8a:1e:84:81:9f:d6:
        93:a1:47:d9:4f:0e:be:2f:94:63:7c:05:65:b8:5e:ed:
        66:b0:01:04:64:2b:f6:ad:17:d6:e3:4c:e6:6a:d2:cd:
        66:67:ab:72:3c:64:0c:7c:7d:4d:50:52:0e:e8:90:6f:
        cc:9a:0b:bd:c2:df:2b:bb:c3:38:cb:ee:4f:32:d2:2c:
        9e:ab:a1:d1:10:8f:02:c2:ed:b1:f7:7c:12:30:99:c1:
        9c:2d:9b:7a:8a:6a:22:80:f3:5e:af:24:4f:a7:10:f8:
        4d:c2:48:04:10:5d:21:bd:c5:19:be:de:6e:f9:80:92:
        c6:ac:8c:72:f3:b7:5f:5e:0f:bc:cb:ba:da:d4:1d:c5
    Fingerprint (SHA-256):
        59:95:75:6A:82:74:05:5F:BF:CE:EB:2E:AB:35:A5:C7:80:13:06:79:FF:D1:3F:D4:47:F2:82:81:54:00:93:14
    Fingerprint (SHA1):
        26:11:A1:93:9A:59:F2:66:1E:39:78:9A:5E:0F:21:A8:A7:59:80:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6768: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153483 (0x1dee410b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:34:46 2017
            Not After : Mon May 02 15:34:46 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:fd:13:4b:cf:2e:c1:fc:27:71:0a:9c:c9:87:c5:c5:
                    8d:79:ea:f7:bb:29:32:b5:84:b3:78:41:e8:e5:ad:b0:
                    7e:c9:6b:7c:98:50:11:e8:46:dd:3e:aa:88:73:d5:8d:
                    2a:e2:36:ab:08:66:ae:56:a5:60:10:0d:1e:4a:2c:fc:
                    b0:a1:9d:57:83:f3:c7:7b:1a:52:0e:c4:48:2f:81:ee:
                    bd:2f:88:b7:52:bf:f0:4e:f2:6a:8f:46:82:7d:4a:9c:
                    a1:74:8c:9f:72:3b:04:9f:4c:30:29:04:0d:04:bb:32:
                    3b:d9:9e:02:d1:00:af:cb:bc:5c:c4:a8:78:3d:db:10:
                    e0:69:0b:54:29:f2:db:9c:69:15:a2:3a:5a:f2:19:07:
                    16:cf:71:6e:3c:95:c3:4d:8e:bd:a8:01:f9:2f:d8:25:
                    a4:04:e3:8a:3b:67:38:37:c2:0f:32:60:d5:f9:c0:52:
                    80:6e:0c:74:a1:4a:33:46:22:ef:e5:be:2a:ce:47:77:
                    66:fd:41:18:d6:45:7c:6b:6a:5d:37:5f:87:51:e4:e7:
                    e1:16:66:15:71:fc:5e:ab:80:0e:cb:83:78:bc:d7:1c:
                    6f:8c:b9:67:35:64:c0:cf:8c:6b:e5:57:61:49:ae:72:
                    d4:6c:74:94:ba:52:20:cd:80:68:8e:1c:56:72:90:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:1e:c0:71:d3:6b:57:19:05:62:9c:f8:b5:21:b4:23:
        fd:e5:12:21:42:f9:f0:6c:0c:4d:dd:1c:70:04:73:c4:
        34:9a:6b:56:07:49:46:f6:30:cf:44:a1:de:8c:73:30:
        7d:20:aa:05:64:73:90:ea:b5:90:37:58:c4:1a:2e:bf:
        37:1a:df:3b:b1:b2:a6:0f:28:bb:01:b7:64:95:a6:0a:
        ba:a8:85:08:1a:4d:6d:22:d2:54:cb:ec:a2:70:d2:b0:
        a6:2d:da:07:41:b4:9b:0e:31:9a:d3:97:68:2d:f9:37:
        8b:14:a8:c2:81:ee:1e:bf:16:7f:2f:bf:73:96:73:5e:
        51:94:f7:68:34:5e:3d:28:47:42:55:c2:ba:2c:18:ab:
        d7:00:b6:2f:7b:25:2a:80:5c:c0:72:bb:6f:fd:72:66:
        3a:80:fd:0f:d6:f1:1e:a3:4a:31:a7:43:f1:cc:cc:94:
        2d:d1:92:26:38:38:e8:58:64:fc:c3:5b:10:40:b7:04:
        d1:b6:4f:82:e2:48:4e:2f:25:53:ae:23:f3:6b:46:47:
        df:43:20:c2:df:89:c2:7b:41:9f:29:80:b6:d7:ea:47:
        6a:11:0f:97:1b:d6:ca:c4:ba:06:c4:95:f1:09:09:7c:
        90:b5:55:9d:f8:95:7c:f0:ef:3f:8e:7b:80:dd:57:13
    Fingerprint (SHA-256):
        AF:D6:AD:CE:D1:D3:39:99:38:47:7E:9D:07:F3:2B:B1:A3:96:52:87:82:5F:9C:18:36:06:A1:94:26:18:F2:A5
    Fingerprint (SHA1):
        65:1C:35:6B:95:C5:00:3E:1B:8C:26:36:7B:27:2D:C4:8F:3E:D6:63
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6769: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6770: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6771: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6772: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153483 (0x1dee410b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:34:46 2017
            Not After : Mon May 02 15:34:46 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:fd:13:4b:cf:2e:c1:fc:27:71:0a:9c:c9:87:c5:c5:
                    8d:79:ea:f7:bb:29:32:b5:84:b3:78:41:e8:e5:ad:b0:
                    7e:c9:6b:7c:98:50:11:e8:46:dd:3e:aa:88:73:d5:8d:
                    2a:e2:36:ab:08:66:ae:56:a5:60:10:0d:1e:4a:2c:fc:
                    b0:a1:9d:57:83:f3:c7:7b:1a:52:0e:c4:48:2f:81:ee:
                    bd:2f:88:b7:52:bf:f0:4e:f2:6a:8f:46:82:7d:4a:9c:
                    a1:74:8c:9f:72:3b:04:9f:4c:30:29:04:0d:04:bb:32:
                    3b:d9:9e:02:d1:00:af:cb:bc:5c:c4:a8:78:3d:db:10:
                    e0:69:0b:54:29:f2:db:9c:69:15:a2:3a:5a:f2:19:07:
                    16:cf:71:6e:3c:95:c3:4d:8e:bd:a8:01:f9:2f:d8:25:
                    a4:04:e3:8a:3b:67:38:37:c2:0f:32:60:d5:f9:c0:52:
                    80:6e:0c:74:a1:4a:33:46:22:ef:e5:be:2a:ce:47:77:
                    66:fd:41:18:d6:45:7c:6b:6a:5d:37:5f:87:51:e4:e7:
                    e1:16:66:15:71:fc:5e:ab:80:0e:cb:83:78:bc:d7:1c:
                    6f:8c:b9:67:35:64:c0:cf:8c:6b:e5:57:61:49:ae:72:
                    d4:6c:74:94:ba:52:20:cd:80:68:8e:1c:56:72:90:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:1e:c0:71:d3:6b:57:19:05:62:9c:f8:b5:21:b4:23:
        fd:e5:12:21:42:f9:f0:6c:0c:4d:dd:1c:70:04:73:c4:
        34:9a:6b:56:07:49:46:f6:30:cf:44:a1:de:8c:73:30:
        7d:20:aa:05:64:73:90:ea:b5:90:37:58:c4:1a:2e:bf:
        37:1a:df:3b:b1:b2:a6:0f:28:bb:01:b7:64:95:a6:0a:
        ba:a8:85:08:1a:4d:6d:22:d2:54:cb:ec:a2:70:d2:b0:
        a6:2d:da:07:41:b4:9b:0e:31:9a:d3:97:68:2d:f9:37:
        8b:14:a8:c2:81:ee:1e:bf:16:7f:2f:bf:73:96:73:5e:
        51:94:f7:68:34:5e:3d:28:47:42:55:c2:ba:2c:18:ab:
        d7:00:b6:2f:7b:25:2a:80:5c:c0:72:bb:6f:fd:72:66:
        3a:80:fd:0f:d6:f1:1e:a3:4a:31:a7:43:f1:cc:cc:94:
        2d:d1:92:26:38:38:e8:58:64:fc:c3:5b:10:40:b7:04:
        d1:b6:4f:82:e2:48:4e:2f:25:53:ae:23:f3:6b:46:47:
        df:43:20:c2:df:89:c2:7b:41:9f:29:80:b6:d7:ea:47:
        6a:11:0f:97:1b:d6:ca:c4:ba:06:c4:95:f1:09:09:7c:
        90:b5:55:9d:f8:95:7c:f0:ef:3f:8e:7b:80:dd:57:13
    Fingerprint (SHA-256):
        AF:D6:AD:CE:D1:D3:39:99:38:47:7E:9D:07:F3:2B:B1:A3:96:52:87:82:5F:9C:18:36:06:A1:94:26:18:F2:A5
    Fingerprint (SHA1):
        65:1C:35:6B:95:C5:00:3E:1B:8C:26:36:7B:27:2D:C4:8F:3E:D6:63
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6773: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153484 (0x1dee410c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:46 2017
            Not After : Mon May 02 15:34:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:c4:66:3f:6d:da:41:80:71:2e:61:3a:7e:41:8c:8e:
                    f0:cd:d8:b3:6b:78:59:11:b7:12:c4:75:74:9b:80:4a:
                    fa:cc:dc:7f:3a:a2:27:c9:7d:3e:d2:88:c4:80:38:97:
                    ab:f8:c0:69:f0:63:e4:d2:cc:d1:4f:58:65:b1:1a:fb:
                    2a:45:67:b9:74:22:6c:11:65:5b:02:3d:d1:bf:4f:dd:
                    2c:9d:20:5d:81:a3:48:d0:d4:50:6a:40:13:51:5b:6f:
                    21:fc:bb:64:67:5e:12:17:64:4c:94:be:f1:74:52:06:
                    16:78:df:94:30:ba:98:ad:99:a2:be:72:19:85:40:d6:
                    b3:e1:2e:03:f3:6e:78:0c:a6:20:4f:98:00:10:ba:44:
                    d2:47:43:14:af:13:19:05:b3:31:d8:8a:a5:91:aa:71:
                    a5:bc:8a:cb:0e:8a:10:58:59:38:27:95:0d:e5:97:73:
                    84:4f:c3:4a:67:e8:b9:2c:15:d7:a2:94:c6:f5:35:f1:
                    eb:cb:16:d4:ec:b2:fd:c8:87:61:10:70:c3:6b:9f:9d:
                    94:ab:95:f9:58:ec:4b:ed:34:ec:52:87:83:66:52:69:
                    1e:a2:0b:af:8c:16:52:a8:4e:a8:f5:0f:95:eb:81:a7:
                    aa:d3:9e:f2:4a:eb:02:1f:f8:e5:3f:2f:0a:c2:cd:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:f9:b0:d4:1c:fb:25:81:d2:60:c7:48:98:c6:02:74:
        3b:44:09:f4:0b:43:a4:7f:a5:12:33:94:32:4a:71:a6:
        d1:a0:98:03:8f:b0:69:a7:ae:af:7f:17:96:b8:86:e4:
        0a:7e:06:2f:b0:a0:30:d6:c3:13:f2:15:08:57:ca:24:
        b6:71:4d:91:c7:74:42:d7:35:48:8a:b4:ea:49:5f:d4:
        a5:ed:96:52:3c:75:9d:9b:b0:af:7e:d5:46:58:d0:52:
        d2:f9:f5:5f:0a:1a:8b:52:94:09:b9:56:a8:ec:0c:2c:
        79:9b:ee:e3:2e:d5:62:6a:3c:ce:8a:1e:84:81:9f:d6:
        93:a1:47:d9:4f:0e:be:2f:94:63:7c:05:65:b8:5e:ed:
        66:b0:01:04:64:2b:f6:ad:17:d6:e3:4c:e6:6a:d2:cd:
        66:67:ab:72:3c:64:0c:7c:7d:4d:50:52:0e:e8:90:6f:
        cc:9a:0b:bd:c2:df:2b:bb:c3:38:cb:ee:4f:32:d2:2c:
        9e:ab:a1:d1:10:8f:02:c2:ed:b1:f7:7c:12:30:99:c1:
        9c:2d:9b:7a:8a:6a:22:80:f3:5e:af:24:4f:a7:10:f8:
        4d:c2:48:04:10:5d:21:bd:c5:19:be:de:6e:f9:80:92:
        c6:ac:8c:72:f3:b7:5f:5e:0f:bc:cb:ba:da:d4:1d:c5
    Fingerprint (SHA-256):
        59:95:75:6A:82:74:05:5F:BF:CE:EB:2E:AB:35:A5:C7:80:13:06:79:FF:D1:3F:D4:47:F2:82:81:54:00:93:14
    Fingerprint (SHA1):
        26:11:A1:93:9A:59:F2:66:1E:39:78:9A:5E:0F:21:A8:A7:59:80:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6774: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6775: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6776: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6777: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6778: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6779: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153484 (0x1dee410c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:46 2017
            Not After : Mon May 02 15:34:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:c4:66:3f:6d:da:41:80:71:2e:61:3a:7e:41:8c:8e:
                    f0:cd:d8:b3:6b:78:59:11:b7:12:c4:75:74:9b:80:4a:
                    fa:cc:dc:7f:3a:a2:27:c9:7d:3e:d2:88:c4:80:38:97:
                    ab:f8:c0:69:f0:63:e4:d2:cc:d1:4f:58:65:b1:1a:fb:
                    2a:45:67:b9:74:22:6c:11:65:5b:02:3d:d1:bf:4f:dd:
                    2c:9d:20:5d:81:a3:48:d0:d4:50:6a:40:13:51:5b:6f:
                    21:fc:bb:64:67:5e:12:17:64:4c:94:be:f1:74:52:06:
                    16:78:df:94:30:ba:98:ad:99:a2:be:72:19:85:40:d6:
                    b3:e1:2e:03:f3:6e:78:0c:a6:20:4f:98:00:10:ba:44:
                    d2:47:43:14:af:13:19:05:b3:31:d8:8a:a5:91:aa:71:
                    a5:bc:8a:cb:0e:8a:10:58:59:38:27:95:0d:e5:97:73:
                    84:4f:c3:4a:67:e8:b9:2c:15:d7:a2:94:c6:f5:35:f1:
                    eb:cb:16:d4:ec:b2:fd:c8:87:61:10:70:c3:6b:9f:9d:
                    94:ab:95:f9:58:ec:4b:ed:34:ec:52:87:83:66:52:69:
                    1e:a2:0b:af:8c:16:52:a8:4e:a8:f5:0f:95:eb:81:a7:
                    aa:d3:9e:f2:4a:eb:02:1f:f8:e5:3f:2f:0a:c2:cd:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:f9:b0:d4:1c:fb:25:81:d2:60:c7:48:98:c6:02:74:
        3b:44:09:f4:0b:43:a4:7f:a5:12:33:94:32:4a:71:a6:
        d1:a0:98:03:8f:b0:69:a7:ae:af:7f:17:96:b8:86:e4:
        0a:7e:06:2f:b0:a0:30:d6:c3:13:f2:15:08:57:ca:24:
        b6:71:4d:91:c7:74:42:d7:35:48:8a:b4:ea:49:5f:d4:
        a5:ed:96:52:3c:75:9d:9b:b0:af:7e:d5:46:58:d0:52:
        d2:f9:f5:5f:0a:1a:8b:52:94:09:b9:56:a8:ec:0c:2c:
        79:9b:ee:e3:2e:d5:62:6a:3c:ce:8a:1e:84:81:9f:d6:
        93:a1:47:d9:4f:0e:be:2f:94:63:7c:05:65:b8:5e:ed:
        66:b0:01:04:64:2b:f6:ad:17:d6:e3:4c:e6:6a:d2:cd:
        66:67:ab:72:3c:64:0c:7c:7d:4d:50:52:0e:e8:90:6f:
        cc:9a:0b:bd:c2:df:2b:bb:c3:38:cb:ee:4f:32:d2:2c:
        9e:ab:a1:d1:10:8f:02:c2:ed:b1:f7:7c:12:30:99:c1:
        9c:2d:9b:7a:8a:6a:22:80:f3:5e:af:24:4f:a7:10:f8:
        4d:c2:48:04:10:5d:21:bd:c5:19:be:de:6e:f9:80:92:
        c6:ac:8c:72:f3:b7:5f:5e:0f:bc:cb:ba:da:d4:1d:c5
    Fingerprint (SHA-256):
        59:95:75:6A:82:74:05:5F:BF:CE:EB:2E:AB:35:A5:C7:80:13:06:79:FF:D1:3F:D4:47:F2:82:81:54:00:93:14
    Fingerprint (SHA1):
        26:11:A1:93:9A:59:F2:66:1E:39:78:9A:5E:0F:21:A8:A7:59:80:F4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6780: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153484 (0x1dee410c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:46 2017
            Not After : Mon May 02 15:34:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:c4:66:3f:6d:da:41:80:71:2e:61:3a:7e:41:8c:8e:
                    f0:cd:d8:b3:6b:78:59:11:b7:12:c4:75:74:9b:80:4a:
                    fa:cc:dc:7f:3a:a2:27:c9:7d:3e:d2:88:c4:80:38:97:
                    ab:f8:c0:69:f0:63:e4:d2:cc:d1:4f:58:65:b1:1a:fb:
                    2a:45:67:b9:74:22:6c:11:65:5b:02:3d:d1:bf:4f:dd:
                    2c:9d:20:5d:81:a3:48:d0:d4:50:6a:40:13:51:5b:6f:
                    21:fc:bb:64:67:5e:12:17:64:4c:94:be:f1:74:52:06:
                    16:78:df:94:30:ba:98:ad:99:a2:be:72:19:85:40:d6:
                    b3:e1:2e:03:f3:6e:78:0c:a6:20:4f:98:00:10:ba:44:
                    d2:47:43:14:af:13:19:05:b3:31:d8:8a:a5:91:aa:71:
                    a5:bc:8a:cb:0e:8a:10:58:59:38:27:95:0d:e5:97:73:
                    84:4f:c3:4a:67:e8:b9:2c:15:d7:a2:94:c6:f5:35:f1:
                    eb:cb:16:d4:ec:b2:fd:c8:87:61:10:70:c3:6b:9f:9d:
                    94:ab:95:f9:58:ec:4b:ed:34:ec:52:87:83:66:52:69:
                    1e:a2:0b:af:8c:16:52:a8:4e:a8:f5:0f:95:eb:81:a7:
                    aa:d3:9e:f2:4a:eb:02:1f:f8:e5:3f:2f:0a:c2:cd:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:f9:b0:d4:1c:fb:25:81:d2:60:c7:48:98:c6:02:74:
        3b:44:09:f4:0b:43:a4:7f:a5:12:33:94:32:4a:71:a6:
        d1:a0:98:03:8f:b0:69:a7:ae:af:7f:17:96:b8:86:e4:
        0a:7e:06:2f:b0:a0:30:d6:c3:13:f2:15:08:57:ca:24:
        b6:71:4d:91:c7:74:42:d7:35:48:8a:b4:ea:49:5f:d4:
        a5:ed:96:52:3c:75:9d:9b:b0:af:7e:d5:46:58:d0:52:
        d2:f9:f5:5f:0a:1a:8b:52:94:09:b9:56:a8:ec:0c:2c:
        79:9b:ee:e3:2e:d5:62:6a:3c:ce:8a:1e:84:81:9f:d6:
        93:a1:47:d9:4f:0e:be:2f:94:63:7c:05:65:b8:5e:ed:
        66:b0:01:04:64:2b:f6:ad:17:d6:e3:4c:e6:6a:d2:cd:
        66:67:ab:72:3c:64:0c:7c:7d:4d:50:52:0e:e8:90:6f:
        cc:9a:0b:bd:c2:df:2b:bb:c3:38:cb:ee:4f:32:d2:2c:
        9e:ab:a1:d1:10:8f:02:c2:ed:b1:f7:7c:12:30:99:c1:
        9c:2d:9b:7a:8a:6a:22:80:f3:5e:af:24:4f:a7:10:f8:
        4d:c2:48:04:10:5d:21:bd:c5:19:be:de:6e:f9:80:92:
        c6:ac:8c:72:f3:b7:5f:5e:0f:bc:cb:ba:da:d4:1d:c5
    Fingerprint (SHA-256):
        59:95:75:6A:82:74:05:5F:BF:CE:EB:2E:AB:35:A5:C7:80:13:06:79:FF:D1:3F:D4:47:F2:82:81:54:00:93:14
    Fingerprint (SHA1):
        26:11:A1:93:9A:59:F2:66:1E:39:78:9A:5E:0F:21:A8:A7:59:80:F4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6781: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6782: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6783: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6784: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6785: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6786: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153483 (0x1dee410b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:34:46 2017
            Not After : Mon May 02 15:34:46 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:fd:13:4b:cf:2e:c1:fc:27:71:0a:9c:c9:87:c5:c5:
                    8d:79:ea:f7:bb:29:32:b5:84:b3:78:41:e8:e5:ad:b0:
                    7e:c9:6b:7c:98:50:11:e8:46:dd:3e:aa:88:73:d5:8d:
                    2a:e2:36:ab:08:66:ae:56:a5:60:10:0d:1e:4a:2c:fc:
                    b0:a1:9d:57:83:f3:c7:7b:1a:52:0e:c4:48:2f:81:ee:
                    bd:2f:88:b7:52:bf:f0:4e:f2:6a:8f:46:82:7d:4a:9c:
                    a1:74:8c:9f:72:3b:04:9f:4c:30:29:04:0d:04:bb:32:
                    3b:d9:9e:02:d1:00:af:cb:bc:5c:c4:a8:78:3d:db:10:
                    e0:69:0b:54:29:f2:db:9c:69:15:a2:3a:5a:f2:19:07:
                    16:cf:71:6e:3c:95:c3:4d:8e:bd:a8:01:f9:2f:d8:25:
                    a4:04:e3:8a:3b:67:38:37:c2:0f:32:60:d5:f9:c0:52:
                    80:6e:0c:74:a1:4a:33:46:22:ef:e5:be:2a:ce:47:77:
                    66:fd:41:18:d6:45:7c:6b:6a:5d:37:5f:87:51:e4:e7:
                    e1:16:66:15:71:fc:5e:ab:80:0e:cb:83:78:bc:d7:1c:
                    6f:8c:b9:67:35:64:c0:cf:8c:6b:e5:57:61:49:ae:72:
                    d4:6c:74:94:ba:52:20:cd:80:68:8e:1c:56:72:90:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:1e:c0:71:d3:6b:57:19:05:62:9c:f8:b5:21:b4:23:
        fd:e5:12:21:42:f9:f0:6c:0c:4d:dd:1c:70:04:73:c4:
        34:9a:6b:56:07:49:46:f6:30:cf:44:a1:de:8c:73:30:
        7d:20:aa:05:64:73:90:ea:b5:90:37:58:c4:1a:2e:bf:
        37:1a:df:3b:b1:b2:a6:0f:28:bb:01:b7:64:95:a6:0a:
        ba:a8:85:08:1a:4d:6d:22:d2:54:cb:ec:a2:70:d2:b0:
        a6:2d:da:07:41:b4:9b:0e:31:9a:d3:97:68:2d:f9:37:
        8b:14:a8:c2:81:ee:1e:bf:16:7f:2f:bf:73:96:73:5e:
        51:94:f7:68:34:5e:3d:28:47:42:55:c2:ba:2c:18:ab:
        d7:00:b6:2f:7b:25:2a:80:5c:c0:72:bb:6f:fd:72:66:
        3a:80:fd:0f:d6:f1:1e:a3:4a:31:a7:43:f1:cc:cc:94:
        2d:d1:92:26:38:38:e8:58:64:fc:c3:5b:10:40:b7:04:
        d1:b6:4f:82:e2:48:4e:2f:25:53:ae:23:f3:6b:46:47:
        df:43:20:c2:df:89:c2:7b:41:9f:29:80:b6:d7:ea:47:
        6a:11:0f:97:1b:d6:ca:c4:ba:06:c4:95:f1:09:09:7c:
        90:b5:55:9d:f8:95:7c:f0:ef:3f:8e:7b:80:dd:57:13
    Fingerprint (SHA-256):
        AF:D6:AD:CE:D1:D3:39:99:38:47:7E:9D:07:F3:2B:B1:A3:96:52:87:82:5F:9C:18:36:06:A1:94:26:18:F2:A5
    Fingerprint (SHA1):
        65:1C:35:6B:95:C5:00:3E:1B:8C:26:36:7B:27:2D:C4:8F:3E:D6:63
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6787: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153483 (0x1dee410b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:34:46 2017
            Not After : Mon May 02 15:34:46 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:fd:13:4b:cf:2e:c1:fc:27:71:0a:9c:c9:87:c5:c5:
                    8d:79:ea:f7:bb:29:32:b5:84:b3:78:41:e8:e5:ad:b0:
                    7e:c9:6b:7c:98:50:11:e8:46:dd:3e:aa:88:73:d5:8d:
                    2a:e2:36:ab:08:66:ae:56:a5:60:10:0d:1e:4a:2c:fc:
                    b0:a1:9d:57:83:f3:c7:7b:1a:52:0e:c4:48:2f:81:ee:
                    bd:2f:88:b7:52:bf:f0:4e:f2:6a:8f:46:82:7d:4a:9c:
                    a1:74:8c:9f:72:3b:04:9f:4c:30:29:04:0d:04:bb:32:
                    3b:d9:9e:02:d1:00:af:cb:bc:5c:c4:a8:78:3d:db:10:
                    e0:69:0b:54:29:f2:db:9c:69:15:a2:3a:5a:f2:19:07:
                    16:cf:71:6e:3c:95:c3:4d:8e:bd:a8:01:f9:2f:d8:25:
                    a4:04:e3:8a:3b:67:38:37:c2:0f:32:60:d5:f9:c0:52:
                    80:6e:0c:74:a1:4a:33:46:22:ef:e5:be:2a:ce:47:77:
                    66:fd:41:18:d6:45:7c:6b:6a:5d:37:5f:87:51:e4:e7:
                    e1:16:66:15:71:fc:5e:ab:80:0e:cb:83:78:bc:d7:1c:
                    6f:8c:b9:67:35:64:c0:cf:8c:6b:e5:57:61:49:ae:72:
                    d4:6c:74:94:ba:52:20:cd:80:68:8e:1c:56:72:90:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:1e:c0:71:d3:6b:57:19:05:62:9c:f8:b5:21:b4:23:
        fd:e5:12:21:42:f9:f0:6c:0c:4d:dd:1c:70:04:73:c4:
        34:9a:6b:56:07:49:46:f6:30:cf:44:a1:de:8c:73:30:
        7d:20:aa:05:64:73:90:ea:b5:90:37:58:c4:1a:2e:bf:
        37:1a:df:3b:b1:b2:a6:0f:28:bb:01:b7:64:95:a6:0a:
        ba:a8:85:08:1a:4d:6d:22:d2:54:cb:ec:a2:70:d2:b0:
        a6:2d:da:07:41:b4:9b:0e:31:9a:d3:97:68:2d:f9:37:
        8b:14:a8:c2:81:ee:1e:bf:16:7f:2f:bf:73:96:73:5e:
        51:94:f7:68:34:5e:3d:28:47:42:55:c2:ba:2c:18:ab:
        d7:00:b6:2f:7b:25:2a:80:5c:c0:72:bb:6f:fd:72:66:
        3a:80:fd:0f:d6:f1:1e:a3:4a:31:a7:43:f1:cc:cc:94:
        2d:d1:92:26:38:38:e8:58:64:fc:c3:5b:10:40:b7:04:
        d1:b6:4f:82:e2:48:4e:2f:25:53:ae:23:f3:6b:46:47:
        df:43:20:c2:df:89:c2:7b:41:9f:29:80:b6:d7:ea:47:
        6a:11:0f:97:1b:d6:ca:c4:ba:06:c4:95:f1:09:09:7c:
        90:b5:55:9d:f8:95:7c:f0:ef:3f:8e:7b:80:dd:57:13
    Fingerprint (SHA-256):
        AF:D6:AD:CE:D1:D3:39:99:38:47:7E:9D:07:F3:2B:B1:A3:96:52:87:82:5F:9C:18:36:06:A1:94:26:18:F2:A5
    Fingerprint (SHA1):
        65:1C:35:6B:95:C5:00:3E:1B:8C:26:36:7B:27:2D:C4:8F:3E:D6:63
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6788: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6789: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153488 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6790: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6791: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6792: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153489 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6793: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6794: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6795: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153490 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6796: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6797: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6798: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153491 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6799: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6800: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6801: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153492 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6802: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6803: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6804: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153493 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6805: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6806: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6807: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153494 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6808: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6809: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6810: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153495 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6811: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6812: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6813: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153496 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6814: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6815: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6816: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6817: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502153497 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6818: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6819: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502153498 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6820: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6821: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502153499 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6822: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6823: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6824: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6825: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6826: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502153500 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6827: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6828: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502153501 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6829: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6830: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502153502 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6831: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6832: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6833: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6834: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6835: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502153503 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6836: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6837: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502153504 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6838: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6839: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502153505 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6840: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6841: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6842: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6843: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6844: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502153506 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6845: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6846: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502153507 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6847: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6848: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502153508 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6849: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6850: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6851: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6852: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6853: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502153509   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6854: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6855: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6856: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6857: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153510   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6858: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6859: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153488 (0x1dee4110)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:48 2017
            Not After : Mon May 02 15:34:48 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:26:71:77:6f:d6:c0:44:6d:f9:bd:61:34:61:06:34:
                    2d:e2:3c:ca:75:44:84:32:4b:65:5f:bd:d3:ca:ec:34:
                    9b:5a:48:42:59:97:81:0a:a5:06:73:b1:7d:82:60:85:
                    75:ee:9e:98:51:47:1c:f8:04:45:e8:b9:92:72:fd:a5:
                    fd:70:91:67:8f:7a:c3:28:23:ce:20:b5:7c:18:4b:fb:
                    32:36:f9:8c:20:63:8a:fb:5c:15:ef:fe:89:a1:72:5a:
                    66:6b:d9:5b:d4:68:3d:8f:f1:44:68:0a:55:4f:8d:23:
                    6e:12:84:82:8c:b9:99:45:13:09:7e:ed:90:35:4e:85:
                    b7:c5:47:85:2d:32:01:7a:78:5a:4b:32:80:d0:f5:3e:
                    c4:40:97:dd:de:2b:9d:3b:55:78:10:c4:b2:b2:38:0a:
                    9b:c5:ca:28:f4:e5:64:74:1f:1b:3f:24:73:39:4b:47:
                    7f:bf:d2:0d:83:e5:17:94:5d:11:4b:dd:7c:c2:d9:d2:
                    2b:45:ee:ea:5c:e4:2b:f1:85:b2:ed:ca:23:76:3d:0b:
                    54:9c:a3:ee:a9:16:12:e7:52:bb:a5:fb:0e:0d:a4:cf:
                    7e:f5:89:e1:ef:91:06:8d:6c:e1:49:e1:82:a5:e7:ce:
                    58:9a:04:44:c7:a1:29:15:d0:18:fd:d9:06:f8:aa:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:0b:7d:e3:05:0a:6c:b9:5a:fa:b0:45:24:47:e8:b3:
        17:10:bd:88:56:0c:86:9e:34:89:2e:bc:83:c1:36:6d:
        62:a4:a8:62:e1:1e:3d:c4:13:50:dc:0b:51:28:20:be:
        c7:2d:d0:07:18:48:aa:e1:21:68:d0:6c:ca:60:11:e9:
        1b:9f:bd:79:a5:38:7b:d2:ea:13:69:05:18:59:74:4f:
        d8:90:17:51:6d:6a:83:f7:e8:3c:a2:c1:77:0c:2e:46:
        52:07:d3:48:58:59:02:0a:36:74:d7:3f:4c:be:9a:69:
        a4:74:d5:38:5a:b3:2c:36:ce:98:8b:ae:b7:92:d8:2e:
        48:4f:2f:95:ea:9b:e5:c9:76:6b:c4:25:22:17:f1:2d:
        c1:2d:6e:a9:03:6e:af:0a:08:bc:19:7f:4c:ac:1d:a3:
        c9:be:04:db:f7:1a:24:81:66:ac:e2:d7:ed:b5:1c:c0:
        0c:5b:58:84:71:44:56:55:50:29:e1:42:bb:e3:5a:ae:
        d6:35:56:01:1e:41:8f:67:28:53:f3:c0:20:af:0f:8c:
        92:c7:7c:c5:33:04:b3:c8:e4:b5:3a:4d:40:f6:6c:07:
        07:c7:10:50:c1:5c:40:b3:f5:b4:b4:e5:bc:a8:1f:c0:
        91:20:4d:65:ab:45:8e:75:b6:07:09:2f:57:82:7e:59
    Fingerprint (SHA-256):
        2E:35:C6:3E:BF:54:AD:CF:42:9C:88:7D:17:F8:8D:EC:6D:0C:28:A5:E4:B4:A5:6E:A2:90:31:B6:90:9D:46:1F
    Fingerprint (SHA1):
        C2:68:CB:12:45:97:8E:F8:1B:06:44:59:56:CC:7E:49:BD:38:6A:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6860: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153489 (0x1dee4111)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:34:48 2017
            Not After : Mon May 02 15:34:48 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:96:84:c8:74:3c:b3:3d:3c:e3:3f:a9:1f:03:aa:8d:
                    8b:21:e1:22:0d:fb:0d:f0:d0:2f:ec:5b:5d:fa:b5:d2:
                    1b:a6:f0:29:5c:7a:7b:bb:63:1c:e9:89:5b:5e:dc:be:
                    e7:0d:15:e5:34:8c:39:f6:8c:11:d7:40:d4:1b:37:a1:
                    92:f4:ae:41:ee:08:6b:e2:ed:b9:89:f2:1e:0c:83:c3:
                    e1:fe:af:75:66:c9:f3:7c:76:2a:5e:f6:03:e3:d6:25:
                    9f:aa:3d:9e:0f:62:dc:42:37:aa:12:54:c0:8a:fd:28:
                    a0:c0:22:46:c9:b3:c3:d6:e6:9e:ef:ae:81:54:a8:3f:
                    8f:68:95:a2:9c:b2:4f:f3:75:92:23:a0:ad:0c:92:6c:
                    bd:75:c0:82:1f:3e:3c:58:00:55:71:60:a7:7c:a1:dc:
                    92:3b:d8:b3:be:9e:88:7e:fd:ad:62:44:d1:57:8e:b7:
                    55:52:86:32:e3:c1:13:e2:79:ad:76:21:44:ee:12:fb:
                    2e:3b:0f:2e:76:ae:4c:4e:e0:6a:48:c3:8b:b4:1a:d7:
                    cb:f8:05:34:b8:6b:a5:6c:46:7b:e5:40:ee:8d:30:df:
                    d0:2c:31:4e:dd:9c:a0:ab:29:11:54:ae:cd:5b:35:bb:
                    4a:85:57:36:07:39:94:13:7e:7c:0b:56:6d:04:42:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:59:22:5c:3b:a9:57:20:35:72:cb:af:1c:39:18:5f:
        44:dc:f2:8f:39:ba:ec:a9:4f:43:63:66:36:34:b6:4d:
        ce:94:72:ab:46:1d:4a:46:92:58:12:cc:49:e7:0f:d4:
        4c:83:f5:78:66:7f:0e:c2:e1:45:55:47:13:e9:bb:b0:
        0e:6b:9b:34:46:60:91:59:80:8f:8f:ae:26:37:c1:33:
        06:80:e3:cc:0d:31:1d:1c:2c:f5:90:ac:c7:76:95:e9:
        03:6e:c3:c6:2c:89:18:37:64:ce:5f:62:8d:dd:a8:56:
        41:69:73:69:03:b7:0a:04:7d:8e:7d:c6:3c:c7:7f:80:
        f0:f2:68:22:33:76:34:b3:61:0e:85:df:86:45:38:bc:
        28:91:24:e6:ef:8f:ee:6f:ed:24:a5:8b:20:73:8b:d9:
        ca:56:ba:19:36:61:4b:02:ce:27:30:21:dc:46:e8:5d:
        c5:99:53:b9:e1:69:39:a2:b6:2d:b3:85:f6:96:d1:b5:
        09:08:0b:d7:d3:7f:95:ac:7a:5d:1e:05:da:5c:ac:30:
        e6:c1:bc:ed:da:01:63:17:b3:e4:a7:fa:cb:fe:bc:57:
        29:f0:5d:f3:5e:eb:b7:c7:7c:13:69:2b:ed:5c:48:4d:
        3f:55:87:20:3d:d3:33:3c:83:26:b4:38:40:d4:0c:4d
    Fingerprint (SHA-256):
        5C:10:9F:D6:BD:31:1A:EF:00:79:04:AB:27:B2:AD:A3:03:72:16:E9:BC:38:50:50:6D:75:55:62:10:D9:62:8D
    Fingerprint (SHA1):
        C5:DE:0B:F4:87:38:44:78:2F:07:9F:9F:E7:05:38:2B:D2:48:21:3F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6861: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153490 (0x1dee4112)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:34:48 2017
            Not After : Mon May 02 15:34:48 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:9a:8e:e9:fc:a5:4e:ea:da:52:23:1a:6e:b5:5c:78:
                    e1:b6:b9:e5:60:59:36:f0:c6:cd:b1:47:b9:8d:ed:6b:
                    08:d6:22:a1:e6:63:75:36:5e:17:17:fa:fa:38:ce:ad:
                    e9:53:94:b7:37:73:73:ee:c4:0c:63:a3:84:b4:0d:8f:
                    14:fb:85:75:b5:99:66:ea:52:61:c7:e6:b5:f1:14:b7:
                    66:a7:9e:ff:f9:3c:33:b1:48:54:7d:2e:16:31:bb:08:
                    be:05:d9:70:a6:c3:c1:41:1f:dc:73:7d:be:d7:e8:d3:
                    9c:63:88:55:49:a4:2b:c9:a4:cf:fb:b0:2a:18:a9:a2:
                    bc:7f:58:ff:7a:5d:c8:0c:e6:99:a4:fc:98:29:d2:de:
                    1c:33:e2:e3:b6:59:74:e2:01:f8:22:d3:03:0f:91:66:
                    f0:73:df:7f:83:e5:31:ad:b9:58:a1:f8:0b:c8:f7:bb:
                    eb:ab:b7:ab:dc:17:e8:df:f5:a8:b3:aa:22:a4:82:72:
                    89:32:5e:df:3e:3c:85:ab:df:57:39:fa:41:3e:f2:d3:
                    dc:24:3a:22:91:df:7f:43:48:b3:02:94:9d:3d:ed:6b:
                    0f:58:81:ff:91:7e:ba:e0:15:66:f0:62:e4:17:28:e9:
                    01:6a:4a:c3:e0:94:eb:7f:60:c7:64:3c:76:74:d3:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:1b:f2:41:af:9f:24:06:f4:b0:ec:ea:b3:de:0d:b9:
        fc:2b:38:39:f0:17:b4:a2:53:46:c0:f2:63:01:8e:ee:
        07:7c:46:bc:45:98:8a:69:75:bb:7b:ab:8c:7d:1c:c9:
        27:42:b0:13:d6:31:b8:fb:19:87:6d:d9:0f:c7:12:dc:
        cd:f4:1f:1f:87:b2:5b:d0:89:75:95:69:f4:55:a2:c1:
        1d:eb:26:fe:11:28:52:ec:ca:78:22:c0:5c:c6:c8:b6:
        c4:35:77:48:66:b6:9e:f2:b8:86:25:51:1c:ff:dc:92:
        98:f8:b4:2f:df:d1:c6:4a:27:d1:3f:d8:ea:e9:62:e8:
        a8:4a:43:97:6f:90:a2:d3:a4:2a:c2:4b:25:2b:84:e3:
        58:9f:b3:9d:b1:fd:e5:37:e4:48:41:ab:c6:c3:f8:b1:
        2a:2d:21:d6:3d:2e:26:a0:72:82:7f:3c:ad:98:86:b3:
        73:c0:14:77:8a:33:16:05:e8:c9:32:5f:fe:64:3e:c8:
        1a:87:15:79:d2:3b:9a:5c:9a:94:3c:55:68:7b:84:c1:
        e9:47:05:a3:16:3c:f0:59:d7:84:cb:c3:db:d6:59:3a:
        dd:65:0e:4a:94:ec:3a:29:22:bf:fb:5e:f4:94:eb:2e:
        03:0f:b2:bc:c5:0e:eb:aa:b2:5c:2c:7d:31:41:f0:d6
    Fingerprint (SHA-256):
        30:2A:CE:48:93:AE:E2:B4:CA:61:1E:9F:A2:B5:28:A7:7D:99:C5:65:1C:ED:1B:08:31:EE:47:9F:AD:0F:23:77
    Fingerprint (SHA1):
        23:0C:82:1E:4A:91:95:78:BC:4A:98:F9:8B:07:CF:23:F4:E5:20:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6862: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153491 (0x1dee4113)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:34:48 2017
            Not After : Mon May 02 15:34:48 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:9c:6e:38:07:80:18:e9:fa:09:ca:18:cb:ae:21:4a:
                    de:17:ff:db:46:48:9f:ab:20:9e:7c:32:fb:37:6e:89:
                    bc:8d:80:5c:0b:13:72:b3:46:cc:d5:40:45:56:0e:5f:
                    79:bd:5d:8c:10:73:c2:85:73:f8:e4:98:7a:d0:9e:46:
                    7d:d4:19:25:1f:66:74:32:cd:9d:0b:8d:50:61:18:42:
                    cd:33:ca:c9:4d:51:7a:e5:02:03:95:c5:1f:de:d3:71:
                    95:b7:d9:d2:48:25:f2:5b:33:bd:55:3b:55:53:1d:83:
                    9b:26:f2:f0:38:cd:e1:0f:7b:a5:2c:94:7b:f8:9e:e8:
                    6a:9f:2b:bb:8d:5a:d3:e1:32:f3:db:b6:a8:01:72:6d:
                    2d:ae:38:d5:cf:4f:2c:ef:f5:c0:e3:c4:03:73:5f:a0:
                    75:78:9f:99:12:65:29:3e:8d:fc:41:12:99:f3:ef:ee:
                    82:8a:e6:1d:ed:40:1d:1e:08:8c:cf:d1:46:d9:d5:28:
                    3e:64:e0:35:4f:3f:38:41:93:7b:b5:4e:72:22:36:5c:
                    a4:14:e6:91:af:44:8f:a6:2a:21:a5:4b:d8:b6:61:62:
                    ad:79:f2:92:b0:27:ce:ae:35:d8:ce:e4:fb:08:15:4b:
                    58:f0:c0:bf:10:df:ba:e3:02:a2:5c:18:da:4e:59:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b2:ca:dd:42:8a:6d:41:29:9e:2d:ed:ee:84:41:0f:
        1c:e0:09:cd:92:2b:91:9d:8e:cb:35:9e:47:57:a4:78:
        0d:e2:8d:5b:b0:79:60:bf:72:24:b0:30:30:d7:b0:de:
        ec:2b:fb:0b:67:d0:f3:3a:b8:5e:75:c6:a1:0e:08:11:
        72:09:26:db:c5:9b:46:64:de:5e:96:b5:74:a9:e6:2b:
        5e:b2:40:16:59:65:71:78:77:b6:4e:fb:b0:84:b2:a4:
        15:5e:d1:1d:50:45:5a:13:79:3f:6f:95:1a:b9:ea:a3:
        03:de:59:a8:04:f3:bc:79:5f:c0:a5:fc:15:dc:46:c9:
        3e:6f:d7:6e:bf:57:0f:fb:1a:16:bf:fe:bf:f3:15:23:
        26:df:f0:40:d6:68:d6:15:2e:14:2c:f9:5f:91:a8:fe:
        02:ec:91:f6:8a:5b:32:5a:01:da:39:2f:4f:1a:53:18:
        32:d9:da:c1:1f:b5:2b:cf:e7:4e:11:15:21:a3:44:e4:
        48:43:de:03:52:9a:05:e2:f1:70:a0:44:ea:06:a5:0b:
        e3:58:74:5c:67:a4:e6:61:6f:43:31:bc:48:91:1c:66:
        ee:f6:19:b8:9a:83:f6:ee:e3:12:b4:ba:99:4a:09:21:
        44:d7:69:b2:eb:32:bf:8c:d8:27:0f:11:e5:1f:91:6a
    Fingerprint (SHA-256):
        65:BE:E1:2B:2C:99:79:98:C8:F9:86:CE:15:57:5E:21:E4:1D:A7:FA:95:24:A1:22:E8:2A:5F:EF:25:C4:46:33
    Fingerprint (SHA1):
        C9:C0:C5:32:08:F7:5F:D4:9D:19:13:A0:2F:A9:A5:F0:4A:72:36:E3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6863: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153492 (0x1dee4114)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:34:48 2017
            Not After : Mon May 02 15:34:48 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:61:92:b4:13:fa:7e:b0:3f:46:67:eb:74:cc:28:52:
                    1b:71:cd:e7:24:ca:f5:18:6d:f7:af:7a:7e:a0:1b:fa:
                    59:85:30:60:ec:17:62:de:f8:04:3d:ee:41:21:96:86:
                    35:a4:60:33:56:6c:32:37:5b:17:21:d2:ab:0b:75:01:
                    4d:f1:54:b8:80:45:55:dd:66:54:94:23:0b:fd:a0:26:
                    17:3e:58:5f:96:79:19:20:8a:66:1b:28:92:5b:92:df:
                    3c:15:83:36:d1:16:00:9f:76:0c:07:58:df:99:16:d5:
                    d0:d5:e0:14:9b:7c:e3:7f:23:74:29:63:93:f4:28:91:
                    e2:22:11:3e:7b:94:81:98:64:5a:e6:f4:78:6e:35:35:
                    f9:df:4b:55:a5:e5:9f:a6:eb:6b:bf:ea:9d:96:0e:10:
                    93:24:1b:db:09:ff:d0:17:6c:e3:a1:96:cd:8f:da:d7:
                    90:a4:38:8f:47:11:be:03:54:48:b2:f6:2c:cb:9f:a1:
                    f8:45:fc:fd:f6:76:f8:fa:a3:51:50:ed:a5:fe:52:be:
                    12:9e:1b:db:81:3c:7f:d6:e7:0e:b9:c4:8d:57:f6:0d:
                    89:14:9c:74:8c:95:65:07:41:ec:3c:c9:1d:15:0f:41:
                    65:07:b3:f7:df:ec:d7:a4:2b:9e:f7:d0:86:bf:f1:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:b2:7b:8d:e6:6d:d4:1d:92:9b:64:91:9f:46:2c:09:
        3a:3d:b7:31:5a:d6:90:44:e3:e9:5c:66:25:75:04:37:
        e5:8c:61:fc:ad:c3:78:37:8e:a7:d6:ef:87:4d:56:eb:
        bb:d7:92:f1:47:dc:6d:0c:86:37:2d:70:a2:37:b8:fe:
        9d:ea:6b:0c:04:90:91:61:b8:8e:18:87:d5:2e:d1:b4:
        0f:62:4e:d9:14:7f:fc:6c:c0:7d:36:f1:35:d2:3c:d1:
        1f:d2:92:4c:d0:8d:e0:f5:cf:52:43:b9:e3:ee:ca:cf:
        7e:ec:19:92:e1:15:bd:47:de:16:ac:f7:63:41:b2:f1:
        2f:09:c6:3a:89:3d:5e:ea:5f:96:83:81:6d:5d:59:ac:
        97:ac:af:4b:d0:ae:76:2c:72:02:8f:ca:c3:61:20:0d:
        a0:31:b5:08:5b:64:af:f7:c0:34:33:18:97:20:e0:6a:
        b6:8a:fd:e4:b0:59:d2:0d:13:d4:25:d1:ee:8e:a0:b1:
        70:bf:7b:35:cd:bc:af:0a:1f:75:bb:43:5a:65:b0:7a:
        96:97:7f:dd:f3:dc:bb:d5:e0:00:94:0c:31:83:80:41:
        cd:18:12:b2:f8:75:ff:84:da:7b:58:a1:7c:df:b0:90:
        85:55:c7:94:3e:10:6f:10:9a:04:d0:5d:a7:71:dd:41
    Fingerprint (SHA-256):
        68:13:9B:EA:37:03:3C:82:5E:0F:01:39:C9:AB:8D:89:56:0B:4F:B2:9A:02:EC:26:B4:2F:74:E1:77:3F:C3:0F
    Fingerprint (SHA1):
        68:F7:BC:06:EB:0A:A0:22:FD:96:3A:F0:7B:5A:52:2F:76:33:B0:6E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6864: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153493 (0x1dee4115)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:34:49 2017
            Not After : Mon May 02 15:34:49 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:72:78:2b:b2:d8:7e:0b:0c:fb:fe:5c:46:09:c8:76:
                    9a:6b:a9:bd:c2:b4:d6:b0:21:5c:47:92:01:32:4b:07:
                    98:bb:75:83:24:a9:d8:a2:03:3e:4e:32:c0:af:55:77:
                    c5:75:59:76:03:2a:4a:1e:b2:42:bf:c9:b0:46:22:84:
                    41:ba:82:fd:34:2d:db:26:1e:24:5c:1d:47:34:28:d6:
                    2e:ac:2d:55:7e:3a:2d:2e:a1:26:34:e3:58:36:ef:f9:
                    c9:a9:1b:35:2e:ce:38:e1:8c:5c:f1:76:67:e3:26:46:
                    09:29:03:83:0b:b7:b6:3f:a5:66:cc:8c:f0:1e:8f:fa:
                    dc:95:ee:3d:f5:b5:53:08:ba:c1:63:bd:58:b5:72:5e:
                    32:fb:72:20:4f:9f:9f:6d:31:cc:65:69:8b:a7:d5:20:
                    ff:49:06:fd:52:5b:59:e6:ad:3f:f1:ab:00:59:b3:04:
                    03:8b:2e:b5:27:a1:1f:3d:5d:7f:59:25:be:4d:b9:e4:
                    3c:3d:67:4b:22:c4:b5:98:21:96:67:0b:78:6c:c3:9e:
                    56:77:fd:94:75:04:25:b4:77:f7:fb:ee:90:c2:89:d1:
                    61:97:4f:94:bb:bf:95:21:a6:cb:b9:e7:83:2f:cc:99:
                    15:f0:34:23:03:4e:7e:15:ae:e4:80:77:9d:ae:40:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:f1:23:5a:44:17:c3:ea:e8:88:39:d3:75:74:47:03:
        0a:c5:e7:d9:b2:47:08:69:51:3e:c7:17:2e:6a:5e:dd:
        6c:02:3d:a7:68:c7:ac:9c:40:e6:ed:d3:dd:b9:36:e3:
        97:17:4f:0f:cd:ce:70:33:b4:b7:a8:94:5e:b5:f1:ca:
        1d:a5:ec:b7:06:bf:62:38:48:52:3e:86:bc:4c:69:9d:
        50:b9:19:c9:3a:de:d4:3c:ef:f6:b4:1d:97:02:26:87:
        d2:96:ec:96:db:14:40:f4:6d:4c:7f:79:b4:4e:04:7d:
        a4:f3:d4:f8:37:2a:29:f3:a4:57:0d:f6:4b:46:8b:2a:
        80:88:94:b1:eb:00:4a:9b:e6:36:46:41:bc:23:0f:19:
        ba:b7:22:21:44:8b:4d:a5:9f:7f:0f:7c:08:72:6c:d9:
        e2:ca:aa:1b:d6:a8:a4:69:0d:7b:29:98:b6:d4:30:b2:
        90:a3:31:66:17:db:0c:33:30:53:fc:79:87:c3:0d:29:
        90:1e:c1:6f:81:12:ae:9d:69:3d:45:1d:e4:23:ec:a6:
        95:35:aa:46:98:6f:5b:94:3b:8d:56:05:67:1c:f9:5d:
        6a:72:1f:d6:e2:1a:e9:fc:57:fd:d4:5e:95:19:87:2d:
        3d:01:9d:3d:6a:84:c8:bd:bc:46:6b:aa:76:02:73:8d
    Fingerprint (SHA-256):
        1F:B3:84:12:EB:55:1E:51:0F:78:C2:09:F8:20:0B:49:C7:30:CD:F5:DF:DD:7B:09:7F:08:49:AB:94:B7:CF:59
    Fingerprint (SHA1):
        F5:77:89:F3:E1:59:48:85:1C:8A:7B:BA:98:03:5D:C0:D2:2F:F8:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6865: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153494 (0x1dee4116)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:34:49 2017
            Not After : Mon May 02 15:34:49 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:91:32:3e:0e:a9:eb:fe:7a:64:44:f2:35:f5:67:1b:
                    f2:46:3c:59:9d:a2:49:a3:c6:b7:09:d2:5c:1a:7f:bf:
                    d7:ee:61:82:78:b0:cd:ce:23:15:80:5d:43:c2:53:26:
                    33:ed:8d:92:a5:ec:a7:e3:a0:a3:95:7c:45:8e:3e:2a:
                    64:1b:e0:1f:4d:ac:da:11:44:fa:dc:2e:f3:eb:53:82:
                    a1:4b:2e:0f:d3:0e:ef:ce:b8:06:cd:ab:ae:89:22:0c:
                    62:c5:31:d4:06:c4:b7:9d:ac:43:05:71:df:ec:48:4e:
                    97:79:b5:53:1e:f3:8d:ab:75:0d:29:1a:07:30:fb:65:
                    8c:e7:24:49:c8:43:7f:f1:74:d3:c1:56:d1:40:80:fc:
                    88:9d:78:70:83:6e:1f:74:33:2f:84:a4:ba:9a:84:55:
                    d6:82:b5:30:6b:53:6f:8d:b8:c2:c6:e9:1f:ab:37:87:
                    45:fc:81:b1:c8:d9:35:9e:00:22:b1:70:e7:16:9f:99:
                    50:ad:01:7d:78:19:cb:67:a8:9c:c4:1e:a4:43:5b:d9:
                    a4:2d:df:68:a2:50:e1:6b:70:a9:20:3c:65:7a:12:33:
                    6c:27:f7:1c:89:77:10:2a:7c:c4:32:85:c0:f1:f5:f2:
                    33:50:6d:95:4e:87:af:0b:f9:15:58:2f:fc:c5:c1:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:db:d6:c2:06:bc:0f:53:90:f5:0d:f9:5c:0d:4b:64:
        56:a4:ad:73:cd:4d:73:29:be:3a:b7:33:c8:f1:d3:45:
        3b:d4:e3:69:d8:ad:87:bb:f7:f6:f9:0b:a5:9a:0c:63:
        15:41:84:17:32:51:bb:ff:ee:6c:c8:4a:56:73:87:1f:
        49:14:d9:05:08:1f:e4:90:fd:9a:18:f2:54:b1:5f:c6:
        31:62:b7:9e:0c:11:cd:e0:2d:ef:b4:a6:5a:70:4f:24:
        95:57:10:28:18:7e:66:38:6c:67:dd:13:72:42:64:72:
        55:6f:a3:a5:29:f2:15:98:b1:f3:00:e6:7e:80:21:c5:
        7d:a6:fe:b6:ed:f6:9d:81:3a:65:06:12:57:51:26:ef:
        0e:65:02:55:bd:6c:a2:bd:d3:46:fd:82:45:b3:7f:a7:
        cf:fe:7f:49:56:39:c7:64:87:9c:e3:4c:1d:12:62:d8:
        f4:bc:06:2e:a1:f8:50:3f:8e:c4:e6:03:d6:f1:aa:49:
        23:07:ce:15:9f:f9:27:c0:05:d1:35:91:b0:e6:59:26:
        1e:56:4e:57:d7:b8:31:96:43:68:e0:36:0d:5d:98:16:
        78:1f:74:84:76:1d:54:cc:80:4d:d4:67:5a:9e:c6:f5:
        26:0b:dc:97:62:ad:d3:41:bc:f9:20:6a:d7:94:14:12
    Fingerprint (SHA-256):
        27:31:AA:AF:17:EA:29:32:5B:42:DD:5C:40:C0:BE:DC:2A:5D:D6:34:55:C6:DA:8F:31:48:69:1D:98:1E:F2:F8
    Fingerprint (SHA1):
        3C:32:F9:98:CB:2E:72:EF:F2:8F:93:C6:C3:7D:9B:4D:DB:A4:A8:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6866: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153495 (0x1dee4117)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:34:49 2017
            Not After : Mon May 02 15:34:49 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:45:cb:8d:19:d1:15:d1:7c:e8:73:26:62:b1:fa:44:
                    ae:e1:d0:a8:30:35:3c:7e:51:98:84:91:ab:62:e1:c1:
                    99:89:6d:87:9a:20:93:7f:60:01:fe:27:28:b9:02:28:
                    d2:85:87:c7:60:11:a3:ad:e4:5d:ab:7a:10:b0:ae:9b:
                    72:92:d0:ee:7b:af:61:aa:9b:ef:90:9a:3c:d3:f8:fd:
                    a3:7e:22:fc:26:9d:ee:c5:51:03:f7:df:dd:80:89:6b:
                    e8:16:3d:4a:b7:ed:46:30:8a:99:b3:d1:53:17:0f:34:
                    44:a5:07:8a:9d:e4:62:fc:cf:48:c9:e9:42:66:f8:f9:
                    5e:83:fa:71:d1:77:cc:1e:cd:84:e5:76:18:7b:61:71:
                    1b:55:8d:3f:55:08:23:ed:a5:ea:76:bf:c2:67:2a:cb:
                    83:26:79:46:a5:4e:0a:4b:aa:f9:3f:7e:d7:e3:53:de:
                    99:00:c3:27:fa:fd:f1:17:d5:95:52:bb:cd:cf:1a:ef:
                    c2:f2:d1:6a:ac:c5:7f:7e:cf:b4:bc:14:f4:8b:a8:69:
                    26:cd:27:cc:19:07:9a:e9:b9:8f:38:99:27:19:d3:73:
                    c1:b5:7b:aa:d5:01:e9:26:f3:ed:08:c5:18:be:38:74:
                    f2:9e:ad:2e:9f:10:dc:d0:df:63:80:2b:b1:33:47:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:76:9e:1f:13:86:05:9d:f7:72:53:4f:50:d9:e8:49:
        d1:c8:93:8a:36:3b:53:2b:9e:8f:6c:99:21:9c:72:45:
        d5:12:73:16:59:b4:21:a0:32:a9:9e:22:19:50:a2:53:
        56:4a:d6:e3:ad:13:92:cb:8a:c1:6d:b1:92:f8:d2:3c:
        77:94:bc:4e:aa:4c:98:f2:88:6f:63:d6:5b:ef:0a:62:
        4b:ca:3b:1e:79:f3:5c:43:47:a4:08:52:da:23:3d:a5:
        70:b5:8c:e5:11:67:a4:ee:65:65:7b:be:6a:ae:60:ad:
        58:9d:f1:a4:a9:4b:b4:70:e2:b5:06:ac:38:06:b0:1a:
        fe:f8:30:74:f0:5f:de:62:63:7f:13:cb:83:60:0e:41:
        fd:25:3d:41:e6:31:2e:62:11:06:67:fe:0b:fe:5f:12:
        40:51:f6:04:ab:ac:00:3a:69:cb:66:3c:1b:1d:02:a2:
        63:11:eb:a1:03:fa:87:cc:e9:45:4b:d5:44:99:75:9d:
        f0:13:d8:cf:06:36:ea:bc:1f:be:99:99:6a:d5:93:11:
        7d:e0:43:f0:bc:a8:2f:83:1d:05:d1:f8:04:d2:8a:22:
        18:d4:2f:2a:15:d5:70:12:e4:fe:80:75:a6:05:b5:a2:
        6e:6f:8a:f6:ea:ef:42:60:7c:07:5e:c9:52:b8:c6:63
    Fingerprint (SHA-256):
        9C:8E:21:98:36:78:AD:67:85:59:DD:36:55:7B:DC:34:97:D0:BF:3F:BF:5D:D5:70:67:C4:D4:56:03:1E:6B:54
    Fingerprint (SHA1):
        B7:33:CC:47:26:75:BB:46:EC:B7:AD:A4:C0:D6:C3:18:76:A7:40:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6867: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153496 (0x1dee4118)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:34:49 2017
            Not After : Mon May 02 15:34:49 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:c7:b8:5e:b6:e0:b1:a2:e1:f5:29:ba:73:a0:60:27:
                    d6:9b:42:31:5b:32:5f:99:ed:b0:8b:ad:80:69:fd:82:
                    ec:f1:43:a7:4f:2a:5e:6b:25:b4:20:d0:a2:39:85:6f:
                    02:1e:3f:ae:60:86:c4:9d:87:80:2f:2c:e9:9e:e7:d4:
                    4a:b2:e0:82:96:a3:e9:a1:f9:ab:01:3a:48:06:1a:ff:
                    38:35:85:d7:b3:ca:29:0d:8c:ca:97:1e:1d:ef:18:d9:
                    f9:a2:ac:51:4d:31:ad:bd:c7:56:07:c9:f1:db:00:98:
                    aa:8f:dc:03:e4:ee:9b:3a:35:0e:6a:39:a4:f4:35:dc:
                    10:44:74:c9:ac:ed:58:94:26:07:d6:ec:13:18:ef:a7:
                    45:81:ac:8a:5b:49:df:77:08:7f:5c:8a:95:a9:52:0f:
                    f2:7d:d9:5d:28:d5:09:ed:9d:b9:b2:f1:aa:da:24:ba:
                    77:2e:b4:25:ee:5c:c2:f4:ac:77:2e:f7:e0:2a:c0:11:
                    ef:1b:fa:3d:77:29:b8:c1:1b:c3:0c:1d:dd:cb:da:d1:
                    be:3c:cd:d8:d3:3d:35:cb:e8:b2:e0:b3:03:0a:71:50:
                    13:e6:93:bc:06:ab:95:05:80:80:08:ff:17:09:08:1a:
                    1a:e6:38:7b:57:93:cc:fb:2f:fe:3a:e6:3a:94:fd:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:61:8f:61:45:67:6f:b0:26:95:37:9a:dc:9d:15:19:
        fd:eb:1c:89:b5:b8:ea:26:b6:a5:5e:13:e6:0a:77:31:
        4f:cf:9f:f9:0e:93:02:a8:ea:7f:51:47:21:fe:21:27:
        ac:d8:0c:47:6f:13:16:14:53:22:25:1f:de:d5:82:7a:
        77:d7:5b:84:da:8c:eb:52:bf:6e:c1:66:27:24:43:6a:
        85:d5:e8:d2:e7:a9:f3:3c:78:54:50:e3:04:bb:9f:15:
        b8:3b:35:50:47:e6:7c:32:1c:e9:07:f4:24:ad:06:5c:
        28:c1:77:ab:c2:a0:89:7d:ae:18:8d:eb:b9:d8:43:83:
        55:a2:65:89:70:26:f9:72:71:f8:9c:6d:6c:e6:36:61:
        ce:ff:52:94:04:44:e1:17:86:9e:4b:d6:30:c9:b8:59:
        f9:95:6a:fd:93:1f:86:10:3e:4a:01:b2:ab:f7:59:16:
        80:5d:93:2f:14:44:8e:10:32:43:e4:9d:e4:6f:08:a6:
        01:86:94:ee:72:b1:3f:3a:9e:79:7a:31:6b:37:7f:cc:
        ed:3b:cd:06:fc:64:89:ba:77:b4:b4:18:6a:1a:96:e1:
        eb:78:49:48:67:b0:c7:e9:15:30:44:6e:7c:17:a9:ef:
        83:40:69:57:17:59:33:e8:17:e4:46:b1:a7:18:c2:b6
    Fingerprint (SHA-256):
        80:71:9D:EC:85:07:A4:1D:98:9B:13:9A:7E:3B:97:2D:C5:E6:E2:F5:96:6E:3C:07:C0:E2:A9:A7:B8:8E:84:15
    Fingerprint (SHA1):
        7C:90:60:C6:E8:06:17:9A:CC:C9:90:FD:AA:FE:13:CD:FE:A8:B8:52
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6868: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6869: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153511 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6870: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6871: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6872: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6873: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153512   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6874: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6875: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6876: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6877: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153513   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6878: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6879: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6880: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6881: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153514   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6882: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6883: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6884: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153511 (0x1dee4127)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:52 2017
            Not After : Mon May 02 15:34:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:95:ec:ea:15:c9:cc:10:eb:56:5e:65:8c:f0:87:df:
                    3d:a3:03:ff:29:fa:84:43:11:c8:3d:7d:01:c4:23:2b:
                    3f:86:62:d1:85:ae:c6:81:5e:2d:29:31:06:23:01:0e:
                    ac:1b:59:7d:b0:75:b0:fe:72:3a:d8:f0:e2:76:c4:66:
                    4d:93:29:33:be:58:a5:58:4f:7d:9c:54:86:78:4e:2c:
                    9e:8e:69:3d:a0:04:b5:40:78:ab:55:3f:73:0c:44:3d:
                    6c:70:9a:3a:92:a9:79:b2:7d:3a:f1:93:81:d0:80:3a:
                    a1:50:3e:9b:3b:7a:99:89:5e:08:82:e0:78:7a:bc:69:
                    41:b4:dc:26:5a:03:78:0e:14:d9:03:d0:12:48:45:77:
                    3c:a3:9e:6b:fd:34:22:79:cd:35:f4:69:9c:e9:92:8f:
                    8b:25:48:41:cb:41:a5:ff:95:9d:21:80:17:48:e4:7f:
                    61:35:54:5a:06:f3:3f:be:8d:57:a9:c3:56:9e:0e:13:
                    e4:b7:2f:7e:a5:ee:db:15:06:47:93:47:c3:82:73:69:
                    3a:ec:c6:f1:e8:e5:82:8f:61:2b:58:5e:de:89:51:1f:
                    ad:fd:63:f5:1b:82:c4:64:13:e9:46:a8:0e:00:e2:92:
                    f4:86:f8:5b:99:86:4a:78:c9:44:8b:3f:15:1b:8e:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:36:cf:53:14:9f:39:23:4e:97:d4:0e:7f:10:76:0b:
        b6:b4:2e:94:ac:a0:16:0e:db:e7:32:e6:fb:da:17:51:
        b0:6e:c9:8f:82:8f:61:55:7f:07:f9:13:76:07:55:64:
        8a:fe:db:41:60:9b:ef:08:de:df:ae:8a:7f:56:85:19:
        07:26:a1:1b:58:1f:7e:0b:f8:2c:81:c1:34:8f:f1:72:
        61:ed:17:42:5d:0b:1a:d0:75:03:13:b9:45:02:ab:2c:
        3a:6c:97:65:d5:30:44:54:9f:56:7e:8b:bf:ff:a2:6f:
        cf:51:cb:65:09:8d:c5:65:7d:79:03:75:a3:f0:42:ca:
        ea:e2:7f:0a:5b:e2:5b:a6:c8:a8:22:3b:0e:5f:1a:f6:
        0c:50:4b:bc:16:03:e2:82:0f:53:c2:f8:c0:91:2c:d5:
        d2:1c:f8:f1:eb:d6:5c:7f:35:37:c8:aa:36:86:d0:9b:
        63:3b:28:63:59:37:85:3d:5b:bb:fd:46:11:79:c3:a8:
        1e:3f:9a:4c:f4:83:70:dd:55:6f:5b:43:35:6f:e8:06:
        b1:76:f6:0b:f6:6d:43:a8:73:5d:88:dd:10:d7:6d:44:
        8c:76:d4:83:e6:ad:5c:a0:ff:1c:66:24:76:c2:0a:92:
        90:82:6e:19:29:6b:89:c4:df:25:1d:2a:85:38:21:7b
    Fingerprint (SHA-256):
        54:F0:69:D7:34:2C:BF:92:C2:43:50:74:07:59:A4:27:FC:1E:13:A3:BE:9D:2F:A4:CA:98:CC:5A:3D:5F:DE:8C
    Fingerprint (SHA1):
        D3:D8:9E:20:1D:EC:00:C4:45:B2:23:F5:1D:F7:C2:DF:E5:B8:3C:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6885: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6886: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153512 (0x1dee4128)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:52 2017
            Not After : Mon May 02 15:34:52 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fd:ad:99:8d:1c:7b:13:f6:9f:ee:16:5e:fc:bf:da:7c:
                    fa:75:a2:0c:d0:d0:4b:bc:29:66:df:4a:f3:77:de:4c:
                    2a:6e:7d:d2:40:62:00:bc:97:42:d7:6a:76:7b:04:e0:
                    a4:53:dd:85:1c:70:ac:70:4f:61:8f:39:a3:47:e5:2d:
                    09:ce:5d:5e:e0:48:ae:ae:eb:dc:55:e9:39:55:43:37:
                    c2:28:ad:f3:63:cd:4c:3f:d5:35:ff:95:aa:e7:64:aa:
                    07:43:d8:19:a5:ea:cb:f0:e1:c6:b4:d3:66:5e:0e:5e:
                    a2:15:02:ec:dc:7c:32:89:6d:10:c1:8c:d2:2d:dc:ad:
                    64:42:9c:77:09:99:e2:4c:cf:e8:00:dd:d0:57:16:74:
                    d0:49:2a:80:69:53:9b:d9:25:df:7e:e1:aa:5d:72:af:
                    24:70:92:61:69:6f:fc:31:8e:dd:b3:04:da:ea:32:f6:
                    70:0c:09:1f:f1:ca:b7:c0:66:c5:5f:65:3f:fd:38:0a:
                    8c:74:d9:1b:a0:71:ff:f9:37:04:10:ac:05:81:21:95:
                    2e:f5:7b:6a:47:36:6f:9b:5c:a7:17:b8:38:4c:19:4e:
                    2f:ba:fd:6a:5d:b8:5e:0f:76:4e:0a:3d:60:a7:ac:7c:
                    8c:33:a9:1b:b8:87:e0:20:59:3d:b0:9a:e2:bc:b5:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:f1:99:78:3c:06:00:12:04:07:bf:6a:d5:9d:13:de:
        9b:15:68:c6:b4:f2:86:2a:f8:ee:00:e8:31:95:34:94:
        6f:15:52:60:d4:1b:96:f9:d9:e1:1e:81:86:df:31:5d:
        d2:7d:74:2e:0a:bc:cd:dc:7d:ef:7e:7e:aa:5e:fb:a5:
        f0:5d:b7:54:23:69:49:46:6a:00:3c:72:f3:17:d4:13:
        bb:ad:e2:78:82:2a:e3:c6:60:68:43:d2:17:13:97:99:
        0f:b9:5e:35:f5:cf:11:6c:e7:79:bc:18:d5:4b:1b:d0:
        2a:a2:45:e7:6e:04:1e:c5:a8:14:70:17:11:50:1c:c1:
        73:c0:d6:9c:02:e6:70:4d:a0:88:8e:a0:2c:6f:fc:e7:
        2d:1a:62:8c:3a:e5:99:7d:c8:f0:29:d4:fc:e0:b0:d1:
        96:8a:24:b0:c5:c5:f0:3c:c3:3b:f4:08:32:27:93:e4:
        c8:b3:87:93:02:c0:11:41:7d:ad:0e:12:ae:df:8c:f3:
        50:89:d1:e7:d6:bc:81:2c:d6:a3:d1:a5:08:3c:72:23:
        75:c7:3c:90:6d:64:78:b9:17:46:45:68:4f:f5:ec:f8:
        03:42:59:98:d3:67:64:15:1c:dc:28:9a:47:67:12:e8:
        58:bc:e0:86:0b:bb:5c:7a:87:90:ce:24:3f:d5:38:9c
    Fingerprint (SHA-256):
        31:0B:1D:27:9A:77:6F:44:21:63:8F:40:50:C8:CF:B7:6A:99:91:A1:0E:3D:4C:69:09:76:C0:54:BA:08:1F:BC
    Fingerprint (SHA1):
        2C:F0:B3:F7:5D:35:80:18:6A:9D:22:18:11:94:52:BD:9C:F0:A1:87
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6887: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6888: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153513 (0x1dee4129)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:52 2017
            Not After : Mon May 02 15:34:52 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:27:b5:a3:45:66:d2:76:3a:fd:9c:41:25:eb:c0:c3:
                    4e:60:5e:84:c7:d1:41:31:ff:39:ab:59:31:56:f9:7a:
                    9c:16:86:f5:63:b4:1c:74:ba:57:e0:db:b5:ad:71:c6:
                    87:c8:ec:22:46:92:27:40:65:c3:1b:3e:0c:ee:76:6f:
                    57:ef:08:f9:59:b6:e8:42:6e:e6:cb:34:b2:1f:cc:08:
                    0e:37:73:45:9f:69:09:40:68:25:b5:65:7b:47:d1:7c:
                    e8:20:9a:2c:60:3a:58:89:07:9d:e2:55:68:12:ca:3f:
                    32:b1:54:af:3b:8f:e1:31:a9:14:f2:d6:79:18:70:75:
                    55:c8:03:16:db:23:8a:86:06:94:c0:c3:48:37:ac:39:
                    01:77:32:a7:10:6b:23:a1:27:b1:6b:e6:9a:bb:fc:a3:
                    a1:aa:22:66:77:78:6c:a9:9a:63:bb:85:43:39:6a:58:
                    48:6a:6d:75:36:e3:f7:7e:0c:4d:e2:18:2e:1b:dc:bb:
                    a9:a8:5b:de:6c:de:67:10:58:3a:35:db:82:63:d5:d6:
                    5e:d5:9a:3f:e8:9c:c1:16:47:a9:8b:d2:79:23:02:9d:
                    1e:18:63:46:c0:52:84:30:2d:0f:c1:aa:a3:b6:8f:03:
                    e0:46:dc:3d:6c:79:db:b4:04:9e:a1:22:17:a1:56:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:87:a2:ff:f7:1e:f0:fa:1f:52:74:a3:a2:07:9e:8d:
        cf:63:64:0d:a4:f6:df:ee:7c:90:e9:bf:bc:03:0a:b4:
        49:d5:cb:4a:c0:8b:e4:3d:71:d4:92:42:8b:ee:ea:71:
        2b:f3:e7:94:4a:1e:00:77:a0:72:ee:a5:58:1b:3e:62:
        4c:e9:01:ab:a1:c0:fe:42:1a:1a:b8:d1:ff:43:84:54:
        e0:cf:7e:e8:2b:17:ee:00:eb:9f:0f:e4:5c:94:0f:15:
        59:eb:6d:5e:12:c5:dc:bd:af:82:b9:8b:a2:10:53:c7:
        b2:d0:0a:d5:16:db:40:95:01:1c:4e:bb:4b:f6:fa:8a:
        dd:3a:56:78:94:a8:c0:c8:9d:02:2c:27:c5:76:db:f0:
        80:70:38:ae:d0:62:c7:3f:2e:93:6c:35:d0:0b:19:98:
        97:5a:98:d7:8e:0c:30:b3:1a:e4:f2:37:aa:99:a0:bc:
        60:0b:35:88:fb:01:9f:b0:6f:31:49:20:bf:3c:c1:86:
        98:ef:16:e4:46:18:f7:bb:85:39:9d:4e:11:90:ff:47:
        8e:c1:41:25:cb:79:d3:6d:01:d6:ec:01:97:5b:71:85:
        c2:66:dd:63:2a:c7:06:78:24:9c:d5:89:f3:85:81:80:
        1d:4c:4b:bf:02:8f:c0:d2:40:aa:78:0c:99:61:32:05
    Fingerprint (SHA-256):
        63:53:F5:42:71:70:D7:0C:1A:0A:2A:E9:36:06:56:32:F7:46:A0:81:E9:F3:7A:B9:89:69:23:A7:EF:38:02:27
    Fingerprint (SHA1):
        F1:BF:EB:EE:7D:BF:6E:0C:AA:EF:F4:C1:79:D3:E6:57:44:40:D8:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6889: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6890: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6891: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6892: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6893: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153511 (0x1dee4127)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:52 2017
            Not After : Mon May 02 15:34:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:95:ec:ea:15:c9:cc:10:eb:56:5e:65:8c:f0:87:df:
                    3d:a3:03:ff:29:fa:84:43:11:c8:3d:7d:01:c4:23:2b:
                    3f:86:62:d1:85:ae:c6:81:5e:2d:29:31:06:23:01:0e:
                    ac:1b:59:7d:b0:75:b0:fe:72:3a:d8:f0:e2:76:c4:66:
                    4d:93:29:33:be:58:a5:58:4f:7d:9c:54:86:78:4e:2c:
                    9e:8e:69:3d:a0:04:b5:40:78:ab:55:3f:73:0c:44:3d:
                    6c:70:9a:3a:92:a9:79:b2:7d:3a:f1:93:81:d0:80:3a:
                    a1:50:3e:9b:3b:7a:99:89:5e:08:82:e0:78:7a:bc:69:
                    41:b4:dc:26:5a:03:78:0e:14:d9:03:d0:12:48:45:77:
                    3c:a3:9e:6b:fd:34:22:79:cd:35:f4:69:9c:e9:92:8f:
                    8b:25:48:41:cb:41:a5:ff:95:9d:21:80:17:48:e4:7f:
                    61:35:54:5a:06:f3:3f:be:8d:57:a9:c3:56:9e:0e:13:
                    e4:b7:2f:7e:a5:ee:db:15:06:47:93:47:c3:82:73:69:
                    3a:ec:c6:f1:e8:e5:82:8f:61:2b:58:5e:de:89:51:1f:
                    ad:fd:63:f5:1b:82:c4:64:13:e9:46:a8:0e:00:e2:92:
                    f4:86:f8:5b:99:86:4a:78:c9:44:8b:3f:15:1b:8e:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:36:cf:53:14:9f:39:23:4e:97:d4:0e:7f:10:76:0b:
        b6:b4:2e:94:ac:a0:16:0e:db:e7:32:e6:fb:da:17:51:
        b0:6e:c9:8f:82:8f:61:55:7f:07:f9:13:76:07:55:64:
        8a:fe:db:41:60:9b:ef:08:de:df:ae:8a:7f:56:85:19:
        07:26:a1:1b:58:1f:7e:0b:f8:2c:81:c1:34:8f:f1:72:
        61:ed:17:42:5d:0b:1a:d0:75:03:13:b9:45:02:ab:2c:
        3a:6c:97:65:d5:30:44:54:9f:56:7e:8b:bf:ff:a2:6f:
        cf:51:cb:65:09:8d:c5:65:7d:79:03:75:a3:f0:42:ca:
        ea:e2:7f:0a:5b:e2:5b:a6:c8:a8:22:3b:0e:5f:1a:f6:
        0c:50:4b:bc:16:03:e2:82:0f:53:c2:f8:c0:91:2c:d5:
        d2:1c:f8:f1:eb:d6:5c:7f:35:37:c8:aa:36:86:d0:9b:
        63:3b:28:63:59:37:85:3d:5b:bb:fd:46:11:79:c3:a8:
        1e:3f:9a:4c:f4:83:70:dd:55:6f:5b:43:35:6f:e8:06:
        b1:76:f6:0b:f6:6d:43:a8:73:5d:88:dd:10:d7:6d:44:
        8c:76:d4:83:e6:ad:5c:a0:ff:1c:66:24:76:c2:0a:92:
        90:82:6e:19:29:6b:89:c4:df:25:1d:2a:85:38:21:7b
    Fingerprint (SHA-256):
        54:F0:69:D7:34:2C:BF:92:C2:43:50:74:07:59:A4:27:FC:1E:13:A3:BE:9D:2F:A4:CA:98:CC:5A:3D:5F:DE:8C
    Fingerprint (SHA1):
        D3:D8:9E:20:1D:EC:00:C4:45:B2:23:F5:1D:F7:C2:DF:E5:B8:3C:D3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6894: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6895: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153512 (0x1dee4128)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:52 2017
            Not After : Mon May 02 15:34:52 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fd:ad:99:8d:1c:7b:13:f6:9f:ee:16:5e:fc:bf:da:7c:
                    fa:75:a2:0c:d0:d0:4b:bc:29:66:df:4a:f3:77:de:4c:
                    2a:6e:7d:d2:40:62:00:bc:97:42:d7:6a:76:7b:04:e0:
                    a4:53:dd:85:1c:70:ac:70:4f:61:8f:39:a3:47:e5:2d:
                    09:ce:5d:5e:e0:48:ae:ae:eb:dc:55:e9:39:55:43:37:
                    c2:28:ad:f3:63:cd:4c:3f:d5:35:ff:95:aa:e7:64:aa:
                    07:43:d8:19:a5:ea:cb:f0:e1:c6:b4:d3:66:5e:0e:5e:
                    a2:15:02:ec:dc:7c:32:89:6d:10:c1:8c:d2:2d:dc:ad:
                    64:42:9c:77:09:99:e2:4c:cf:e8:00:dd:d0:57:16:74:
                    d0:49:2a:80:69:53:9b:d9:25:df:7e:e1:aa:5d:72:af:
                    24:70:92:61:69:6f:fc:31:8e:dd:b3:04:da:ea:32:f6:
                    70:0c:09:1f:f1:ca:b7:c0:66:c5:5f:65:3f:fd:38:0a:
                    8c:74:d9:1b:a0:71:ff:f9:37:04:10:ac:05:81:21:95:
                    2e:f5:7b:6a:47:36:6f:9b:5c:a7:17:b8:38:4c:19:4e:
                    2f:ba:fd:6a:5d:b8:5e:0f:76:4e:0a:3d:60:a7:ac:7c:
                    8c:33:a9:1b:b8:87:e0:20:59:3d:b0:9a:e2:bc:b5:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:f1:99:78:3c:06:00:12:04:07:bf:6a:d5:9d:13:de:
        9b:15:68:c6:b4:f2:86:2a:f8:ee:00:e8:31:95:34:94:
        6f:15:52:60:d4:1b:96:f9:d9:e1:1e:81:86:df:31:5d:
        d2:7d:74:2e:0a:bc:cd:dc:7d:ef:7e:7e:aa:5e:fb:a5:
        f0:5d:b7:54:23:69:49:46:6a:00:3c:72:f3:17:d4:13:
        bb:ad:e2:78:82:2a:e3:c6:60:68:43:d2:17:13:97:99:
        0f:b9:5e:35:f5:cf:11:6c:e7:79:bc:18:d5:4b:1b:d0:
        2a:a2:45:e7:6e:04:1e:c5:a8:14:70:17:11:50:1c:c1:
        73:c0:d6:9c:02:e6:70:4d:a0:88:8e:a0:2c:6f:fc:e7:
        2d:1a:62:8c:3a:e5:99:7d:c8:f0:29:d4:fc:e0:b0:d1:
        96:8a:24:b0:c5:c5:f0:3c:c3:3b:f4:08:32:27:93:e4:
        c8:b3:87:93:02:c0:11:41:7d:ad:0e:12:ae:df:8c:f3:
        50:89:d1:e7:d6:bc:81:2c:d6:a3:d1:a5:08:3c:72:23:
        75:c7:3c:90:6d:64:78:b9:17:46:45:68:4f:f5:ec:f8:
        03:42:59:98:d3:67:64:15:1c:dc:28:9a:47:67:12:e8:
        58:bc:e0:86:0b:bb:5c:7a:87:90:ce:24:3f:d5:38:9c
    Fingerprint (SHA-256):
        31:0B:1D:27:9A:77:6F:44:21:63:8F:40:50:C8:CF:B7:6A:99:91:A1:0E:3D:4C:69:09:76:C0:54:BA:08:1F:BC
    Fingerprint (SHA1):
        2C:F0:B3:F7:5D:35:80:18:6A:9D:22:18:11:94:52:BD:9C:F0:A1:87
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6896: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6897: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153513 (0x1dee4129)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:52 2017
            Not After : Mon May 02 15:34:52 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:27:b5:a3:45:66:d2:76:3a:fd:9c:41:25:eb:c0:c3:
                    4e:60:5e:84:c7:d1:41:31:ff:39:ab:59:31:56:f9:7a:
                    9c:16:86:f5:63:b4:1c:74:ba:57:e0:db:b5:ad:71:c6:
                    87:c8:ec:22:46:92:27:40:65:c3:1b:3e:0c:ee:76:6f:
                    57:ef:08:f9:59:b6:e8:42:6e:e6:cb:34:b2:1f:cc:08:
                    0e:37:73:45:9f:69:09:40:68:25:b5:65:7b:47:d1:7c:
                    e8:20:9a:2c:60:3a:58:89:07:9d:e2:55:68:12:ca:3f:
                    32:b1:54:af:3b:8f:e1:31:a9:14:f2:d6:79:18:70:75:
                    55:c8:03:16:db:23:8a:86:06:94:c0:c3:48:37:ac:39:
                    01:77:32:a7:10:6b:23:a1:27:b1:6b:e6:9a:bb:fc:a3:
                    a1:aa:22:66:77:78:6c:a9:9a:63:bb:85:43:39:6a:58:
                    48:6a:6d:75:36:e3:f7:7e:0c:4d:e2:18:2e:1b:dc:bb:
                    a9:a8:5b:de:6c:de:67:10:58:3a:35:db:82:63:d5:d6:
                    5e:d5:9a:3f:e8:9c:c1:16:47:a9:8b:d2:79:23:02:9d:
                    1e:18:63:46:c0:52:84:30:2d:0f:c1:aa:a3:b6:8f:03:
                    e0:46:dc:3d:6c:79:db:b4:04:9e:a1:22:17:a1:56:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:87:a2:ff:f7:1e:f0:fa:1f:52:74:a3:a2:07:9e:8d:
        cf:63:64:0d:a4:f6:df:ee:7c:90:e9:bf:bc:03:0a:b4:
        49:d5:cb:4a:c0:8b:e4:3d:71:d4:92:42:8b:ee:ea:71:
        2b:f3:e7:94:4a:1e:00:77:a0:72:ee:a5:58:1b:3e:62:
        4c:e9:01:ab:a1:c0:fe:42:1a:1a:b8:d1:ff:43:84:54:
        e0:cf:7e:e8:2b:17:ee:00:eb:9f:0f:e4:5c:94:0f:15:
        59:eb:6d:5e:12:c5:dc:bd:af:82:b9:8b:a2:10:53:c7:
        b2:d0:0a:d5:16:db:40:95:01:1c:4e:bb:4b:f6:fa:8a:
        dd:3a:56:78:94:a8:c0:c8:9d:02:2c:27:c5:76:db:f0:
        80:70:38:ae:d0:62:c7:3f:2e:93:6c:35:d0:0b:19:98:
        97:5a:98:d7:8e:0c:30:b3:1a:e4:f2:37:aa:99:a0:bc:
        60:0b:35:88:fb:01:9f:b0:6f:31:49:20:bf:3c:c1:86:
        98:ef:16:e4:46:18:f7:bb:85:39:9d:4e:11:90:ff:47:
        8e:c1:41:25:cb:79:d3:6d:01:d6:ec:01:97:5b:71:85:
        c2:66:dd:63:2a:c7:06:78:24:9c:d5:89:f3:85:81:80:
        1d:4c:4b:bf:02:8f:c0:d2:40:aa:78:0c:99:61:32:05
    Fingerprint (SHA-256):
        63:53:F5:42:71:70:D7:0C:1A:0A:2A:E9:36:06:56:32:F7:46:A0:81:E9:F3:7A:B9:89:69:23:A7:EF:38:02:27
    Fingerprint (SHA1):
        F1:BF:EB:EE:7D:BF:6E:0C:AA:EF:F4:C1:79:D3:E6:57:44:40:D8:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6898: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6899: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6900: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153515 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6901: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6902: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6903: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6904: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153516   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6905: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6906: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6907: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6908: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153517   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6909: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6910: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6911: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6912: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153518   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6913: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6914: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6915: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6916: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153519   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6917: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6918: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6919: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153515 (0x1dee412b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:53 2017
            Not After : Mon May 02 15:34:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:f8:00:98:ab:9e:0c:4e:df:92:4b:5a:da:d8:9d:fb:
                    c3:48:0c:b8:9a:f4:16:48:64:f1:67:4e:5c:77:c8:51:
                    67:39:11:f3:5b:bc:34:6e:61:dd:99:ce:30:b1:e7:79:
                    43:ef:7d:5c:83:46:10:52:52:17:4a:e6:cf:11:1f:37:
                    d1:c4:85:9a:84:cd:1f:72:19:52:6c:cc:e4:07:40:9f:
                    1c:6e:df:38:be:0e:82:fe:d8:3d:64:91:bb:55:f0:7c:
                    f4:3a:d4:5d:3c:49:37:f1:c9:a3:d2:e6:4e:78:62:da:
                    75:cc:c8:70:27:60:14:b7:db:4f:cb:80:84:0e:b1:2f:
                    cc:90:3d:57:eb:1c:ec:1d:13:0e:22:d3:85:0e:d8:2d:
                    83:85:97:d2:52:91:a6:e1:14:38:da:7f:e5:fa:2d:3a:
                    4e:9c:13:c0:a5:49:f7:b0:23:c9:9e:9d:20:58:77:d6:
                    47:b5:50:89:21:b9:ae:7d:82:d1:b5:24:4a:dc:1e:42:
                    0c:9d:70:e0:16:68:9c:7b:78:a0:2f:78:b2:8a:7d:69:
                    aa:68:0a:0d:df:0c:74:1d:cc:55:70:99:32:90:1f:b5:
                    00:bf:48:9a:53:af:78:fa:12:53:cb:47:47:f1:4c:af:
                    3e:4c:af:c4:10:c6:08:80:21:55:75:dd:a7:bc:f4:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:3c:ce:60:cc:fe:d1:41:b6:b0:ed:78:a4:70:57:1c:
        0d:40:06:b5:5b:07:e1:66:22:ec:a9:23:25:49:4f:92:
        46:82:7f:e5:16:2c:44:7a:53:68:da:54:bf:7e:1d:66:
        b2:30:da:48:fc:03:fe:db:8b:a2:43:c5:33:c6:f3:80:
        98:88:e8:ee:af:f6:55:bb:43:72:7b:db:f7:62:bb:de:
        c2:74:d6:61:89:95:8a:80:8a:a5:da:59:bc:d0:d8:40:
        9d:d2:16:f2:e1:28:18:6e:2e:23:6f:d7:00:3d:71:37:
        c5:a7:a6:74:a0:99:f4:6c:12:c6:f5:52:c5:74:ff:f1:
        de:3c:8e:dc:a1:97:b9:7e:ee:28:dc:3f:a2:92:17:d2:
        90:57:2a:b1:83:8c:07:aa:78:21:44:15:86:84:e4:55:
        f7:63:3e:c5:49:fc:65:88:52:52:b9:18:42:1a:47:81:
        dc:a4:84:ba:74:5f:54:53:be:2e:ac:da:35:2a:03:2b:
        36:86:20:9b:5b:da:d7:0c:19:6c:4e:67:80:e1:9e:d6:
        34:d2:13:54:de:35:66:e9:70:73:2e:8b:6a:dd:7e:88:
        69:52:86:87:d9:7a:fb:70:67:c0:e9:57:8a:bc:e9:15:
        93:2c:4c:7c:ec:6f:c6:e5:ab:ea:84:01:3c:dd:43:b5
    Fingerprint (SHA-256):
        37:66:C1:B0:42:EA:17:EC:3C:85:87:45:C5:CF:B0:62:A9:7A:21:84:4C:5D:95:F4:71:CD:9B:DB:B0:39:EF:CD
    Fingerprint (SHA1):
        26:22:93:20:09:47:5E:8F:8D:CC:86:84:D0:6F:C3:35:FA:99:EF:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6920: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6921: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153516 (0x1dee412c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:53 2017
            Not After : Mon May 02 15:34:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:cd:d2:d4:df:07:12:ef:75:81:e5:d0:02:9b:97:55:
                    af:06:7c:1d:4d:a4:ab:4f:39:5a:85:43:b8:c9:87:44:
                    af:29:50:e2:f8:57:21:bc:eb:65:c0:2a:96:b7:35:23:
                    19:33:fd:3f:a0:6b:f3:af:bf:0f:8b:7a:33:e2:77:1f:
                    4d:53:c3:41:3e:4d:15:2b:ac:3a:26:b4:d3:fd:50:8a:
                    08:a3:13:06:01:f1:1f:78:3d:7f:85:30:46:cc:fd:13:
                    ab:9b:ff:64:6b:20:55:2f:36:5c:53:0e:3b:b8:81:80:
                    c8:92:8a:bc:42:09:e5:85:f2:c4:5d:8b:60:74:b9:29:
                    47:2a:d3:71:3c:d4:9a:75:4c:97:d7:4e:84:b5:13:30:
                    a1:9f:1c:25:f1:0d:d9:59:0d:2f:40:dc:a3:a4:36:68:
                    5c:b5:58:c7:9f:b3:51:e0:11:49:00:43:07:80:cb:02:
                    c0:41:30:1d:30:7a:da:24:30:51:71:19:2c:1c:f5:15:
                    3f:78:a6:c8:97:26:17:b4:d7:b1:ae:64:32:61:73:6d:
                    a4:b2:2e:4c:5d:9e:b8:28:ae:71:f3:35:e7:5f:2d:38:
                    c3:6e:f5:cc:b4:7d:2f:eb:fa:e3:9c:54:6f:8a:9f:04:
                    91:96:a5:89:ae:10:11:74:8c:fe:11:f9:ef:c8:6f:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:84:74:0f:50:0b:fd:5f:20:75:c0:a0:05:ae:a6:ba:
        3b:c3:b8:64:a9:49:70:c7:00:59:90:fd:73:db:52:04:
        d0:ed:68:e9:c9:69:5c:02:0f:af:fb:f5:25:3e:d2:6e:
        53:be:9d:49:b6:5f:5d:f9:47:f6:c8:d4:dc:3f:91:53:
        3f:e4:36:87:43:fd:ef:3f:11:59:07:75:41:58:b0:c9:
        45:19:96:45:c6:5c:a5:94:00:5a:87:f7:0b:36:61:c5:
        39:0f:e4:cf:ab:81:68:33:e9:47:bf:aa:ab:9a:fc:e5:
        1b:83:fd:c9:7f:7b:b9:24:2e:15:cd:49:90:70:07:17:
        fc:60:19:66:1d:17:51:44:f0:56:d0:bc:b0:92:ab:a1:
        8b:42:82:bb:9c:76:c9:a3:3a:db:37:0d:e2:b7:04:75:
        5c:a8:98:59:a9:09:76:f3:08:a3:73:86:aa:90:15:ed:
        23:1c:2e:3d:1d:61:c2:1d:b7:61:b7:e3:28:02:a9:31:
        d2:31:74:f0:16:37:4d:76:24:b3:79:f9:85:a7:4e:7d:
        7e:96:24:ce:2c:b4:3c:7f:5f:a6:b0:61:ef:4c:2b:48:
        a5:54:f7:6e:48:41:85:1f:51:50:e8:c6:08:de:94:9e:
        c3:2b:47:4c:b8:91:77:a7:38:b0:e1:2e:ab:92:99:d5
    Fingerprint (SHA-256):
        AE:EB:26:C4:D9:32:70:65:16:46:32:32:05:5A:92:D9:B7:8D:C4:BE:61:9F:32:F6:F1:37:9A:E9:9D:77:99:46
    Fingerprint (SHA1):
        38:BE:0E:DC:EA:13:81:3B:D6:6E:3C:0C:2D:AE:7C:D6:F5:99:CE:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6922: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6923: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153517 (0x1dee412d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:54 2017
            Not After : Mon May 02 15:34:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:39:ab:45:08:c8:71:72:a4:a1:ef:21:f6:88:db:a6:
                    0c:10:80:51:35:8b:cf:c1:f5:e4:4d:81:32:2c:d7:f0:
                    7e:ff:22:0a:d9:c2:9f:71:7f:a4:c1:d6:74:f3:81:fd:
                    80:1c:65:eb:51:df:d6:c1:be:a4:a4:64:62:23:16:16:
                    4a:e7:70:20:1f:9c:1d:f5:f4:46:4d:0a:4b:e9:05:95:
                    81:e0:ff:31:6e:eb:0e:a7:aa:fc:68:b8:d8:f0:fa:d8:
                    fe:2f:3f:37:37:9d:15:be:12:35:21:91:d4:6a:df:3b:
                    48:61:aa:16:89:04:1c:69:53:11:81:fb:bb:55:28:3c:
                    96:17:5c:a5:f5:41:52:5d:17:15:b0:ce:e5:1f:a7:da:
                    41:e4:39:24:96:d1:26:32:89:6c:21:53:10:60:48:24:
                    46:2c:ac:86:ca:67:9d:7d:a5:27:fe:86:52:6b:a8:8b:
                    b9:7e:4d:33:79:20:c5:f8:0d:1c:82:09:89:25:f6:46:
                    9d:e0:f2:45:4c:4f:26:df:c6:7d:24:56:12:74:57:2e:
                    21:c8:31:0b:2c:52:b8:0a:40:94:2c:e9:a5:27:86:b4:
                    89:7a:eb:98:71:b7:75:58:45:86:8b:40:5d:11:73:b1:
                    83:dd:c5:cb:ed:c9:07:48:72:a0:ab:cc:52:25:8e:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:c7:39:11:5b:e8:75:03:bf:97:5b:4e:de:35:23:a6:
        9e:d0:b5:d7:c5:fa:de:9a:47:e0:30:2c:e9:37:e3:06:
        4f:0a:b0:8e:20:88:a2:20:fd:f9:ac:29:c5:f1:8c:17:
        6b:28:71:75:8b:61:8f:b9:39:7a:fb:c1:22:ee:e3:7c:
        de:a0:ca:aa:db:56:aa:53:eb:00:a6:52:73:07:e9:ef:
        f5:2b:73:2f:01:43:2c:32:94:f9:ba:40:89:ca:77:bc:
        52:35:f4:27:ab:ef:33:9d:3e:a9:68:c6:5e:d7:28:30:
        6e:08:97:67:04:b0:c7:69:af:b9:d2:fa:e3:3d:1c:58:
        b6:36:93:a4:f3:d6:2b:9e:cb:b6:51:93:f9:49:5c:24:
        e0:ae:0e:ec:2e:8c:c3:93:7e:6f:cb:f3:66:b7:18:4b:
        e6:61:4f:a6:62:f4:a3:21:f6:78:1c:b4:b2:0d:5d:2f:
        55:90:0a:07:0b:15:53:55:b4:f7:f2:c1:9c:7d:3b:40:
        28:69:5e:95:86:10:5f:eb:d1:0e:62:fc:ad:cd:ba:2b:
        60:a1:d1:35:a0:f0:c3:02:39:de:69:09:88:b3:65:16:
        6d:ae:47:07:1f:bf:91:dd:e3:59:5c:5b:ad:ce:db:60:
        7e:d2:11:6f:dd:30:7b:17:3d:c1:9a:c1:9e:a0:7b:26
    Fingerprint (SHA-256):
        49:B7:EE:ED:FD:7E:AC:12:1B:F1:07:B2:99:44:BE:D9:E7:97:00:8F:03:E8:C5:CA:47:0A:8C:5F:A6:F3:BE:B6
    Fingerprint (SHA1):
        95:FC:0E:EE:60:BE:03:91:57:0C:04:8E:B7:76:75:1C:FE:55:19:0A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6924: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6925: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6926: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6927: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6928: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153515 (0x1dee412b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:53 2017
            Not After : Mon May 02 15:34:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:f8:00:98:ab:9e:0c:4e:df:92:4b:5a:da:d8:9d:fb:
                    c3:48:0c:b8:9a:f4:16:48:64:f1:67:4e:5c:77:c8:51:
                    67:39:11:f3:5b:bc:34:6e:61:dd:99:ce:30:b1:e7:79:
                    43:ef:7d:5c:83:46:10:52:52:17:4a:e6:cf:11:1f:37:
                    d1:c4:85:9a:84:cd:1f:72:19:52:6c:cc:e4:07:40:9f:
                    1c:6e:df:38:be:0e:82:fe:d8:3d:64:91:bb:55:f0:7c:
                    f4:3a:d4:5d:3c:49:37:f1:c9:a3:d2:e6:4e:78:62:da:
                    75:cc:c8:70:27:60:14:b7:db:4f:cb:80:84:0e:b1:2f:
                    cc:90:3d:57:eb:1c:ec:1d:13:0e:22:d3:85:0e:d8:2d:
                    83:85:97:d2:52:91:a6:e1:14:38:da:7f:e5:fa:2d:3a:
                    4e:9c:13:c0:a5:49:f7:b0:23:c9:9e:9d:20:58:77:d6:
                    47:b5:50:89:21:b9:ae:7d:82:d1:b5:24:4a:dc:1e:42:
                    0c:9d:70:e0:16:68:9c:7b:78:a0:2f:78:b2:8a:7d:69:
                    aa:68:0a:0d:df:0c:74:1d:cc:55:70:99:32:90:1f:b5:
                    00:bf:48:9a:53:af:78:fa:12:53:cb:47:47:f1:4c:af:
                    3e:4c:af:c4:10:c6:08:80:21:55:75:dd:a7:bc:f4:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:3c:ce:60:cc:fe:d1:41:b6:b0:ed:78:a4:70:57:1c:
        0d:40:06:b5:5b:07:e1:66:22:ec:a9:23:25:49:4f:92:
        46:82:7f:e5:16:2c:44:7a:53:68:da:54:bf:7e:1d:66:
        b2:30:da:48:fc:03:fe:db:8b:a2:43:c5:33:c6:f3:80:
        98:88:e8:ee:af:f6:55:bb:43:72:7b:db:f7:62:bb:de:
        c2:74:d6:61:89:95:8a:80:8a:a5:da:59:bc:d0:d8:40:
        9d:d2:16:f2:e1:28:18:6e:2e:23:6f:d7:00:3d:71:37:
        c5:a7:a6:74:a0:99:f4:6c:12:c6:f5:52:c5:74:ff:f1:
        de:3c:8e:dc:a1:97:b9:7e:ee:28:dc:3f:a2:92:17:d2:
        90:57:2a:b1:83:8c:07:aa:78:21:44:15:86:84:e4:55:
        f7:63:3e:c5:49:fc:65:88:52:52:b9:18:42:1a:47:81:
        dc:a4:84:ba:74:5f:54:53:be:2e:ac:da:35:2a:03:2b:
        36:86:20:9b:5b:da:d7:0c:19:6c:4e:67:80:e1:9e:d6:
        34:d2:13:54:de:35:66:e9:70:73:2e:8b:6a:dd:7e:88:
        69:52:86:87:d9:7a:fb:70:67:c0:e9:57:8a:bc:e9:15:
        93:2c:4c:7c:ec:6f:c6:e5:ab:ea:84:01:3c:dd:43:b5
    Fingerprint (SHA-256):
        37:66:C1:B0:42:EA:17:EC:3C:85:87:45:C5:CF:B0:62:A9:7A:21:84:4C:5D:95:F4:71:CD:9B:DB:B0:39:EF:CD
    Fingerprint (SHA1):
        26:22:93:20:09:47:5E:8F:8D:CC:86:84:D0:6F:C3:35:FA:99:EF:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6929: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6930: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153516 (0x1dee412c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:53 2017
            Not After : Mon May 02 15:34:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:cd:d2:d4:df:07:12:ef:75:81:e5:d0:02:9b:97:55:
                    af:06:7c:1d:4d:a4:ab:4f:39:5a:85:43:b8:c9:87:44:
                    af:29:50:e2:f8:57:21:bc:eb:65:c0:2a:96:b7:35:23:
                    19:33:fd:3f:a0:6b:f3:af:bf:0f:8b:7a:33:e2:77:1f:
                    4d:53:c3:41:3e:4d:15:2b:ac:3a:26:b4:d3:fd:50:8a:
                    08:a3:13:06:01:f1:1f:78:3d:7f:85:30:46:cc:fd:13:
                    ab:9b:ff:64:6b:20:55:2f:36:5c:53:0e:3b:b8:81:80:
                    c8:92:8a:bc:42:09:e5:85:f2:c4:5d:8b:60:74:b9:29:
                    47:2a:d3:71:3c:d4:9a:75:4c:97:d7:4e:84:b5:13:30:
                    a1:9f:1c:25:f1:0d:d9:59:0d:2f:40:dc:a3:a4:36:68:
                    5c:b5:58:c7:9f:b3:51:e0:11:49:00:43:07:80:cb:02:
                    c0:41:30:1d:30:7a:da:24:30:51:71:19:2c:1c:f5:15:
                    3f:78:a6:c8:97:26:17:b4:d7:b1:ae:64:32:61:73:6d:
                    a4:b2:2e:4c:5d:9e:b8:28:ae:71:f3:35:e7:5f:2d:38:
                    c3:6e:f5:cc:b4:7d:2f:eb:fa:e3:9c:54:6f:8a:9f:04:
                    91:96:a5:89:ae:10:11:74:8c:fe:11:f9:ef:c8:6f:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:84:74:0f:50:0b:fd:5f:20:75:c0:a0:05:ae:a6:ba:
        3b:c3:b8:64:a9:49:70:c7:00:59:90:fd:73:db:52:04:
        d0:ed:68:e9:c9:69:5c:02:0f:af:fb:f5:25:3e:d2:6e:
        53:be:9d:49:b6:5f:5d:f9:47:f6:c8:d4:dc:3f:91:53:
        3f:e4:36:87:43:fd:ef:3f:11:59:07:75:41:58:b0:c9:
        45:19:96:45:c6:5c:a5:94:00:5a:87:f7:0b:36:61:c5:
        39:0f:e4:cf:ab:81:68:33:e9:47:bf:aa:ab:9a:fc:e5:
        1b:83:fd:c9:7f:7b:b9:24:2e:15:cd:49:90:70:07:17:
        fc:60:19:66:1d:17:51:44:f0:56:d0:bc:b0:92:ab:a1:
        8b:42:82:bb:9c:76:c9:a3:3a:db:37:0d:e2:b7:04:75:
        5c:a8:98:59:a9:09:76:f3:08:a3:73:86:aa:90:15:ed:
        23:1c:2e:3d:1d:61:c2:1d:b7:61:b7:e3:28:02:a9:31:
        d2:31:74:f0:16:37:4d:76:24:b3:79:f9:85:a7:4e:7d:
        7e:96:24:ce:2c:b4:3c:7f:5f:a6:b0:61:ef:4c:2b:48:
        a5:54:f7:6e:48:41:85:1f:51:50:e8:c6:08:de:94:9e:
        c3:2b:47:4c:b8:91:77:a7:38:b0:e1:2e:ab:92:99:d5
    Fingerprint (SHA-256):
        AE:EB:26:C4:D9:32:70:65:16:46:32:32:05:5A:92:D9:B7:8D:C4:BE:61:9F:32:F6:F1:37:9A:E9:9D:77:99:46
    Fingerprint (SHA1):
        38:BE:0E:DC:EA:13:81:3B:D6:6E:3C:0C:2D:AE:7C:D6:F5:99:CE:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6931: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6932: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153517 (0x1dee412d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:54 2017
            Not After : Mon May 02 15:34:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:39:ab:45:08:c8:71:72:a4:a1:ef:21:f6:88:db:a6:
                    0c:10:80:51:35:8b:cf:c1:f5:e4:4d:81:32:2c:d7:f0:
                    7e:ff:22:0a:d9:c2:9f:71:7f:a4:c1:d6:74:f3:81:fd:
                    80:1c:65:eb:51:df:d6:c1:be:a4:a4:64:62:23:16:16:
                    4a:e7:70:20:1f:9c:1d:f5:f4:46:4d:0a:4b:e9:05:95:
                    81:e0:ff:31:6e:eb:0e:a7:aa:fc:68:b8:d8:f0:fa:d8:
                    fe:2f:3f:37:37:9d:15:be:12:35:21:91:d4:6a:df:3b:
                    48:61:aa:16:89:04:1c:69:53:11:81:fb:bb:55:28:3c:
                    96:17:5c:a5:f5:41:52:5d:17:15:b0:ce:e5:1f:a7:da:
                    41:e4:39:24:96:d1:26:32:89:6c:21:53:10:60:48:24:
                    46:2c:ac:86:ca:67:9d:7d:a5:27:fe:86:52:6b:a8:8b:
                    b9:7e:4d:33:79:20:c5:f8:0d:1c:82:09:89:25:f6:46:
                    9d:e0:f2:45:4c:4f:26:df:c6:7d:24:56:12:74:57:2e:
                    21:c8:31:0b:2c:52:b8:0a:40:94:2c:e9:a5:27:86:b4:
                    89:7a:eb:98:71:b7:75:58:45:86:8b:40:5d:11:73:b1:
                    83:dd:c5:cb:ed:c9:07:48:72:a0:ab:cc:52:25:8e:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:c7:39:11:5b:e8:75:03:bf:97:5b:4e:de:35:23:a6:
        9e:d0:b5:d7:c5:fa:de:9a:47:e0:30:2c:e9:37:e3:06:
        4f:0a:b0:8e:20:88:a2:20:fd:f9:ac:29:c5:f1:8c:17:
        6b:28:71:75:8b:61:8f:b9:39:7a:fb:c1:22:ee:e3:7c:
        de:a0:ca:aa:db:56:aa:53:eb:00:a6:52:73:07:e9:ef:
        f5:2b:73:2f:01:43:2c:32:94:f9:ba:40:89:ca:77:bc:
        52:35:f4:27:ab:ef:33:9d:3e:a9:68:c6:5e:d7:28:30:
        6e:08:97:67:04:b0:c7:69:af:b9:d2:fa:e3:3d:1c:58:
        b6:36:93:a4:f3:d6:2b:9e:cb:b6:51:93:f9:49:5c:24:
        e0:ae:0e:ec:2e:8c:c3:93:7e:6f:cb:f3:66:b7:18:4b:
        e6:61:4f:a6:62:f4:a3:21:f6:78:1c:b4:b2:0d:5d:2f:
        55:90:0a:07:0b:15:53:55:b4:f7:f2:c1:9c:7d:3b:40:
        28:69:5e:95:86:10:5f:eb:d1:0e:62:fc:ad:cd:ba:2b:
        60:a1:d1:35:a0:f0:c3:02:39:de:69:09:88:b3:65:16:
        6d:ae:47:07:1f:bf:91:dd:e3:59:5c:5b:ad:ce:db:60:
        7e:d2:11:6f:dd:30:7b:17:3d:c1:9a:c1:9e:a0:7b:26
    Fingerprint (SHA-256):
        49:B7:EE:ED:FD:7E:AC:12:1B:F1:07:B2:99:44:BE:D9:E7:97:00:8F:03:E8:C5:CA:47:0A:8C:5F:A6:F3:BE:B6
    Fingerprint (SHA1):
        95:FC:0E:EE:60:BE:03:91:57:0C:04:8E:B7:76:75:1C:FE:55:19:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6933: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6934: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153515 (0x1dee412b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:53 2017
            Not After : Mon May 02 15:34:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:f8:00:98:ab:9e:0c:4e:df:92:4b:5a:da:d8:9d:fb:
                    c3:48:0c:b8:9a:f4:16:48:64:f1:67:4e:5c:77:c8:51:
                    67:39:11:f3:5b:bc:34:6e:61:dd:99:ce:30:b1:e7:79:
                    43:ef:7d:5c:83:46:10:52:52:17:4a:e6:cf:11:1f:37:
                    d1:c4:85:9a:84:cd:1f:72:19:52:6c:cc:e4:07:40:9f:
                    1c:6e:df:38:be:0e:82:fe:d8:3d:64:91:bb:55:f0:7c:
                    f4:3a:d4:5d:3c:49:37:f1:c9:a3:d2:e6:4e:78:62:da:
                    75:cc:c8:70:27:60:14:b7:db:4f:cb:80:84:0e:b1:2f:
                    cc:90:3d:57:eb:1c:ec:1d:13:0e:22:d3:85:0e:d8:2d:
                    83:85:97:d2:52:91:a6:e1:14:38:da:7f:e5:fa:2d:3a:
                    4e:9c:13:c0:a5:49:f7:b0:23:c9:9e:9d:20:58:77:d6:
                    47:b5:50:89:21:b9:ae:7d:82:d1:b5:24:4a:dc:1e:42:
                    0c:9d:70:e0:16:68:9c:7b:78:a0:2f:78:b2:8a:7d:69:
                    aa:68:0a:0d:df:0c:74:1d:cc:55:70:99:32:90:1f:b5:
                    00:bf:48:9a:53:af:78:fa:12:53:cb:47:47:f1:4c:af:
                    3e:4c:af:c4:10:c6:08:80:21:55:75:dd:a7:bc:f4:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:3c:ce:60:cc:fe:d1:41:b6:b0:ed:78:a4:70:57:1c:
        0d:40:06:b5:5b:07:e1:66:22:ec:a9:23:25:49:4f:92:
        46:82:7f:e5:16:2c:44:7a:53:68:da:54:bf:7e:1d:66:
        b2:30:da:48:fc:03:fe:db:8b:a2:43:c5:33:c6:f3:80:
        98:88:e8:ee:af:f6:55:bb:43:72:7b:db:f7:62:bb:de:
        c2:74:d6:61:89:95:8a:80:8a:a5:da:59:bc:d0:d8:40:
        9d:d2:16:f2:e1:28:18:6e:2e:23:6f:d7:00:3d:71:37:
        c5:a7:a6:74:a0:99:f4:6c:12:c6:f5:52:c5:74:ff:f1:
        de:3c:8e:dc:a1:97:b9:7e:ee:28:dc:3f:a2:92:17:d2:
        90:57:2a:b1:83:8c:07:aa:78:21:44:15:86:84:e4:55:
        f7:63:3e:c5:49:fc:65:88:52:52:b9:18:42:1a:47:81:
        dc:a4:84:ba:74:5f:54:53:be:2e:ac:da:35:2a:03:2b:
        36:86:20:9b:5b:da:d7:0c:19:6c:4e:67:80:e1:9e:d6:
        34:d2:13:54:de:35:66:e9:70:73:2e:8b:6a:dd:7e:88:
        69:52:86:87:d9:7a:fb:70:67:c0:e9:57:8a:bc:e9:15:
        93:2c:4c:7c:ec:6f:c6:e5:ab:ea:84:01:3c:dd:43:b5
    Fingerprint (SHA-256):
        37:66:C1:B0:42:EA:17:EC:3C:85:87:45:C5:CF:B0:62:A9:7A:21:84:4C:5D:95:F4:71:CD:9B:DB:B0:39:EF:CD
    Fingerprint (SHA1):
        26:22:93:20:09:47:5E:8F:8D:CC:86:84:D0:6F:C3:35:FA:99:EF:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6935: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153515 (0x1dee412b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:53 2017
            Not After : Mon May 02 15:34:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:f8:00:98:ab:9e:0c:4e:df:92:4b:5a:da:d8:9d:fb:
                    c3:48:0c:b8:9a:f4:16:48:64:f1:67:4e:5c:77:c8:51:
                    67:39:11:f3:5b:bc:34:6e:61:dd:99:ce:30:b1:e7:79:
                    43:ef:7d:5c:83:46:10:52:52:17:4a:e6:cf:11:1f:37:
                    d1:c4:85:9a:84:cd:1f:72:19:52:6c:cc:e4:07:40:9f:
                    1c:6e:df:38:be:0e:82:fe:d8:3d:64:91:bb:55:f0:7c:
                    f4:3a:d4:5d:3c:49:37:f1:c9:a3:d2:e6:4e:78:62:da:
                    75:cc:c8:70:27:60:14:b7:db:4f:cb:80:84:0e:b1:2f:
                    cc:90:3d:57:eb:1c:ec:1d:13:0e:22:d3:85:0e:d8:2d:
                    83:85:97:d2:52:91:a6:e1:14:38:da:7f:e5:fa:2d:3a:
                    4e:9c:13:c0:a5:49:f7:b0:23:c9:9e:9d:20:58:77:d6:
                    47:b5:50:89:21:b9:ae:7d:82:d1:b5:24:4a:dc:1e:42:
                    0c:9d:70:e0:16:68:9c:7b:78:a0:2f:78:b2:8a:7d:69:
                    aa:68:0a:0d:df:0c:74:1d:cc:55:70:99:32:90:1f:b5:
                    00:bf:48:9a:53:af:78:fa:12:53:cb:47:47:f1:4c:af:
                    3e:4c:af:c4:10:c6:08:80:21:55:75:dd:a7:bc:f4:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:3c:ce:60:cc:fe:d1:41:b6:b0:ed:78:a4:70:57:1c:
        0d:40:06:b5:5b:07:e1:66:22:ec:a9:23:25:49:4f:92:
        46:82:7f:e5:16:2c:44:7a:53:68:da:54:bf:7e:1d:66:
        b2:30:da:48:fc:03:fe:db:8b:a2:43:c5:33:c6:f3:80:
        98:88:e8:ee:af:f6:55:bb:43:72:7b:db:f7:62:bb:de:
        c2:74:d6:61:89:95:8a:80:8a:a5:da:59:bc:d0:d8:40:
        9d:d2:16:f2:e1:28:18:6e:2e:23:6f:d7:00:3d:71:37:
        c5:a7:a6:74:a0:99:f4:6c:12:c6:f5:52:c5:74:ff:f1:
        de:3c:8e:dc:a1:97:b9:7e:ee:28:dc:3f:a2:92:17:d2:
        90:57:2a:b1:83:8c:07:aa:78:21:44:15:86:84:e4:55:
        f7:63:3e:c5:49:fc:65:88:52:52:b9:18:42:1a:47:81:
        dc:a4:84:ba:74:5f:54:53:be:2e:ac:da:35:2a:03:2b:
        36:86:20:9b:5b:da:d7:0c:19:6c:4e:67:80:e1:9e:d6:
        34:d2:13:54:de:35:66:e9:70:73:2e:8b:6a:dd:7e:88:
        69:52:86:87:d9:7a:fb:70:67:c0:e9:57:8a:bc:e9:15:
        93:2c:4c:7c:ec:6f:c6:e5:ab:ea:84:01:3c:dd:43:b5
    Fingerprint (SHA-256):
        37:66:C1:B0:42:EA:17:EC:3C:85:87:45:C5:CF:B0:62:A9:7A:21:84:4C:5D:95:F4:71:CD:9B:DB:B0:39:EF:CD
    Fingerprint (SHA1):
        26:22:93:20:09:47:5E:8F:8D:CC:86:84:D0:6F:C3:35:FA:99:EF:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6936: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153516 (0x1dee412c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:53 2017
            Not After : Mon May 02 15:34:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:cd:d2:d4:df:07:12:ef:75:81:e5:d0:02:9b:97:55:
                    af:06:7c:1d:4d:a4:ab:4f:39:5a:85:43:b8:c9:87:44:
                    af:29:50:e2:f8:57:21:bc:eb:65:c0:2a:96:b7:35:23:
                    19:33:fd:3f:a0:6b:f3:af:bf:0f:8b:7a:33:e2:77:1f:
                    4d:53:c3:41:3e:4d:15:2b:ac:3a:26:b4:d3:fd:50:8a:
                    08:a3:13:06:01:f1:1f:78:3d:7f:85:30:46:cc:fd:13:
                    ab:9b:ff:64:6b:20:55:2f:36:5c:53:0e:3b:b8:81:80:
                    c8:92:8a:bc:42:09:e5:85:f2:c4:5d:8b:60:74:b9:29:
                    47:2a:d3:71:3c:d4:9a:75:4c:97:d7:4e:84:b5:13:30:
                    a1:9f:1c:25:f1:0d:d9:59:0d:2f:40:dc:a3:a4:36:68:
                    5c:b5:58:c7:9f:b3:51:e0:11:49:00:43:07:80:cb:02:
                    c0:41:30:1d:30:7a:da:24:30:51:71:19:2c:1c:f5:15:
                    3f:78:a6:c8:97:26:17:b4:d7:b1:ae:64:32:61:73:6d:
                    a4:b2:2e:4c:5d:9e:b8:28:ae:71:f3:35:e7:5f:2d:38:
                    c3:6e:f5:cc:b4:7d:2f:eb:fa:e3:9c:54:6f:8a:9f:04:
                    91:96:a5:89:ae:10:11:74:8c:fe:11:f9:ef:c8:6f:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:84:74:0f:50:0b:fd:5f:20:75:c0:a0:05:ae:a6:ba:
        3b:c3:b8:64:a9:49:70:c7:00:59:90:fd:73:db:52:04:
        d0:ed:68:e9:c9:69:5c:02:0f:af:fb:f5:25:3e:d2:6e:
        53:be:9d:49:b6:5f:5d:f9:47:f6:c8:d4:dc:3f:91:53:
        3f:e4:36:87:43:fd:ef:3f:11:59:07:75:41:58:b0:c9:
        45:19:96:45:c6:5c:a5:94:00:5a:87:f7:0b:36:61:c5:
        39:0f:e4:cf:ab:81:68:33:e9:47:bf:aa:ab:9a:fc:e5:
        1b:83:fd:c9:7f:7b:b9:24:2e:15:cd:49:90:70:07:17:
        fc:60:19:66:1d:17:51:44:f0:56:d0:bc:b0:92:ab:a1:
        8b:42:82:bb:9c:76:c9:a3:3a:db:37:0d:e2:b7:04:75:
        5c:a8:98:59:a9:09:76:f3:08:a3:73:86:aa:90:15:ed:
        23:1c:2e:3d:1d:61:c2:1d:b7:61:b7:e3:28:02:a9:31:
        d2:31:74:f0:16:37:4d:76:24:b3:79:f9:85:a7:4e:7d:
        7e:96:24:ce:2c:b4:3c:7f:5f:a6:b0:61:ef:4c:2b:48:
        a5:54:f7:6e:48:41:85:1f:51:50:e8:c6:08:de:94:9e:
        c3:2b:47:4c:b8:91:77:a7:38:b0:e1:2e:ab:92:99:d5
    Fingerprint (SHA-256):
        AE:EB:26:C4:D9:32:70:65:16:46:32:32:05:5A:92:D9:B7:8D:C4:BE:61:9F:32:F6:F1:37:9A:E9:9D:77:99:46
    Fingerprint (SHA1):
        38:BE:0E:DC:EA:13:81:3B:D6:6E:3C:0C:2D:AE:7C:D6:F5:99:CE:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6937: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153516 (0x1dee412c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:53 2017
            Not After : Mon May 02 15:34:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:cd:d2:d4:df:07:12:ef:75:81:e5:d0:02:9b:97:55:
                    af:06:7c:1d:4d:a4:ab:4f:39:5a:85:43:b8:c9:87:44:
                    af:29:50:e2:f8:57:21:bc:eb:65:c0:2a:96:b7:35:23:
                    19:33:fd:3f:a0:6b:f3:af:bf:0f:8b:7a:33:e2:77:1f:
                    4d:53:c3:41:3e:4d:15:2b:ac:3a:26:b4:d3:fd:50:8a:
                    08:a3:13:06:01:f1:1f:78:3d:7f:85:30:46:cc:fd:13:
                    ab:9b:ff:64:6b:20:55:2f:36:5c:53:0e:3b:b8:81:80:
                    c8:92:8a:bc:42:09:e5:85:f2:c4:5d:8b:60:74:b9:29:
                    47:2a:d3:71:3c:d4:9a:75:4c:97:d7:4e:84:b5:13:30:
                    a1:9f:1c:25:f1:0d:d9:59:0d:2f:40:dc:a3:a4:36:68:
                    5c:b5:58:c7:9f:b3:51:e0:11:49:00:43:07:80:cb:02:
                    c0:41:30:1d:30:7a:da:24:30:51:71:19:2c:1c:f5:15:
                    3f:78:a6:c8:97:26:17:b4:d7:b1:ae:64:32:61:73:6d:
                    a4:b2:2e:4c:5d:9e:b8:28:ae:71:f3:35:e7:5f:2d:38:
                    c3:6e:f5:cc:b4:7d:2f:eb:fa:e3:9c:54:6f:8a:9f:04:
                    91:96:a5:89:ae:10:11:74:8c:fe:11:f9:ef:c8:6f:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:84:74:0f:50:0b:fd:5f:20:75:c0:a0:05:ae:a6:ba:
        3b:c3:b8:64:a9:49:70:c7:00:59:90:fd:73:db:52:04:
        d0:ed:68:e9:c9:69:5c:02:0f:af:fb:f5:25:3e:d2:6e:
        53:be:9d:49:b6:5f:5d:f9:47:f6:c8:d4:dc:3f:91:53:
        3f:e4:36:87:43:fd:ef:3f:11:59:07:75:41:58:b0:c9:
        45:19:96:45:c6:5c:a5:94:00:5a:87:f7:0b:36:61:c5:
        39:0f:e4:cf:ab:81:68:33:e9:47:bf:aa:ab:9a:fc:e5:
        1b:83:fd:c9:7f:7b:b9:24:2e:15:cd:49:90:70:07:17:
        fc:60:19:66:1d:17:51:44:f0:56:d0:bc:b0:92:ab:a1:
        8b:42:82:bb:9c:76:c9:a3:3a:db:37:0d:e2:b7:04:75:
        5c:a8:98:59:a9:09:76:f3:08:a3:73:86:aa:90:15:ed:
        23:1c:2e:3d:1d:61:c2:1d:b7:61:b7:e3:28:02:a9:31:
        d2:31:74:f0:16:37:4d:76:24:b3:79:f9:85:a7:4e:7d:
        7e:96:24:ce:2c:b4:3c:7f:5f:a6:b0:61:ef:4c:2b:48:
        a5:54:f7:6e:48:41:85:1f:51:50:e8:c6:08:de:94:9e:
        c3:2b:47:4c:b8:91:77:a7:38:b0:e1:2e:ab:92:99:d5
    Fingerprint (SHA-256):
        AE:EB:26:C4:D9:32:70:65:16:46:32:32:05:5A:92:D9:B7:8D:C4:BE:61:9F:32:F6:F1:37:9A:E9:9D:77:99:46
    Fingerprint (SHA1):
        38:BE:0E:DC:EA:13:81:3B:D6:6E:3C:0C:2D:AE:7C:D6:F5:99:CE:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6938: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153517 (0x1dee412d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:54 2017
            Not After : Mon May 02 15:34:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:39:ab:45:08:c8:71:72:a4:a1:ef:21:f6:88:db:a6:
                    0c:10:80:51:35:8b:cf:c1:f5:e4:4d:81:32:2c:d7:f0:
                    7e:ff:22:0a:d9:c2:9f:71:7f:a4:c1:d6:74:f3:81:fd:
                    80:1c:65:eb:51:df:d6:c1:be:a4:a4:64:62:23:16:16:
                    4a:e7:70:20:1f:9c:1d:f5:f4:46:4d:0a:4b:e9:05:95:
                    81:e0:ff:31:6e:eb:0e:a7:aa:fc:68:b8:d8:f0:fa:d8:
                    fe:2f:3f:37:37:9d:15:be:12:35:21:91:d4:6a:df:3b:
                    48:61:aa:16:89:04:1c:69:53:11:81:fb:bb:55:28:3c:
                    96:17:5c:a5:f5:41:52:5d:17:15:b0:ce:e5:1f:a7:da:
                    41:e4:39:24:96:d1:26:32:89:6c:21:53:10:60:48:24:
                    46:2c:ac:86:ca:67:9d:7d:a5:27:fe:86:52:6b:a8:8b:
                    b9:7e:4d:33:79:20:c5:f8:0d:1c:82:09:89:25:f6:46:
                    9d:e0:f2:45:4c:4f:26:df:c6:7d:24:56:12:74:57:2e:
                    21:c8:31:0b:2c:52:b8:0a:40:94:2c:e9:a5:27:86:b4:
                    89:7a:eb:98:71:b7:75:58:45:86:8b:40:5d:11:73:b1:
                    83:dd:c5:cb:ed:c9:07:48:72:a0:ab:cc:52:25:8e:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:c7:39:11:5b:e8:75:03:bf:97:5b:4e:de:35:23:a6:
        9e:d0:b5:d7:c5:fa:de:9a:47:e0:30:2c:e9:37:e3:06:
        4f:0a:b0:8e:20:88:a2:20:fd:f9:ac:29:c5:f1:8c:17:
        6b:28:71:75:8b:61:8f:b9:39:7a:fb:c1:22:ee:e3:7c:
        de:a0:ca:aa:db:56:aa:53:eb:00:a6:52:73:07:e9:ef:
        f5:2b:73:2f:01:43:2c:32:94:f9:ba:40:89:ca:77:bc:
        52:35:f4:27:ab:ef:33:9d:3e:a9:68:c6:5e:d7:28:30:
        6e:08:97:67:04:b0:c7:69:af:b9:d2:fa:e3:3d:1c:58:
        b6:36:93:a4:f3:d6:2b:9e:cb:b6:51:93:f9:49:5c:24:
        e0:ae:0e:ec:2e:8c:c3:93:7e:6f:cb:f3:66:b7:18:4b:
        e6:61:4f:a6:62:f4:a3:21:f6:78:1c:b4:b2:0d:5d:2f:
        55:90:0a:07:0b:15:53:55:b4:f7:f2:c1:9c:7d:3b:40:
        28:69:5e:95:86:10:5f:eb:d1:0e:62:fc:ad:cd:ba:2b:
        60:a1:d1:35:a0:f0:c3:02:39:de:69:09:88:b3:65:16:
        6d:ae:47:07:1f:bf:91:dd:e3:59:5c:5b:ad:ce:db:60:
        7e:d2:11:6f:dd:30:7b:17:3d:c1:9a:c1:9e:a0:7b:26
    Fingerprint (SHA-256):
        49:B7:EE:ED:FD:7E:AC:12:1B:F1:07:B2:99:44:BE:D9:E7:97:00:8F:03:E8:C5:CA:47:0A:8C:5F:A6:F3:BE:B6
    Fingerprint (SHA1):
        95:FC:0E:EE:60:BE:03:91:57:0C:04:8E:B7:76:75:1C:FE:55:19:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6939: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153517 (0x1dee412d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:54 2017
            Not After : Mon May 02 15:34:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:39:ab:45:08:c8:71:72:a4:a1:ef:21:f6:88:db:a6:
                    0c:10:80:51:35:8b:cf:c1:f5:e4:4d:81:32:2c:d7:f0:
                    7e:ff:22:0a:d9:c2:9f:71:7f:a4:c1:d6:74:f3:81:fd:
                    80:1c:65:eb:51:df:d6:c1:be:a4:a4:64:62:23:16:16:
                    4a:e7:70:20:1f:9c:1d:f5:f4:46:4d:0a:4b:e9:05:95:
                    81:e0:ff:31:6e:eb:0e:a7:aa:fc:68:b8:d8:f0:fa:d8:
                    fe:2f:3f:37:37:9d:15:be:12:35:21:91:d4:6a:df:3b:
                    48:61:aa:16:89:04:1c:69:53:11:81:fb:bb:55:28:3c:
                    96:17:5c:a5:f5:41:52:5d:17:15:b0:ce:e5:1f:a7:da:
                    41:e4:39:24:96:d1:26:32:89:6c:21:53:10:60:48:24:
                    46:2c:ac:86:ca:67:9d:7d:a5:27:fe:86:52:6b:a8:8b:
                    b9:7e:4d:33:79:20:c5:f8:0d:1c:82:09:89:25:f6:46:
                    9d:e0:f2:45:4c:4f:26:df:c6:7d:24:56:12:74:57:2e:
                    21:c8:31:0b:2c:52:b8:0a:40:94:2c:e9:a5:27:86:b4:
                    89:7a:eb:98:71:b7:75:58:45:86:8b:40:5d:11:73:b1:
                    83:dd:c5:cb:ed:c9:07:48:72:a0:ab:cc:52:25:8e:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:c7:39:11:5b:e8:75:03:bf:97:5b:4e:de:35:23:a6:
        9e:d0:b5:d7:c5:fa:de:9a:47:e0:30:2c:e9:37:e3:06:
        4f:0a:b0:8e:20:88:a2:20:fd:f9:ac:29:c5:f1:8c:17:
        6b:28:71:75:8b:61:8f:b9:39:7a:fb:c1:22:ee:e3:7c:
        de:a0:ca:aa:db:56:aa:53:eb:00:a6:52:73:07:e9:ef:
        f5:2b:73:2f:01:43:2c:32:94:f9:ba:40:89:ca:77:bc:
        52:35:f4:27:ab:ef:33:9d:3e:a9:68:c6:5e:d7:28:30:
        6e:08:97:67:04:b0:c7:69:af:b9:d2:fa:e3:3d:1c:58:
        b6:36:93:a4:f3:d6:2b:9e:cb:b6:51:93:f9:49:5c:24:
        e0:ae:0e:ec:2e:8c:c3:93:7e:6f:cb:f3:66:b7:18:4b:
        e6:61:4f:a6:62:f4:a3:21:f6:78:1c:b4:b2:0d:5d:2f:
        55:90:0a:07:0b:15:53:55:b4:f7:f2:c1:9c:7d:3b:40:
        28:69:5e:95:86:10:5f:eb:d1:0e:62:fc:ad:cd:ba:2b:
        60:a1:d1:35:a0:f0:c3:02:39:de:69:09:88:b3:65:16:
        6d:ae:47:07:1f:bf:91:dd:e3:59:5c:5b:ad:ce:db:60:
        7e:d2:11:6f:dd:30:7b:17:3d:c1:9a:c1:9e:a0:7b:26
    Fingerprint (SHA-256):
        49:B7:EE:ED:FD:7E:AC:12:1B:F1:07:B2:99:44:BE:D9:E7:97:00:8F:03:E8:C5:CA:47:0A:8C:5F:A6:F3:BE:B6
    Fingerprint (SHA1):
        95:FC:0E:EE:60:BE:03:91:57:0C:04:8E:B7:76:75:1C:FE:55:19:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6940: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6941: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153520 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6942: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6943: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6944: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6945: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153521   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6946: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6947: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6948: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6949: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153522   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6950: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6951: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6952: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6953: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502153523   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6954: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6955: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6956: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6957: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153524   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6958: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6959: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6960: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6961: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153525   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6962: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6963: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #6964: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6965: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502153526   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6966: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6967: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6968: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #6969: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #6970: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6971: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #6972: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153520 (0x1dee4130)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:55 2017
            Not After : Mon May 02 15:34:55 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:75:b2:4d:c5:04:ce:80:0c:bd:a6:90:da:e2:e9:f1:
                    5f:56:b6:d7:f6:67:e8:31:01:a0:35:2a:44:23:71:71:
                    d8:64:d0:36:04:11:90:e9:d8:92:aa:37:a8:57:37:c7:
                    4a:e3:06:7a:68:2c:d4:61:08:1c:af:57:e6:3b:04:9f:
                    6d:97:98:fd:90:c9:37:71:64:d2:d4:0a:11:7f:51:e5:
                    cc:20:3a:09:05:29:7e:47:e3:4d:6c:29:c4:ce:96:de:
                    68:cb:cb:30:17:19:9a:de:f0:b1:71:a3:c9:3f:f5:e9:
                    11:5a:b1:b7:c4:41:11:8e:83:c4:42:62:a8:61:71:ba:
                    c2:7a:26:4e:20:d6:95:ad:63:2c:54:c6:09:f0:7b:09:
                    16:ed:b0:51:94:97:8e:d5:22:5c:1b:48:3b:c0:27:07:
                    f6:2f:ef:34:bc:c5:41:df:30:b9:c3:e6:52:44:78:22:
                    e4:9d:67:69:90:d4:03:30:5a:14:2f:21:3f:6a:35:6d:
                    55:be:45:07:44:04:49:bf:ae:64:12:53:0a:da:17:d1:
                    26:01:96:b8:7e:ed:9e:f7:65:b3:66:1f:b9:e7:12:c4:
                    ac:a7:52:63:52:88:55:97:a5:2f:39:99:f4:f7:d3:4f:
                    83:86:96:af:72:23:74:1e:42:76:4c:87:95:f0:f4:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:04:cd:11:f5:85:04:12:d9:d7:77:41:8a:74:e3:24:
        ad:68:db:49:20:ce:21:28:e8:62:4a:9c:f1:a3:29:67:
        7d:24:6f:43:cd:3a:23:6f:78:a6:61:5a:70:f4:24:e2:
        96:a8:5d:2a:db:64:2c:96:63:9e:81:2f:3c:6b:a2:5f:
        99:3f:00:6d:c1:57:93:03:da:f4:67:07:62:bd:9b:fb:
        a6:64:fc:1b:52:43:de:1b:5d:6c:cf:5a:63:a0:a6:28:
        63:af:b3:2f:88:2f:31:e2:65:03:75:a7:e3:be:c5:16:
        ad:06:36:66:d3:7b:85:05:f8:69:53:3e:c7:94:0a:53:
        8b:04:32:8c:f5:76:5d:c5:e2:f2:af:0d:8b:2f:54:6a:
        4e:c2:73:b2:85:4c:d7:47:d4:02:2d:ad:cc:e4:4d:08:
        38:52:50:6d:f6:2b:c7:ba:9b:fe:1c:66:08:d2:c1:c4:
        a0:d0:8b:f5:a6:a5:5d:ee:33:09:4e:d2:d7:ee:a7:a4:
        69:d5:b3:d0:8e:d6:82:65:06:87:f5:d2:79:89:d1:1d:
        ce:90:bc:f9:cc:f1:ea:7a:ab:99:92:58:29:85:fd:a6:
        67:4e:e3:ee:70:c2:99:8e:05:24:ff:34:88:42:97:9b:
        ce:62:82:d7:03:67:4f:9f:54:8f:fc:c8:d3:6c:95:f8
    Fingerprint (SHA-256):
        FA:14:B3:CD:50:A3:11:23:D7:CA:7F:2B:45:6C:FB:2C:EC:B8:20:15:9E:A5:75:6E:4E:0E:E6:5A:D2:DB:C0:C6
    Fingerprint (SHA1):
        02:6A:27:99:39:DC:6F:07:54:71:56:82:76:AE:A9:C6:40:E0:C0:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6973: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6974: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6975: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6976: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153520 (0x1dee4130)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:55 2017
            Not After : Mon May 02 15:34:55 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:75:b2:4d:c5:04:ce:80:0c:bd:a6:90:da:e2:e9:f1:
                    5f:56:b6:d7:f6:67:e8:31:01:a0:35:2a:44:23:71:71:
                    d8:64:d0:36:04:11:90:e9:d8:92:aa:37:a8:57:37:c7:
                    4a:e3:06:7a:68:2c:d4:61:08:1c:af:57:e6:3b:04:9f:
                    6d:97:98:fd:90:c9:37:71:64:d2:d4:0a:11:7f:51:e5:
                    cc:20:3a:09:05:29:7e:47:e3:4d:6c:29:c4:ce:96:de:
                    68:cb:cb:30:17:19:9a:de:f0:b1:71:a3:c9:3f:f5:e9:
                    11:5a:b1:b7:c4:41:11:8e:83:c4:42:62:a8:61:71:ba:
                    c2:7a:26:4e:20:d6:95:ad:63:2c:54:c6:09:f0:7b:09:
                    16:ed:b0:51:94:97:8e:d5:22:5c:1b:48:3b:c0:27:07:
                    f6:2f:ef:34:bc:c5:41:df:30:b9:c3:e6:52:44:78:22:
                    e4:9d:67:69:90:d4:03:30:5a:14:2f:21:3f:6a:35:6d:
                    55:be:45:07:44:04:49:bf:ae:64:12:53:0a:da:17:d1:
                    26:01:96:b8:7e:ed:9e:f7:65:b3:66:1f:b9:e7:12:c4:
                    ac:a7:52:63:52:88:55:97:a5:2f:39:99:f4:f7:d3:4f:
                    83:86:96:af:72:23:74:1e:42:76:4c:87:95:f0:f4:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:04:cd:11:f5:85:04:12:d9:d7:77:41:8a:74:e3:24:
        ad:68:db:49:20:ce:21:28:e8:62:4a:9c:f1:a3:29:67:
        7d:24:6f:43:cd:3a:23:6f:78:a6:61:5a:70:f4:24:e2:
        96:a8:5d:2a:db:64:2c:96:63:9e:81:2f:3c:6b:a2:5f:
        99:3f:00:6d:c1:57:93:03:da:f4:67:07:62:bd:9b:fb:
        a6:64:fc:1b:52:43:de:1b:5d:6c:cf:5a:63:a0:a6:28:
        63:af:b3:2f:88:2f:31:e2:65:03:75:a7:e3:be:c5:16:
        ad:06:36:66:d3:7b:85:05:f8:69:53:3e:c7:94:0a:53:
        8b:04:32:8c:f5:76:5d:c5:e2:f2:af:0d:8b:2f:54:6a:
        4e:c2:73:b2:85:4c:d7:47:d4:02:2d:ad:cc:e4:4d:08:
        38:52:50:6d:f6:2b:c7:ba:9b:fe:1c:66:08:d2:c1:c4:
        a0:d0:8b:f5:a6:a5:5d:ee:33:09:4e:d2:d7:ee:a7:a4:
        69:d5:b3:d0:8e:d6:82:65:06:87:f5:d2:79:89:d1:1d:
        ce:90:bc:f9:cc:f1:ea:7a:ab:99:92:58:29:85:fd:a6:
        67:4e:e3:ee:70:c2:99:8e:05:24:ff:34:88:42:97:9b:
        ce:62:82:d7:03:67:4f:9f:54:8f:fc:c8:d3:6c:95:f8
    Fingerprint (SHA-256):
        FA:14:B3:CD:50:A3:11:23:D7:CA:7F:2B:45:6C:FB:2C:EC:B8:20:15:9E:A5:75:6E:4E:0E:E6:5A:D2:DB:C0:C6
    Fingerprint (SHA1):
        02:6A:27:99:39:DC:6F:07:54:71:56:82:76:AE:A9:C6:40:E0:C0:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6977: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6978: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6979: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153527 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6980: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6981: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6982: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6983: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153528   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6984: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6985: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #6986: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6987: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502153529   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6988: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6989: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #6990: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6991: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502153530   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6992: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6993: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6994: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6995: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502153531   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6996: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6997: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #6998: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6999: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502153532   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7000: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7001: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7002: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7003: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502153533   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7004: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7005: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7006: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7007: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502153534   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7008: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7009: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7010: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7011: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502153535   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7012: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7013: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7014: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7015: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502153536   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7016: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7017: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7018: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7019: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502153537   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7020: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7021: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #7022: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7023: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502153538   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7024: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7025: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #7026: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7027: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502153539   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7028: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7029: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7030: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7031: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502153540   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7032: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7033: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #7034: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7035: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502153541   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7036: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7037: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #7038: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7039: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502153542   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7040: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7041: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #7042: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7043: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502153543   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7044: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7045: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #7046: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7047: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502153544   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7048: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7049: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #7050: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7051: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502153545   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7052: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7053: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #7054: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7055: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502153546   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7056: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7057: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #7058: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7059: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502153547   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7060: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7061: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #7062: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7063: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502153548   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7064: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7065: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #7066: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7067: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502153549   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7068: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7069: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #7070: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7071: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502153550   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7072: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7073: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #7074: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7075: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502153551   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7076: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7077: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #7078: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7079: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502153552   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7080: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7081: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #7082: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7083: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502153553   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7084: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7085: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #7086: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7087: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502153554   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7088: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7089: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #7090: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7091: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502153555   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7092: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7093: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #7094: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7095: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502153556   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7096: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7097: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7098: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7099: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7100: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7101: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7102: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7103: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7104: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7105: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7106: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7107: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7108: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7109: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7110: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7111: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7112: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7113: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7114: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7115: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7116: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7117: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7118: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7119: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7120: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153527 (0x1dee4137)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:58 2017
            Not After : Mon May 02 15:34:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c9:08:45:73:42:91:48:03:6c:63:be:bc:a3:ec:bb:
                    a5:1e:d5:80:6e:61:9a:61:c5:08:c0:eb:68:83:ad:89:
                    1c:05:73:96:f3:ba:7f:56:0e:4b:92:99:b6:88:2c:15:
                    80:17:7f:f3:51:26:77:1a:2c:f3:95:16:ca:5e:10:bd:
                    9f:1d:59:5b:a5:43:18:6f:77:c1:db:db:c9:3b:0f:84:
                    28:2b:92:48:2e:eb:4c:be:82:42:03:c0:1b:d7:84:a7:
                    a3:5c:60:a5:ec:ea:8a:11:d7:b3:63:bd:b7:e1:46:ca:
                    81:4d:02:77:e3:a6:e7:2e:07:5b:3b:67:6e:56:01:7c:
                    f1:04:b7:70:c1:4f:5a:da:75:d2:99:2c:50:c0:7b:b2:
                    93:6f:ee:37:94:ff:aa:91:43:3e:6b:61:f4:67:cc:84:
                    b4:0d:c6:89:7e:ca:83:1a:4e:88:4d:80:d4:21:dc:01:
                    88:6f:b7:a9:7e:76:66:df:8f:7d:28:b8:d6:96:e3:5a:
                    d4:1e:13:d8:db:3b:68:93:ee:c1:2e:7a:1f:ff:37:04:
                    4a:a6:72:15:f5:d5:5f:9e:dd:e1:87:25:a8:f4:af:dd:
                    22:e4:20:86:a3:c7:1b:07:b4:8d:88:31:c6:e3:15:43:
                    18:01:77:56:b6:71:2d:66:76:0b:8b:ea:c6:bd:da:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:e2:55:b2:a0:24:aa:93:a0:8b:1d:4d:5f:f9:37:03:
        a1:b8:35:50:4c:19:05:ae:28:d0:bb:3f:1a:ea:d2:b9:
        70:a5:75:cf:7c:da:c5:72:61:29:39:c6:a2:76:b6:30:
        88:95:18:8f:c8:ea:49:f1:21:45:83:89:b2:ea:22:04:
        db:b3:76:61:14:4b:9f:1b:2c:87:a9:fb:15:6d:03:2e:
        72:82:81:11:40:a4:79:da:99:7d:0b:8b:44:d7:d4:32:
        01:94:13:b7:08:ee:53:d9:85:05:b0:a8:2b:2d:fa:92:
        8b:ac:b4:ca:98:b8:95:74:71:c5:73:d8:32:8c:98:6f:
        0a:55:84:97:95:f7:37:25:20:69:65:aa:63:2f:49:38:
        32:3e:7a:c2:c4:a8:e2:09:81:f1:ad:fe:e7:22:70:82:
        6a:7b:0f:34:77:23:f1:8d:8c:d9:77:66:47:ed:bf:5d:
        94:56:e5:73:85:f7:50:10:93:cf:4c:e1:e1:ed:6e:ef:
        30:28:3c:2f:69:ea:ad:b7:cd:52:f6:dc:41:89:68:74:
        56:b0:7f:70:e8:16:03:1a:85:4a:9c:55:67:70:d6:b4:
        e8:19:e1:a1:b9:7c:61:ea:5b:03:8a:e5:23:83:13:73:
        df:e2:99:03:6f:c0:56:85:18:d4:d5:8c:7d:ac:a1:5c
    Fingerprint (SHA-256):
        3E:33:D3:07:27:8D:63:66:71:34:7C:E8:E0:D0:FE:80:8E:39:29:AE:F8:CF:35:A0:EA:B7:DB:EA:B2:47:96:48
    Fingerprint (SHA1):
        96:85:86:F1:86:03:DF:40:99:4D:76:4F:6C:FA:29:48:15:5A:69:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7121: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7122: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7123: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153557 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7124: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7125: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #7126: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7127: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502153558   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7128: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7129: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #7130: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7131: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502153559   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7132: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7133: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #7134: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7135: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502153560   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7136: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7137: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #7138: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7139: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502153561   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7140: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7141: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #7142: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7143: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502153562   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7144: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7145: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #7146: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7147: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502153563   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7148: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7149: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7150: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153557 (0x1dee4155)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:07 2017
            Not After : Mon May 02 15:35:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:a6:9e:fc:3f:3b:d7:95:cf:d3:5f:74:40:9a:30:a7:
                    97:c5:68:d5:41:66:e6:9b:92:fd:50:af:0a:89:0a:aa:
                    23:5e:2a:71:9f:c7:af:5f:cb:a4:ba:62:6c:37:bc:a3:
                    55:0f:ee:14:b3:13:4d:85:08:ee:8d:ba:b0:d8:91:33:
                    62:35:b4:89:a0:d3:b4:88:7e:7e:ff:69:bf:ab:60:6d:
                    20:b8:68:fb:c5:04:bb:2e:44:d6:99:53:26:4f:6c:b4:
                    62:95:09:9c:5b:d7:a6:55:55:86:14:4b:ee:e7:23:09:
                    8e:4e:6f:44:2e:e4:18:05:3b:89:40:5d:85:31:4f:8d:
                    72:65:17:6b:f8:88:ef:f4:f1:2c:0a:ff:cf:f1:41:d4:
                    79:67:4e:8a:e2:0b:00:ff:2f:8c:34:1f:e3:06:9d:5d:
                    14:a3:3a:8b:21:57:12:2d:1f:b4:e8:ec:a3:b9:64:70:
                    44:63:ad:a8:8a:a1:a1:53:aa:a4:66:07:66:e0:83:84:
                    6e:9c:8a:d1:34:0f:8a:0a:14:86:d5:9c:19:6b:53:98:
                    da:e4:7e:4c:70:9c:6e:98:c6:a3:99:64:ee:4e:15:38:
                    a6:08:db:3c:49:8d:64:41:3b:a1:f2:54:fe:11:f2:fc:
                    cf:16:97:56:ed:21:fe:c7:ce:d9:9d:82:98:a2:84:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:3c:b5:6e:c5:73:31:90:d1:cf:8c:f7:5d:88:c3:b8:
        f4:ac:e5:67:0f:68:18:9b:66:e1:a6:18:9f:b9:4b:87:
        df:db:cd:4a:73:47:1c:52:fc:18:1d:c5:88:10:8d:b4:
        2d:3d:bf:63:5a:07:92:54:b0:32:ec:75:af:79:28:df:
        01:36:24:b4:33:04:6c:b1:bd:78:47:32:9c:ce:64:41:
        63:9f:32:df:13:bd:dc:74:f6:48:bc:74:31:23:07:21:
        df:96:57:fc:2a:de:82:32:8a:49:f9:3c:2f:48:c8:bc:
        77:e3:97:85:ef:64:c8:6f:4d:75:75:a6:a3:59:25:6e:
        02:a8:dc:b2:55:b3:76:30:9d:c6:35:24:71:89:71:23:
        a8:04:0e:64:b3:38:f0:d3:d3:76:16:1a:c7:6a:5f:56:
        f8:64:73:a4:a5:95:81:1c:67:d7:18:60:b8:10:7f:92:
        d5:3d:32:78:b0:70:87:e4:d3:5c:e8:e1:b3:cb:85:68:
        ed:63:63:fe:18:15:d5:89:99:ca:27:8b:8f:f3:68:d2:
        c6:55:d6:6c:c5:16:06:67:36:f4:b9:10:fe:56:9c:f2:
        63:85:db:1e:e9:d3:de:dd:db:9c:dc:84:d3:40:27:a9:
        d0:b9:aa:40:26:1c:a2:10:5c:b6:98:63:17:47:b2:f7
    Fingerprint (SHA-256):
        A1:0D:25:87:35:F0:2C:45:4D:C2:3D:12:34:CB:3C:12:3F:8F:DF:2C:B6:16:AB:F1:AC:0E:8A:35:B2:15:FA:75
    Fingerprint (SHA1):
        FA:35:31:04:FD:00:07:A3:50:E7:4D:0E:5F:17:7D:30:C3:F1:F3:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7151: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7152: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7153: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7154: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153557 (0x1dee4155)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:07 2017
            Not After : Mon May 02 15:35:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:a6:9e:fc:3f:3b:d7:95:cf:d3:5f:74:40:9a:30:a7:
                    97:c5:68:d5:41:66:e6:9b:92:fd:50:af:0a:89:0a:aa:
                    23:5e:2a:71:9f:c7:af:5f:cb:a4:ba:62:6c:37:bc:a3:
                    55:0f:ee:14:b3:13:4d:85:08:ee:8d:ba:b0:d8:91:33:
                    62:35:b4:89:a0:d3:b4:88:7e:7e:ff:69:bf:ab:60:6d:
                    20:b8:68:fb:c5:04:bb:2e:44:d6:99:53:26:4f:6c:b4:
                    62:95:09:9c:5b:d7:a6:55:55:86:14:4b:ee:e7:23:09:
                    8e:4e:6f:44:2e:e4:18:05:3b:89:40:5d:85:31:4f:8d:
                    72:65:17:6b:f8:88:ef:f4:f1:2c:0a:ff:cf:f1:41:d4:
                    79:67:4e:8a:e2:0b:00:ff:2f:8c:34:1f:e3:06:9d:5d:
                    14:a3:3a:8b:21:57:12:2d:1f:b4:e8:ec:a3:b9:64:70:
                    44:63:ad:a8:8a:a1:a1:53:aa:a4:66:07:66:e0:83:84:
                    6e:9c:8a:d1:34:0f:8a:0a:14:86:d5:9c:19:6b:53:98:
                    da:e4:7e:4c:70:9c:6e:98:c6:a3:99:64:ee:4e:15:38:
                    a6:08:db:3c:49:8d:64:41:3b:a1:f2:54:fe:11:f2:fc:
                    cf:16:97:56:ed:21:fe:c7:ce:d9:9d:82:98:a2:84:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:3c:b5:6e:c5:73:31:90:d1:cf:8c:f7:5d:88:c3:b8:
        f4:ac:e5:67:0f:68:18:9b:66:e1:a6:18:9f:b9:4b:87:
        df:db:cd:4a:73:47:1c:52:fc:18:1d:c5:88:10:8d:b4:
        2d:3d:bf:63:5a:07:92:54:b0:32:ec:75:af:79:28:df:
        01:36:24:b4:33:04:6c:b1:bd:78:47:32:9c:ce:64:41:
        63:9f:32:df:13:bd:dc:74:f6:48:bc:74:31:23:07:21:
        df:96:57:fc:2a:de:82:32:8a:49:f9:3c:2f:48:c8:bc:
        77:e3:97:85:ef:64:c8:6f:4d:75:75:a6:a3:59:25:6e:
        02:a8:dc:b2:55:b3:76:30:9d:c6:35:24:71:89:71:23:
        a8:04:0e:64:b3:38:f0:d3:d3:76:16:1a:c7:6a:5f:56:
        f8:64:73:a4:a5:95:81:1c:67:d7:18:60:b8:10:7f:92:
        d5:3d:32:78:b0:70:87:e4:d3:5c:e8:e1:b3:cb:85:68:
        ed:63:63:fe:18:15:d5:89:99:ca:27:8b:8f:f3:68:d2:
        c6:55:d6:6c:c5:16:06:67:36:f4:b9:10:fe:56:9c:f2:
        63:85:db:1e:e9:d3:de:dd:db:9c:dc:84:d3:40:27:a9:
        d0:b9:aa:40:26:1c:a2:10:5c:b6:98:63:17:47:b2:f7
    Fingerprint (SHA-256):
        A1:0D:25:87:35:F0:2C:45:4D:C2:3D:12:34:CB:3C:12:3F:8F:DF:2C:B6:16:AB:F1:AC:0E:8A:35:B2:15:FA:75
    Fingerprint (SHA1):
        FA:35:31:04:FD:00:07:A3:50:E7:4D:0E:5F:17:7D:30:C3:F1:F3:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7155: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7156: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7157: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7158: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153564 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7159: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7160: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7161: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7162: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153565   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7163: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7164: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7165: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7166: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153566   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7167: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7168: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7169: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7170: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153567   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7171: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7172: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7173: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7174: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7175: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7176: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153564 (0x1dee415c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:09 2017
            Not After : Mon May 02 15:35:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:ed:25:52:40:86:a2:93:f3:e3:5e:56:7c:12:18:85:
                    03:9e:51:49:67:55:33:22:3a:49:ac:ac:40:f0:19:42:
                    67:e7:63:43:5b:e3:8d:c3:14:bd:1d:be:cd:60:2c:74:
                    a5:e5:54:db:98:af:68:fa:09:68:b2:b9:ec:dd:9e:4c:
                    ac:21:b4:f8:2c:74:95:e0:66:ed:fd:38:0a:e9:98:a0:
                    7e:25:77:fe:81:6c:2d:72:62:cc:05:51:14:87:58:f8:
                    a5:50:b4:e6:47:a8:68:44:d4:f9:eb:03:94:98:a8:80:
                    3f:5a:74:d2:a4:26:29:a8:32:b1:c5:f2:b8:59:21:58:
                    6e:e1:43:0d:b5:81:82:b0:c1:e1:b3:96:0f:fc:3e:91:
                    b4:93:1d:87:71:9c:8e:dd:a6:3d:11:61:8f:75:95:80:
                    83:bd:c0:a6:dc:3f:20:19:4b:81:15:dd:c8:82:33:8f:
                    06:f2:53:99:ab:92:9c:56:0a:c5:88:bd:9d:0b:3f:3b:
                    0c:44:fe:2f:a3:78:64:26:33:a5:81:cb:4a:c4:bd:98:
                    fc:26:93:1a:60:53:e8:a2:b5:b3:85:5b:50:c4:df:43:
                    64:43:e8:7d:73:d3:97:49:d6:55:52:d0:7b:e5:6a:0e:
                    5b:35:a8:5f:64:b0:c2:25:da:e1:5d:7c:60:36:20:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c2:ff:c0:46:d7:e5:7e:cc:0d:3e:f6:67:25:16:aa:7d:
        cf:1d:e8:d0:f0:4b:15:b4:ae:2b:0b:c4:ad:4e:40:fd:
        bd:e7:f5:b1:20:95:46:ed:91:f1:8e:c3:ee:4c:d1:10:
        45:f1:73:ff:68:75:77:af:3a:b2:9f:00:e4:18:12:f0:
        24:5f:8f:ed:ed:cb:f7:43:26:ec:2e:12:39:9c:85:07:
        94:4d:32:cb:1e:b1:94:b4:ee:50:a2:0b:a8:77:28:89:
        a5:60:c4:7d:87:2f:c2:2b:a1:f0:e5:9c:43:59:49:bb:
        8e:48:a7:a6:da:9d:48:87:87:bd:cb:bd:6a:bf:bf:8d:
        9a:14:18:4c:ff:e9:44:48:ba:a7:81:d7:5e:62:91:11:
        6d:f4:8e:00:c4:57:8a:fa:56:00:2e:63:65:ea:88:df:
        0a:d2:a5:85:3f:98:79:db:71:49:bd:4b:1b:85:bf:06:
        5b:f1:f6:be:00:68:24:34:e3:58:8b:a0:f2:0b:7c:ab:
        ba:e7:0d:91:95:67:e9:89:d6:97:03:59:86:b8:78:b2:
        5d:27:8b:cf:98:38:eb:e0:c4:e7:85:b4:40:da:b9:a5:
        d5:0b:ad:e9:d5:3a:7a:7f:0c:02:b5:f2:dc:b4:82:12:
        91:ea:4f:08:45:50:c1:ec:2d:56:27:00:dd:9e:40:aa
    Fingerprint (SHA-256):
        F0:F4:D4:9C:A7:4F:68:8B:76:E3:A0:0A:19:99:94:D0:33:7C:4B:4B:27:8A:79:73:E5:D1:81:6A:12:F1:D3:44
    Fingerprint (SHA1):
        9A:F3:60:38:14:E0:B2:19:20:92:C8:AD:B1:09:BE:1C:2C:36:9C:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7177: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7178: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7179: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153565 (0x1dee415d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:09 2017
            Not After : Mon May 02 15:35:09 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:00:60:dc:88:c0:a9:93:c8:13:f8:a9:db:e1:6b:c3:
                    6a:83:e8:08:4f:32:d5:41:54:0f:a1:2d:3d:a4:a1:ed:
                    74:ab:d2:ca:c5:93:c9:9a:25:70:05:54:aa:4c:af:af:
                    b9:14:e2:92:ce:41:0a:43:ca:2d:cd:a9:5a:fc:36:66:
                    4d:c7:f9:b3:b9:85:1e:dd:86:98:17:2e:67:91:b6:ed:
                    3c:6c:95:c6:f0:b5:24:16:4b:b9:26:69:27:0a:f1:b1:
                    98:4c:c2:77:7f:73:30:1a:22:95:3d:61:03:6d:5f:5d:
                    df:de:4b:e7:59:51:15:16:44:b5:fa:9a:1c:90:16:70:
                    d6:94:df:37:9a:9f:ee:02:8e:2a:b9:e2:b1:75:06:52:
                    1a:93:58:0b:f5:56:2e:36:f1:10:02:ec:fe:b0:c1:f9:
                    32:3a:ad:19:be:dd:c3:ab:80:f1:14:f0:ca:36:67:bf:
                    56:24:5d:e2:c1:36:89:00:8c:f4:a3:75:e6:b9:9b:72:
                    05:ca:51:28:76:8c:d6:41:63:6a:d1:2c:76:7e:88:ed:
                    86:c1:b8:c6:04:b5:58:48:86:9b:e0:f5:62:40:84:99:
                    38:26:04:fd:ed:38:51:ce:26:db:74:6b:f4:dd:e9:1b:
                    2f:c0:31:a7:2c:88:82:7d:5b:38:25:4d:a6:72:72:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:1b:58:db:0f:fe:6e:d5:0a:03:60:4a:51:85:82:4b:
        03:ff:96:22:2d:0c:2d:88:76:ee:05:0c:f5:e9:1e:c1:
        e7:d9:26:7e:26:36:24:9d:99:57:e5:80:aa:1d:82:8d:
        ce:88:de:54:78:4c:a2:39:bb:3c:9b:ca:39:ae:e7:d1:
        bb:ff:6e:53:b7:88:41:b6:06:7e:93:be:9b:2d:13:ca:
        25:2e:0e:fd:eb:10:92:42:3b:91:ea:ce:61:68:5e:d9:
        87:52:fd:26:ac:90:3a:74:ea:07:d1:15:5f:b7:52:b5:
        d6:cc:18:98:89:24:59:c6:cb:b4:75:2a:23:ab:28:f3:
        c3:2d:e0:76:95:52:40:dd:0e:7c:ea:e3:17:02:57:ff:
        6f:a6:22:82:e5:17:17:e3:8b:d3:ce:7e:74:73:2a:c0:
        bc:d1:b7:a9:40:1c:ec:73:c8:1e:44:19:86:f0:37:94:
        28:2b:3b:43:3e:f8:36:c4:f4:4f:aa:c5:85:b9:c9:4e:
        4d:16:bf:68:a7:db:75:28:4f:e3:0a:4c:56:e5:1a:33:
        af:05:be:48:ad:11:7f:77:86:eb:27:56:6e:10:4c:6f:
        d9:1a:08:20:55:0e:56:03:fc:d4:5f:85:1d:30:75:72:
        ab:4a:e5:9b:4f:16:0f:6f:c2:2b:a5:d3:8d:b7:d4:38
    Fingerprint (SHA-256):
        9D:98:B8:1A:60:4E:07:43:57:9F:4C:66:28:EA:9E:4C:94:7E:62:FE:74:BD:7C:80:9E:AA:5E:7E:53:16:0B:5F
    Fingerprint (SHA1):
        32:84:BF:B1:F7:AC:24:84:EF:F9:65:D2:AC:39:13:BB:99:75:A8:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7180: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7181: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153566 (0x1dee415e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:35:09 2017
            Not After : Mon May 02 15:35:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:64:e6:b1:af:0a:5b:ae:ea:63:3a:25:c4:55:9d:fd:
                    08:b3:9d:b6:0e:f0:6d:8a:f0:cf:16:be:73:b4:43:40:
                    1a:a3:e0:ae:7d:fe:5c:ee:36:2d:d5:14:22:2c:f5:8d:
                    a0:63:23:6f:0b:a1:3f:38:bc:10:84:98:9f:7f:0b:59:
                    ba:88:08:71:f6:ea:7c:31:71:18:77:b0:8b:d2:99:3f:
                    77:18:86:f7:9b:a1:13:63:42:9c:5c:04:d2:d9:12:68:
                    75:6f:df:12:b5:0c:c4:47:4c:b7:70:d6:39:0e:6a:95:
                    92:da:e9:c4:48:d4:17:50:1d:2e:9b:9c:bb:a3:78:af:
                    1c:97:6e:2d:49:9f:c2:21:a3:0e:31:fd:5f:23:45:fa:
                    fe:9c:35:b6:84:bd:19:f2:33:5c:6c:80:a4:b4:01:d7:
                    0c:28:79:ad:d9:46:f9:7f:66:f3:87:81:d0:70:8c:6e:
                    3b:13:21:3d:ba:51:e9:6e:3f:c5:00:49:55:b0:c2:36:
                    87:2d:51:be:9a:ad:ff:ea:48:2a:47:0e:5a:cc:26:aa:
                    65:37:4b:f1:5a:1a:d2:e3:03:f1:40:f0:b9:d2:30:5c:
                    79:c2:08:b6:ce:46:20:c7:a1:f7:8b:c2:2e:16:c2:9e:
                    f2:f2:14:db:ba:5e:a5:0f:8f:75:dd:c2:0e:14:b1:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:34:49:d4:5c:b8:6f:3b:4e:19:32:a2:ae:ce:62:64:
        db:ef:be:ad:6c:13:5b:8a:a5:4f:18:e7:3a:e1:46:ef:
        56:a7:af:e6:35:6c:d7:23:72:9e:6f:3d:15:f6:c2:5d:
        cd:9d:0b:26:18:37:fd:1e:43:b9:47:03:a2:c3:7e:76:
        b1:33:31:94:ee:4b:8d:72:58:b8:c1:ef:8e:08:4c:2d:
        cf:9f:16:cc:d0:f5:05:42:75:57:f4:93:e6:d5:da:bd:
        fd:a3:5f:2a:ed:94:cf:5b:40:1a:ae:49:d8:21:ca:f0:
        3c:e0:96:84:46:6f:ad:de:27:9b:8b:b8:6f:4b:d2:b4:
        89:9e:bf:71:6f:4f:88:de:73:4b:94:d1:df:ee:0e:2e:
        9f:b5:3c:d0:89:48:3a:8c:83:9e:5a:5e:9f:93:11:43:
        9f:f6:6a:61:d3:02:73:2c:22:6b:53:1a:a1:11:b4:10:
        33:7c:0e:e2:90:45:bc:5f:cc:1b:55:61:96:c6:8a:1a:
        9b:7e:51:0f:c4:0f:34:42:b8:e5:1c:59:1d:32:52:aa:
        91:37:54:04:51:f0:91:67:2f:a2:33:12:92:43:59:30:
        32:64:16:d9:bb:d9:af:09:07:8f:97:06:3d:de:f1:42:
        97:6e:b1:ec:61:01:0f:cf:9b:6b:98:ea:2c:f9:0d:1a
    Fingerprint (SHA-256):
        C7:EB:61:5A:EA:5E:0C:7D:1E:1B:0C:5F:A4:D2:4A:47:78:53:09:4D:5B:5A:A2:EA:37:6F:FD:64:0B:91:23:0A
    Fingerprint (SHA1):
        C6:AD:04:C2:B1:C1:6B:3E:CB:C8:C1:EC:A9:AF:A4:B7:71:22:97:0D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7182: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7183: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153568 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7184: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7185: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7186: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7187: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153569   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7188: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7189: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7190: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7191: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153570   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7192: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7193: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7194: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7195: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502153571   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7196: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7197: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7198: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7199: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502153572   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7200: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7201: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7202: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7203: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7204: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7205: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #7206: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153568 (0x1dee4160)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:10 2017
            Not After : Mon May 02 15:35:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:a2:88:95:a0:79:da:4f:c9:6a:d8:76:04:5c:98:8c:
                    dd:f0:8e:4a:f4:d0:c5:51:dd:fc:82:5a:8b:91:77:49:
                    da:c5:73:a0:87:b1:6b:b4:18:f2:33:e1:53:5c:e1:a7:
                    7c:2d:f2:e9:9c:88:6d:5d:0c:c4:7d:3d:b6:9b:4a:ab:
                    2a:e6:65:c3:0e:89:f8:a0:76:5c:fd:c0:c1:6d:2c:57:
                    fc:01:d7:b9:b1:4c:46:bd:5b:8c:63:a6:21:2d:68:40:
                    eb:af:eb:79:4a:5c:c2:be:e6:65:6d:7a:1a:29:ff:bf:
                    f1:bc:51:4f:86:b3:30:ec:21:6a:61:ac:d1:d1:45:03:
                    7e:a8:b4:9f:b5:2f:a9:30:75:c3:81:f2:32:ff:bb:6f:
                    53:36:cf:41:71:11:2d:d7:62:14:f8:3b:71:68:5e:16:
                    73:98:df:94:fe:73:ac:78:19:3e:55:1a:44:50:20:52:
                    0d:f8:80:d1:93:5c:b3:0c:16:cc:f2:a9:14:33:3f:e0:
                    85:a5:57:3e:69:61:2c:6e:ba:15:73:95:9b:42:ef:c1:
                    0f:7e:a3:b9:dd:3c:24:26:df:de:95:8c:db:56:56:df:
                    4b:ed:cc:10:6e:e1:ee:6e:59:e5:73:1f:e3:97:17:d0:
                    30:33:88:9b:da:c2:bc:43:13:65:3a:47:f1:8a:ad:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:a3:27:39:6d:66:4d:41:39:98:a9:89:5e:74:56:3e:
        2c:ba:2a:49:a5:98:23:41:f8:fa:9e:a1:26:42:63:13:
        8d:e1:9d:94:74:8f:42:f1:6b:b7:ac:28:86:b3:bb:53:
        cd:0c:89:45:87:ff:56:75:b0:72:71:28:1a:3b:3e:8a:
        b4:f5:dc:3d:17:39:ad:8e:28:86:e2:ff:cf:2e:64:28:
        b1:a9:2a:d7:58:6c:9c:5c:cc:67:56:fb:89:b7:cb:a4:
        06:86:a3:dc:2d:51:78:8a:53:0f:b6:7e:42:61:a3:60:
        48:ab:e5:eb:e6:01:31:a1:d1:ea:2b:bb:b2:d8:25:cf:
        21:93:19:97:f4:34:75:cc:7b:c4:0c:47:98:64:b3:84:
        1d:e6:c0:31:45:67:3b:fa:92:5c:38:a9:29:08:25:ed:
        b6:c8:f3:a2:2d:e8:3d:e5:d4:75:df:35:2d:31:26:0f:
        c6:0e:58:64:86:8d:fb:96:a1:e1:a4:5c:3b:47:05:44:
        38:4e:f4:0a:17:e0:9f:7e:fd:e6:e0:6d:fd:f0:e6:61:
        7a:a7:63:fd:9e:b8:88:ec:67:c9:b0:f3:fb:76:c6:1a:
        b6:06:a1:45:a7:a6:ea:cf:17:1e:7a:35:f2:69:b0:4e:
        ff:ce:43:78:0c:28:e7:ff:9d:a8:ff:6c:bb:cc:a5:5d
    Fingerprint (SHA-256):
        F4:C2:B6:8F:C3:3C:4F:40:AC:3F:41:DC:1C:A5:02:C2:27:B5:9B:4C:FF:A0:04:42:2B:00:5C:BE:0B:EF:B5:A8
    Fingerprint (SHA1):
        42:16:E7:61:1F:A9:74:1C:10:0F:53:52:51:01:E8:4C:64:93:CD:0F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7207: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7208: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153569 (0x1dee4161)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:11 2017
            Not After : Mon May 02 15:35:11 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:8c:00:38:c2:fa:38:14:5c:7a:a4:63:62:a0:86:fa:
                    53:5b:d4:df:12:13:3b:ae:49:73:a6:a2:64:e4:d2:a4:
                    dd:0c:3e:36:c8:8d:51:6d:b3:36:85:0e:f8:cb:ae:11:
                    3c:4c:51:e4:62:32:aa:b7:34:5d:ea:ed:8b:d0:62:f3:
                    4a:d2:10:3d:ef:4d:f8:e9:3c:8e:d6:cd:9a:b2:fb:30:
                    2b:0e:71:5a:6e:bc:a1:9c:e6:7e:94:a1:82:f9:50:5d:
                    fb:8a:e5:e9:7c:db:43:72:ce:d1:e0:5b:29:c6:30:ff:
                    b3:fb:95:64:f7:8f:69:5e:8f:46:1a:cd:d5:fa:f4:50:
                    96:2b:37:f2:7e:7e:63:b5:ea:05:c5:ad:94:6f:b8:79:
                    93:2a:85:d9:36:a1:ec:08:7d:6e:12:3f:c8:ee:55:f7:
                    b5:50:51:58:78:c7:92:b0:e1:3e:7e:df:08:b3:06:38:
                    65:25:0b:3b:8a:15:9e:72:9b:43:b1:d1:59:71:4e:9f:
                    5f:eb:66:73:43:b1:64:22:77:3d:0f:23:fd:70:90:b8:
                    3b:a1:ef:f7:fc:f8:8f:9a:62:07:26:00:3e:86:43:39:
                    22:f2:ec:77:3e:39:b7:f4:87:c0:86:b2:e2:8f:a3:f8:
                    77:65:f7:83:8c:8e:53:f0:bc:e4:07:8b:75:f4:77:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:07:c2:0b:78:58:6a:76:23:00:31:7a:07:87:d3:97:
        76:8a:90:5d:e4:3a:37:b4:ee:9d:2e:a5:85:fa:8d:b3:
        a0:0d:ba:d7:2c:50:ae:bb:72:dc:5b:80:45:09:d3:cb:
        ea:b3:5c:aa:06:e6:7b:85:33:3b:1f:bc:c6:63:ac:b2:
        01:41:fd:7a:ac:58:db:99:2f:2f:dc:fb:07:c4:6e:be:
        b7:22:26:f6:05:a0:40:6d:5e:0a:11:29:e4:8c:30:28:
        33:5f:a3:ad:7c:da:c3:94:c9:a3:cc:5f:51:3d:6a:44:
        8b:1a:b0:b8:b2:1d:e1:ee:e6:c1:73:27:d5:fb:21:da:
        47:5b:45:4d:6a:cb:4f:92:1b:55:fb:d5:03:18:ed:a9:
        35:30:7f:32:41:8d:91:0e:df:c2:25:db:01:e3:b4:50:
        63:be:b3:01:62:c4:c5:b3:b9:e2:f8:98:5f:e9:c7:07:
        c3:75:ec:db:06:86:01:46:78:bf:c4:49:6d:d8:1e:95:
        f5:27:bd:80:9b:a7:01:77:84:eb:66:c3:9b:5c:1a:38:
        e9:b4:84:45:8b:26:3f:21:d5:c2:70:db:6f:40:d7:ba:
        e7:6f:1c:f2:3a:93:6b:67:f1:9c:db:24:69:a7:6f:48:
        34:6c:c0:0b:c7:cf:6e:43:08:3a:ec:0b:e1:ca:96:6c
    Fingerprint (SHA-256):
        6B:7E:25:B4:24:C7:64:2B:8E:41:89:75:BA:99:8B:13:43:0B:ED:60:5E:0B:9A:85:9C:49:E9:5A:49:72:6B:59
    Fingerprint (SHA1):
        DE:2D:AC:D2:64:3F:04:40:E7:0D:B7:7F:9F:8E:EC:F7:C5:E8:51:35
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7209: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7210: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7211: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153570 (0x1dee4162)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:35:11 2017
            Not After : Mon May 02 15:35:11 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:f8:23:0e:0f:08:47:77:14:90:00:cd:a8:c2:e5:7e:
                    74:f7:22:cc:10:be:89:08:c1:55:6e:39:53:ef:f5:c3:
                    a2:23:e7:f5:1c:e9:9b:50:05:b6:57:40:10:e9:c5:bc:
                    b6:4a:a0:25:fe:df:31:19:bf:af:81:41:20:35:a1:57:
                    1a:dc:ae:32:91:cf:cf:bd:10:6c:87:55:d2:0a:6a:d3:
                    c7:da:21:e9:61:14:93:89:ee:18:b6:1c:ff:58:99:52:
                    44:35:20:6a:f0:6e:b7:51:d6:21:91:6c:32:8c:8b:23:
                    3d:5f:23:94:e8:4f:79:6f:a7:16:92:57:6e:a7:6a:8c:
                    b1:bb:95:b8:c5:24:2f:10:03:f1:9a:98:56:22:44:21:
                    02:65:07:80:8c:ec:b2:c0:a7:60:15:d0:46:e0:35:8d:
                    7e:88:d1:8a:06:95:33:0d:0d:1a:81:ab:b3:ba:0f:72:
                    51:b4:45:10:13:f8:c6:54:30:69:cc:40:a1:a4:4d:46:
                    b9:5b:85:23:51:4a:df:08:74:02:4c:e0:45:71:b5:db:
                    2f:15:b5:32:e0:81:5f:32:57:08:50:6b:60:9b:98:4d:
                    f5:7c:4b:d8:e1:6b:2b:c0:ed:73:ba:7a:65:d4:58:07:
                    b4:8b:e0:f3:53:c1:dc:72:4b:38:94:a1:91:cb:15:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:09:63:08:29:8b:27:45:75:fc:7a:0e:37:9f:c3:82:
        84:55:39:9e:ab:af:69:50:03:d5:3b:7f:88:4a:54:b3:
        68:fa:74:eb:d4:07:73:1c:34:a6:bf:a2:58:f2:bb:6a:
        41:0e:13:d2:a8:c1:ed:1c:a3:86:bd:ec:0a:f7:b5:8f:
        7d:46:f9:b1:4e:f7:57:b8:48:1d:7d:01:f2:b0:4c:64:
        20:d7:6c:4f:e0:bf:0d:d2:23:32:db:86:db:e0:fa:47:
        2f:be:21:94:81:46:5d:a4:77:04:8b:a9:f5:85:77:29:
        21:f6:15:f6:c6:a3:15:2e:ae:28:f3:00:4e:1a:de:ed:
        9b:07:39:e1:91:da:97:85:85:22:cb:6d:25:83:e9:ff:
        33:50:f7:a8:4b:af:58:ff:ef:19:cc:e2:a1:e0:cc:fc:
        e2:3b:13:3b:64:8b:00:d8:08:bf:d5:e4:92:e4:70:75:
        d4:ef:de:27:dc:44:00:8b:75:fd:29:c3:c8:c7:1d:b5:
        46:3a:b5:35:43:c9:6a:e6:df:a3:af:3f:77:b1:c0:dd:
        01:5d:57:30:93:cc:b4:5a:df:f4:59:21:dc:21:02:f7:
        2f:a2:dd:6b:c5:cf:e7:d0:db:4c:19:08:1d:4d:81:0e:
        1c:8f:b0:df:48:38:13:18:a1:89:e8:a9:28:18:74:00
    Fingerprint (SHA-256):
        1D:69:BF:B0:DC:3D:13:1A:CD:89:79:09:F0:8F:2B:70:68:E5:9B:E7:95:79:38:A3:14:0A:29:23:CF:86:31:DF
    Fingerprint (SHA1):
        95:9B:EC:2E:B8:AE:EB:34:36:C5:E9:C8:E6:9C:5F:BD:22:5A:14:89
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7212: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7213: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153573 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7214: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7215: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7216: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7217: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153574   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7218: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7219: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7220: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7221: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153575   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA1Root-502153352.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7222: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7223: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7224: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7225: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153576   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7226: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7227: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #7228: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153573 (0x1dee4165)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:12 2017
            Not After : Mon May 02 15:35:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:5c:04:2a:49:dc:ed:37:9c:b9:ca:54:ff:fa:85:a5:
                    af:1e:65:6f:e5:de:f0:08:08:c4:7b:0c:39:79:30:24:
                    8c:95:ba:46:11:39:47:1e:7a:96:21:11:5d:d1:ae:a9:
                    68:12:0b:80:4c:a9:70:78:63:c1:3b:28:5b:5c:ce:6a:
                    90:f5:dc:ec:8a:aa:ec:9a:e2:5e:62:fc:cf:62:b1:b2:
                    cb:09:6b:20:16:1a:b9:18:56:e2:19:33:dd:57:c4:3c:
                    fb:01:c6:2c:cf:34:e2:9b:0a:85:ae:83:10:df:12:cd:
                    d4:49:68:6a:0f:c6:b1:2a:e9:98:b0:31:50:a1:12:4e:
                    70:a2:53:63:d6:58:aa:e7:a4:c9:7c:a7:d1:11:bf:15:
                    ad:46:99:5d:37:0f:b8:43:82:7e:fd:5c:36:b1:75:20:
                    7d:d8:ad:03:98:ef:c0:b0:63:df:a3:ba:25:42:8b:5a:
                    c4:58:cb:ab:c8:d1:a0:09:ff:5c:96:fb:34:b8:9f:10:
                    16:e2:43:26:75:8f:15:da:f8:96:21:79:41:d4:56:68:
                    f8:f7:18:30:ab:fe:78:59:70:71:25:63:70:60:56:26:
                    69:c0:7a:14:15:9e:89:30:a8:f9:f3:ee:16:85:06:3a:
                    e9:04:dc:ef:c3:12:95:52:80:f7:c3:82:16:27:22:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:e6:e4:db:c9:3f:90:6c:27:10:9b:d2:7b:81:71:72:
        92:06:00:23:2d:db:1f:c1:e9:22:97:54:cb:8c:52:78:
        4f:b9:36:5c:3e:93:99:65:34:42:3d:9d:6d:aa:b5:c9:
        dc:4e:dd:67:09:ca:9e:a3:94:f4:c0:73:4e:ce:48:5d:
        fb:05:41:d9:bf:30:c9:fa:16:5a:03:97:c0:25:4e:40:
        f6:5b:1a:26:c1:34:2d:78:57:61:3f:5c:c8:27:a0:c4:
        96:c5:04:0d:0e:9c:1d:e9:d5:0d:0d:40:06:9a:2b:4d:
        f5:46:85:ec:4a:fb:87:59:86:17:d6:d4:11:52:6f:90:
        de:51:a3:c9:30:1a:0a:58:ae:01:5b:11:e9:ba:41:22:
        1e:a6:60:63:a2:c5:75:24:9b:c8:45:7b:b4:bb:15:a1:
        fe:12:d5:16:11:f8:a6:f3:97:1a:2b:c7:a4:5f:71:7a:
        a1:c3:ce:54:31:9a:f2:26:ac:35:72:32:b9:3a:08:ae:
        22:ef:a9:95:b6:58:12:f9:bc:ae:d6:fb:29:57:42:94:
        52:da:15:84:3d:e7:fd:7a:44:5f:2b:77:9f:75:6e:8b:
        eb:86:af:be:66:ef:89:e7:80:28:cb:3a:17:d1:d3:ac:
        92:78:bf:df:25:08:fc:c0:85:e1:d4:18:c2:12:93:94
    Fingerprint (SHA-256):
        34:03:8C:93:36:35:C5:4E:AD:7D:94:3E:48:F9:80:FE:B5:15:D6:B1:7F:E4:05:FD:8A:BA:03:B8:E1:76:C2:75
    Fingerprint (SHA1):
        E6:9A:39:AE:81:87:26:07:20:9E:E5:7E:46:04:4C:BE:F3:98:69:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7229: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7230: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153577 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7231: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7232: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7233: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153578 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7234: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7235: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7236: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7237: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153579 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7238: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7239: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153580 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7240: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7241: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7242: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7243: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7244: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153581   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502153353.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7245: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7246: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7247: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7248: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153582   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7249: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7250: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7251: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7252: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153578 (0x1dee416a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:dd:2f:ec:e6:f3:61:69:c8:f2:84:e3:c0:15:be:dc:
                    8f:b0:56:ef:b6:9a:d4:30:50:e2:29:c2:4c:aa:27:87:
                    a9:2c:0e:e1:ce:98:c6:da:1b:1b:33:38:38:7e:50:63:
                    f2:1d:a3:2d:48:63:71:ba:26:01:f1:68:2b:b7:02:6a:
                    d7:06:71:fb:83:a0:32:0b:38:56:21:31:80:ee:76:26:
                    56:99:f7:c8:58:7f:97:05:fa:d2:37:9e:37:42:9b:5c:
                    37:8e:e7:da:54:01:bd:09:7e:7b:01:cc:06:65:30:9e:
                    f4:6c:49:f0:ba:78:a2:af:ad:3b:eb:d0:62:bc:93:45:
                    61:5b:e6:d1:08:23:04:b8:5b:86:9d:0e:9c:48:56:0c:
                    b2:4a:11:e5:69:16:c2:41:ec:9b:3d:a7:4c:7a:06:2f:
                    01:0a:bf:5e:d7:8c:6e:ed:9d:ea:80:d5:da:a4:c9:dc:
                    ed:23:fb:fc:75:41:18:ab:76:9b:6c:10:b5:88:1d:49:
                    fa:ec:72:f3:b9:e6:e2:f5:09:f3:9f:18:b1:cb:81:f0:
                    d5:0f:a8:d9:dd:f8:52:e8:84:85:ed:df:90:21:08:06:
                    05:5d:79:c6:da:7b:16:17:38:1e:86:9b:3a:2c:5f:d8:
                    b9:23:f7:6e:87:09:05:17:9b:94:53:25:fc:5f:88:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:33:bf:e2:97:0e:20:56:39:0a:02:e6:f4:ac:b7:62:
        e3:c1:71:52:fa:30:7b:44:7d:b3:29:d0:23:9d:61:89:
        a0:06:54:31:45:17:ac:33:eb:31:9a:e8:35:cb:48:5e:
        80:90:ee:7b:32:a4:d8:8d:f3:e9:39:da:7b:81:aa:bc:
        8f:f5:c3:93:6b:e0:2a:4e:44:3d:68:22:97:b8:49:4f:
        fb:76:4d:d9:5f:35:b9:5a:16:88:4e:8e:d0:54:08:5f:
        a2:de:58:cb:47:ce:fa:c9:44:d7:a7:50:c1:a9:b3:05:
        19:8c:be:4e:02:52:72:53:c1:60:63:cb:18:1c:0b:3e:
        9a:6d:62:14:bf:1d:bf:69:f1:9b:56:13:9a:83:50:1e:
        38:67:95:4d:00:8d:2e:40:cd:49:bb:db:26:04:5b:ab:
        8a:4a:dc:ef:02:35:ff:9b:72:da:2b:dd:76:9c:d2:d6:
        18:34:32:0b:65:22:4a:82:0a:e0:ff:81:ff:be:71:d2:
        74:ed:d4:2e:23:37:fd:b2:d7:d1:5c:e9:1b:56:46:68:
        ae:15:cd:3b:79:17:29:69:ad:95:8f:6d:be:2b:ad:86:
        f4:c3:de:22:92:23:43:02:b7:86:3b:07:0d:f0:c7:1f:
        f5:e0:1e:08:41:8f:02:dd:49:3d:7d:40:cf:d0:42:b2
    Fingerprint (SHA-256):
        3B:B5:7D:95:01:28:1B:B9:09:82:76:CB:38:5B:5F:65:19:9A:5B:02:B5:84:23:45:22:FA:19:0D:BD:0B:99:17
    Fingerprint (SHA1):
        34:95:D5:22:8F:56:4F:3D:DD:E5:9D:7F:1B:DB:FF:7B:21:B1:43:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7253: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153578 (0x1dee416a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:dd:2f:ec:e6:f3:61:69:c8:f2:84:e3:c0:15:be:dc:
                    8f:b0:56:ef:b6:9a:d4:30:50:e2:29:c2:4c:aa:27:87:
                    a9:2c:0e:e1:ce:98:c6:da:1b:1b:33:38:38:7e:50:63:
                    f2:1d:a3:2d:48:63:71:ba:26:01:f1:68:2b:b7:02:6a:
                    d7:06:71:fb:83:a0:32:0b:38:56:21:31:80:ee:76:26:
                    56:99:f7:c8:58:7f:97:05:fa:d2:37:9e:37:42:9b:5c:
                    37:8e:e7:da:54:01:bd:09:7e:7b:01:cc:06:65:30:9e:
                    f4:6c:49:f0:ba:78:a2:af:ad:3b:eb:d0:62:bc:93:45:
                    61:5b:e6:d1:08:23:04:b8:5b:86:9d:0e:9c:48:56:0c:
                    b2:4a:11:e5:69:16:c2:41:ec:9b:3d:a7:4c:7a:06:2f:
                    01:0a:bf:5e:d7:8c:6e:ed:9d:ea:80:d5:da:a4:c9:dc:
                    ed:23:fb:fc:75:41:18:ab:76:9b:6c:10:b5:88:1d:49:
                    fa:ec:72:f3:b9:e6:e2:f5:09:f3:9f:18:b1:cb:81:f0:
                    d5:0f:a8:d9:dd:f8:52:e8:84:85:ed:df:90:21:08:06:
                    05:5d:79:c6:da:7b:16:17:38:1e:86:9b:3a:2c:5f:d8:
                    b9:23:f7:6e:87:09:05:17:9b:94:53:25:fc:5f:88:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:33:bf:e2:97:0e:20:56:39:0a:02:e6:f4:ac:b7:62:
        e3:c1:71:52:fa:30:7b:44:7d:b3:29:d0:23:9d:61:89:
        a0:06:54:31:45:17:ac:33:eb:31:9a:e8:35:cb:48:5e:
        80:90:ee:7b:32:a4:d8:8d:f3:e9:39:da:7b:81:aa:bc:
        8f:f5:c3:93:6b:e0:2a:4e:44:3d:68:22:97:b8:49:4f:
        fb:76:4d:d9:5f:35:b9:5a:16:88:4e:8e:d0:54:08:5f:
        a2:de:58:cb:47:ce:fa:c9:44:d7:a7:50:c1:a9:b3:05:
        19:8c:be:4e:02:52:72:53:c1:60:63:cb:18:1c:0b:3e:
        9a:6d:62:14:bf:1d:bf:69:f1:9b:56:13:9a:83:50:1e:
        38:67:95:4d:00:8d:2e:40:cd:49:bb:db:26:04:5b:ab:
        8a:4a:dc:ef:02:35:ff:9b:72:da:2b:dd:76:9c:d2:d6:
        18:34:32:0b:65:22:4a:82:0a:e0:ff:81:ff:be:71:d2:
        74:ed:d4:2e:23:37:fd:b2:d7:d1:5c:e9:1b:56:46:68:
        ae:15:cd:3b:79:17:29:69:ad:95:8f:6d:be:2b:ad:86:
        f4:c3:de:22:92:23:43:02:b7:86:3b:07:0d:f0:c7:1f:
        f5:e0:1e:08:41:8f:02:dd:49:3d:7d:40:cf:d0:42:b2
    Fingerprint (SHA-256):
        3B:B5:7D:95:01:28:1B:B9:09:82:76:CB:38:5B:5F:65:19:9A:5B:02:B5:84:23:45:22:FA:19:0D:BD:0B:99:17
    Fingerprint (SHA1):
        34:95:D5:22:8F:56:4F:3D:DD:E5:9D:7F:1B:DB:FF:7B:21:B1:43:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7254: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7255: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153583 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7256: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7257: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7258: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153584 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7259: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7260: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7261: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7262: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153585 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7263: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7264: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153586 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7265: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7266: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7267: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7268: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7269: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153587   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502153354.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7270: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7271: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7272: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7273: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153588   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7274: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7275: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7276: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7277: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153589   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-BridgeNavy-502153355.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7278: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7279: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7280: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7281: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153590   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7282: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7283: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7284: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7285: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153584 (0x1dee4170)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:35:15 2017
            Not After : Mon May 02 15:35:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:3e:e0:36:df:98:39:dd:0c:ff:f9:70:34:f6:4b:e9:
                    db:32:07:1b:f7:6c:bc:8f:4a:7e:d7:fb:a1:ec:78:55:
                    77:40:58:08:e5:9f:e2:5e:ca:e6:04:b9:d3:67:a3:66:
                    6b:8d:9b:4e:5c:eb:46:76:05:76:3b:1a:21:1e:6a:49:
                    65:3f:55:94:c1:41:3f:0e:7a:9a:ad:fc:8b:f9:71:6e:
                    b8:1c:b9:c5:c6:05:4a:0f:36:96:fd:13:2c:30:d3:bf:
                    f4:4f:28:d4:3a:03:99:79:d4:51:e1:35:53:ed:6b:93:
                    5c:58:c5:b0:ba:09:30:a4:39:2b:00:78:e3:8c:eb:ff:
                    f3:f1:af:62:69:98:2c:66:51:be:34:4f:95:47:d5:9b:
                    2e:ea:46:f5:5d:08:3a:f3:e7:56:38:9b:87:b8:0a:28:
                    f5:29:6d:aa:f9:93:02:48:f6:b4:3f:cb:11:6b:9d:02:
                    4a:52:32:e3:d5:b6:4a:58:09:24:1d:64:d6:54:39:39:
                    22:7f:80:d3:20:95:ac:34:5b:ae:fc:41:c1:a5:41:3d:
                    78:10:eb:24:f3:5c:0d:15:ce:d5:07:8a:a2:cd:f7:37:
                    71:4b:dd:07:ee:34:4f:e5:59:e8:19:99:e8:ab:b6:b2:
                    0c:bb:e2:c0:2c:b2:c5:bc:f2:2d:2d:12:00:3d:28:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:d5:b4:2e:e2:3c:7a:0d:52:cb:83:fe:f4:ad:ce:c1:
        f6:9a:ef:d2:16:bf:dd:b7:1a:d9:61:31:c5:5e:c2:8b:
        37:e8:55:45:12:05:d0:aa:78:a7:95:77:1c:72:82:c9:
        85:1b:21:5f:ec:f4:21:a0:22:7b:19:79:c9:98:84:12:
        3f:fd:69:17:48:b3:77:91:e3:5e:58:e2:e3:43:a5:c9:
        87:9c:b6:2a:d4:65:dd:b5:3e:ea:05:93:a6:bc:47:0d:
        3c:15:f6:b2:ef:6b:9e:7c:2a:e7:b8:cf:33:d0:db:a0:
        22:61:28:7a:97:ea:1d:42:f2:a2:18:12:bb:94:31:ae:
        a3:0d:87:d5:62:9c:b1:b9:91:b7:7f:5d:bc:5f:47:e3:
        7b:8e:71:99:b8:53:ea:f4:a1:83:51:5f:31:7a:6a:c9:
        0a:f4:af:3e:39:d2:29:c6:9c:45:4b:4a:db:d2:a9:7d:
        27:2e:a2:49:14:25:bb:b3:e4:5a:8e:dc:33:c2:20:7d:
        a1:d6:d1:23:ce:3d:c2:9e:0f:22:7b:d1:74:84:f6:42:
        1b:3f:ce:7e:91:23:aa:ce:c6:2c:7f:f3:a3:a2:45:c4:
        90:5a:eb:e3:3e:4e:7c:3f:eb:96:a5:0e:f4:27:1b:71:
        0a:41:b8:7d:a3:1e:ff:87:b1:ef:49:f5:5e:9a:1f:07
    Fingerprint (SHA-256):
        32:68:A5:BC:3B:D3:55:7F:01:9C:53:5E:EA:6B:5A:4E:BB:E3:EF:4F:10:7C:D0:5E:DB:82:99:2C:2D:F0:30:CD
    Fingerprint (SHA1):
        82:03:E0:BC:A6:B9:A1:EC:6E:43:B2:4D:65:B6:31:C1:94:92:F0:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7286: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153584 (0x1dee4170)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:35:15 2017
            Not After : Mon May 02 15:35:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:3e:e0:36:df:98:39:dd:0c:ff:f9:70:34:f6:4b:e9:
                    db:32:07:1b:f7:6c:bc:8f:4a:7e:d7:fb:a1:ec:78:55:
                    77:40:58:08:e5:9f:e2:5e:ca:e6:04:b9:d3:67:a3:66:
                    6b:8d:9b:4e:5c:eb:46:76:05:76:3b:1a:21:1e:6a:49:
                    65:3f:55:94:c1:41:3f:0e:7a:9a:ad:fc:8b:f9:71:6e:
                    b8:1c:b9:c5:c6:05:4a:0f:36:96:fd:13:2c:30:d3:bf:
                    f4:4f:28:d4:3a:03:99:79:d4:51:e1:35:53:ed:6b:93:
                    5c:58:c5:b0:ba:09:30:a4:39:2b:00:78:e3:8c:eb:ff:
                    f3:f1:af:62:69:98:2c:66:51:be:34:4f:95:47:d5:9b:
                    2e:ea:46:f5:5d:08:3a:f3:e7:56:38:9b:87:b8:0a:28:
                    f5:29:6d:aa:f9:93:02:48:f6:b4:3f:cb:11:6b:9d:02:
                    4a:52:32:e3:d5:b6:4a:58:09:24:1d:64:d6:54:39:39:
                    22:7f:80:d3:20:95:ac:34:5b:ae:fc:41:c1:a5:41:3d:
                    78:10:eb:24:f3:5c:0d:15:ce:d5:07:8a:a2:cd:f7:37:
                    71:4b:dd:07:ee:34:4f:e5:59:e8:19:99:e8:ab:b6:b2:
                    0c:bb:e2:c0:2c:b2:c5:bc:f2:2d:2d:12:00:3d:28:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:d5:b4:2e:e2:3c:7a:0d:52:cb:83:fe:f4:ad:ce:c1:
        f6:9a:ef:d2:16:bf:dd:b7:1a:d9:61:31:c5:5e:c2:8b:
        37:e8:55:45:12:05:d0:aa:78:a7:95:77:1c:72:82:c9:
        85:1b:21:5f:ec:f4:21:a0:22:7b:19:79:c9:98:84:12:
        3f:fd:69:17:48:b3:77:91:e3:5e:58:e2:e3:43:a5:c9:
        87:9c:b6:2a:d4:65:dd:b5:3e:ea:05:93:a6:bc:47:0d:
        3c:15:f6:b2:ef:6b:9e:7c:2a:e7:b8:cf:33:d0:db:a0:
        22:61:28:7a:97:ea:1d:42:f2:a2:18:12:bb:94:31:ae:
        a3:0d:87:d5:62:9c:b1:b9:91:b7:7f:5d:bc:5f:47:e3:
        7b:8e:71:99:b8:53:ea:f4:a1:83:51:5f:31:7a:6a:c9:
        0a:f4:af:3e:39:d2:29:c6:9c:45:4b:4a:db:d2:a9:7d:
        27:2e:a2:49:14:25:bb:b3:e4:5a:8e:dc:33:c2:20:7d:
        a1:d6:d1:23:ce:3d:c2:9e:0f:22:7b:d1:74:84:f6:42:
        1b:3f:ce:7e:91:23:aa:ce:c6:2c:7f:f3:a3:a2:45:c4:
        90:5a:eb:e3:3e:4e:7c:3f:eb:96:a5:0e:f4:27:1b:71:
        0a:41:b8:7d:a3:1e:ff:87:b1:ef:49:f5:5e:9a:1f:07
    Fingerprint (SHA-256):
        32:68:A5:BC:3B:D3:55:7F:01:9C:53:5E:EA:6B:5A:4E:BB:E3:EF:4F:10:7C:D0:5E:DB:82:99:2C:2D:F0:30:CD
    Fingerprint (SHA1):
        82:03:E0:BC:A6:B9:A1:EC:6E:43:B2:4D:65:B6:31:C1:94:92:F0:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7287: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #7288: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153583 (0x1dee416f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:35:15 2017
            Not After : Mon May 02 15:35:15 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:8e:57:b2:1a:04:e3:b9:43:48:74:07:94:32:dc:c5:
                    8f:08:ab:fe:5a:57:ce:f7:13:39:5a:d1:07:aa:2e:62:
                    81:df:81:25:2b:1e:0a:ae:42:d2:45:5c:82:d8:7a:a5:
                    76:bb:5a:c6:97:e9:27:f8:74:9d:9d:f3:89:b2:ea:82:
                    17:04:ca:1f:e0:b1:7a:98:44:26:eb:fa:4f:99:a5:e5:
                    ff:83:b9:da:e2:bb:f7:79:29:b3:2a:6d:b5:1e:09:dd:
                    4a:44:db:74:6a:f5:85:07:b5:7f:b9:a6:63:e1:7f:00:
                    c0:a3:16:fe:fc:f6:d7:1d:e7:87:f0:79:f5:2f:ed:32:
                    f3:ff:b3:50:7a:2d:c4:51:5c:09:04:7b:94:36:50:84:
                    c1:cf:7b:a5:5f:86:31:59:97:f4:20:e6:b8:d8:95:aa:
                    74:16:70:51:83:0c:37:82:f5:9e:55:ba:fe:9a:51:e0:
                    23:54:63:8f:5c:e5:ff:e3:bb:b1:10:e6:46:c3:f3:01:
                    fd:17:de:2d:e5:5b:05:e7:e1:c4:ec:eb:e3:5e:53:aa:
                    fe:44:58:f8:ce:2c:58:f4:64:66:b3:09:03:be:bb:b8:
                    ec:d0:2a:e9:9f:a0:42:23:c1:c5:1f:a1:b8:57:02:1c:
                    40:e7:30:d0:91:a5:72:f8:d0:c8:70:07:ff:1d:35:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:f3:e0:53:4a:bf:0b:8b:75:9c:5f:ae:68:e9:ac:2f:
        e0:d5:1b:81:61:1d:07:84:99:68:ac:72:fd:f9:07:49:
        5d:e1:27:2c:94:2a:0c:c7:85:c0:af:12:37:00:04:61:
        83:2d:33:5b:51:5d:b4:ef:d9:50:93:9e:aa:e8:6a:e9:
        89:29:68:0b:b8:85:12:b0:79:fa:06:7c:d9:79:22:10:
        74:c3:65:a0:dc:53:4e:b5:26:10:13:35:9f:29:e8:83:
        ca:e8:c7:2a:55:78:df:77:90:31:3e:37:30:e9:fc:49:
        ec:e1:1e:ee:8d:9a:bc:46:0d:8c:2e:95:f7:1a:75:cd:
        02:01:b6:8f:f6:71:e0:18:0f:66:11:4b:34:b9:03:cf:
        32:9a:a3:ac:99:2f:8f:80:12:e6:65:91:54:ba:fa:ce:
        f8:76:4b:95:6f:72:69:8f:e5:d6:86:01:12:ce:82:22:
        7f:ae:8b:aa:58:f9:13:6e:46:df:81:ab:86:ec:59:6c:
        74:50:9f:2f:cc:16:15:70:35:80:e2:df:f3:3b:96:13:
        91:25:97:ed:23:d0:61:d3:8c:ae:97:ef:68:04:f6:2a:
        08:b6:4e:51:c8:4b:bb:d3:20:e7:e0:c8:98:2a:97:87:
        27:71:cd:99:9d:52:77:ee:96:8d:13:bd:a1:dc:90:80
    Fingerprint (SHA-256):
        D9:66:9E:D6:42:F8:05:C8:57:1E:A7:D0:92:7E:DF:8E:55:48:B1:43:48:06:D4:AB:36:A9:0F:7A:17:03:89:69
    Fingerprint (SHA1):
        F4:F9:57:CA:C9:22:B4:1A:C6:71:DB:31:38:D5:D1:F4:96:54:17:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7289: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153584 (0x1dee4170)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:35:15 2017
            Not After : Mon May 02 15:35:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:3e:e0:36:df:98:39:dd:0c:ff:f9:70:34:f6:4b:e9:
                    db:32:07:1b:f7:6c:bc:8f:4a:7e:d7:fb:a1:ec:78:55:
                    77:40:58:08:e5:9f:e2:5e:ca:e6:04:b9:d3:67:a3:66:
                    6b:8d:9b:4e:5c:eb:46:76:05:76:3b:1a:21:1e:6a:49:
                    65:3f:55:94:c1:41:3f:0e:7a:9a:ad:fc:8b:f9:71:6e:
                    b8:1c:b9:c5:c6:05:4a:0f:36:96:fd:13:2c:30:d3:bf:
                    f4:4f:28:d4:3a:03:99:79:d4:51:e1:35:53:ed:6b:93:
                    5c:58:c5:b0:ba:09:30:a4:39:2b:00:78:e3:8c:eb:ff:
                    f3:f1:af:62:69:98:2c:66:51:be:34:4f:95:47:d5:9b:
                    2e:ea:46:f5:5d:08:3a:f3:e7:56:38:9b:87:b8:0a:28:
                    f5:29:6d:aa:f9:93:02:48:f6:b4:3f:cb:11:6b:9d:02:
                    4a:52:32:e3:d5:b6:4a:58:09:24:1d:64:d6:54:39:39:
                    22:7f:80:d3:20:95:ac:34:5b:ae:fc:41:c1:a5:41:3d:
                    78:10:eb:24:f3:5c:0d:15:ce:d5:07:8a:a2:cd:f7:37:
                    71:4b:dd:07:ee:34:4f:e5:59:e8:19:99:e8:ab:b6:b2:
                    0c:bb:e2:c0:2c:b2:c5:bc:f2:2d:2d:12:00:3d:28:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:d5:b4:2e:e2:3c:7a:0d:52:cb:83:fe:f4:ad:ce:c1:
        f6:9a:ef:d2:16:bf:dd:b7:1a:d9:61:31:c5:5e:c2:8b:
        37:e8:55:45:12:05:d0:aa:78:a7:95:77:1c:72:82:c9:
        85:1b:21:5f:ec:f4:21:a0:22:7b:19:79:c9:98:84:12:
        3f:fd:69:17:48:b3:77:91:e3:5e:58:e2:e3:43:a5:c9:
        87:9c:b6:2a:d4:65:dd:b5:3e:ea:05:93:a6:bc:47:0d:
        3c:15:f6:b2:ef:6b:9e:7c:2a:e7:b8:cf:33:d0:db:a0:
        22:61:28:7a:97:ea:1d:42:f2:a2:18:12:bb:94:31:ae:
        a3:0d:87:d5:62:9c:b1:b9:91:b7:7f:5d:bc:5f:47:e3:
        7b:8e:71:99:b8:53:ea:f4:a1:83:51:5f:31:7a:6a:c9:
        0a:f4:af:3e:39:d2:29:c6:9c:45:4b:4a:db:d2:a9:7d:
        27:2e:a2:49:14:25:bb:b3:e4:5a:8e:dc:33:c2:20:7d:
        a1:d6:d1:23:ce:3d:c2:9e:0f:22:7b:d1:74:84:f6:42:
        1b:3f:ce:7e:91:23:aa:ce:c6:2c:7f:f3:a3:a2:45:c4:
        90:5a:eb:e3:3e:4e:7c:3f:eb:96:a5:0e:f4:27:1b:71:
        0a:41:b8:7d:a3:1e:ff:87:b1:ef:49:f5:5e:9a:1f:07
    Fingerprint (SHA-256):
        32:68:A5:BC:3B:D3:55:7F:01:9C:53:5E:EA:6B:5A:4E:BB:E3:EF:4F:10:7C:D0:5E:DB:82:99:2C:2D:F0:30:CD
    Fingerprint (SHA1):
        82:03:E0:BC:A6:B9:A1:EC:6E:43:B2:4D:65:B6:31:C1:94:92:F0:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7290: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153584 (0x1dee4170)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:35:15 2017
            Not After : Mon May 02 15:35:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:3e:e0:36:df:98:39:dd:0c:ff:f9:70:34:f6:4b:e9:
                    db:32:07:1b:f7:6c:bc:8f:4a:7e:d7:fb:a1:ec:78:55:
                    77:40:58:08:e5:9f:e2:5e:ca:e6:04:b9:d3:67:a3:66:
                    6b:8d:9b:4e:5c:eb:46:76:05:76:3b:1a:21:1e:6a:49:
                    65:3f:55:94:c1:41:3f:0e:7a:9a:ad:fc:8b:f9:71:6e:
                    b8:1c:b9:c5:c6:05:4a:0f:36:96:fd:13:2c:30:d3:bf:
                    f4:4f:28:d4:3a:03:99:79:d4:51:e1:35:53:ed:6b:93:
                    5c:58:c5:b0:ba:09:30:a4:39:2b:00:78:e3:8c:eb:ff:
                    f3:f1:af:62:69:98:2c:66:51:be:34:4f:95:47:d5:9b:
                    2e:ea:46:f5:5d:08:3a:f3:e7:56:38:9b:87:b8:0a:28:
                    f5:29:6d:aa:f9:93:02:48:f6:b4:3f:cb:11:6b:9d:02:
                    4a:52:32:e3:d5:b6:4a:58:09:24:1d:64:d6:54:39:39:
                    22:7f:80:d3:20:95:ac:34:5b:ae:fc:41:c1:a5:41:3d:
                    78:10:eb:24:f3:5c:0d:15:ce:d5:07:8a:a2:cd:f7:37:
                    71:4b:dd:07:ee:34:4f:e5:59:e8:19:99:e8:ab:b6:b2:
                    0c:bb:e2:c0:2c:b2:c5:bc:f2:2d:2d:12:00:3d:28:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:d5:b4:2e:e2:3c:7a:0d:52:cb:83:fe:f4:ad:ce:c1:
        f6:9a:ef:d2:16:bf:dd:b7:1a:d9:61:31:c5:5e:c2:8b:
        37:e8:55:45:12:05:d0:aa:78:a7:95:77:1c:72:82:c9:
        85:1b:21:5f:ec:f4:21:a0:22:7b:19:79:c9:98:84:12:
        3f:fd:69:17:48:b3:77:91:e3:5e:58:e2:e3:43:a5:c9:
        87:9c:b6:2a:d4:65:dd:b5:3e:ea:05:93:a6:bc:47:0d:
        3c:15:f6:b2:ef:6b:9e:7c:2a:e7:b8:cf:33:d0:db:a0:
        22:61:28:7a:97:ea:1d:42:f2:a2:18:12:bb:94:31:ae:
        a3:0d:87:d5:62:9c:b1:b9:91:b7:7f:5d:bc:5f:47:e3:
        7b:8e:71:99:b8:53:ea:f4:a1:83:51:5f:31:7a:6a:c9:
        0a:f4:af:3e:39:d2:29:c6:9c:45:4b:4a:db:d2:a9:7d:
        27:2e:a2:49:14:25:bb:b3:e4:5a:8e:dc:33:c2:20:7d:
        a1:d6:d1:23:ce:3d:c2:9e:0f:22:7b:d1:74:84:f6:42:
        1b:3f:ce:7e:91:23:aa:ce:c6:2c:7f:f3:a3:a2:45:c4:
        90:5a:eb:e3:3e:4e:7c:3f:eb:96:a5:0e:f4:27:1b:71:
        0a:41:b8:7d:a3:1e:ff:87:b1:ef:49:f5:5e:9a:1f:07
    Fingerprint (SHA-256):
        32:68:A5:BC:3B:D3:55:7F:01:9C:53:5E:EA:6B:5A:4E:BB:E3:EF:4F:10:7C:D0:5E:DB:82:99:2C:2D:F0:30:CD
    Fingerprint (SHA1):
        82:03:E0:BC:A6:B9:A1:EC:6E:43:B2:4D:65:B6:31:C1:94:92:F0:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7291: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7292: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153591 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7293: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7294: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7295: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153592 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7296: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7297: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #7298: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7299: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502153593   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7300: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7301: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #7302: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7303: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502153594   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7304: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7305: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7306: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7307: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502153595 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7308: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7309: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502153596 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7310: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7311: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #7312: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7313: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7314: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153597   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7315: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7316: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7317: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7318: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153598   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7319: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7320: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7321: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7322: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153599   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7323: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7324: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7325: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7326: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153600   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7327: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7328: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7329: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153591 (0x1dee4177)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:35:18 2017
            Not After : Mon May 02 15:35:18 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:7a:c4:bc:36:d2:17:dc:4b:dc:37:43:f0:e9:15:13:
                    54:81:7f:1c:89:e3:8e:a7:1b:4a:75:55:9d:d0:24:8b:
                    2c:0c:e5:15:53:5c:34:b7:bb:e6:dd:ea:9d:49:24:5a:
                    b4:6a:ca:73:3b:41:8c:be:f5:0e:75:72:2f:56:b0:cd:
                    98:6d:05:a2:9f:22:02:93:87:3c:50:c2:d0:9e:c2:00:
                    9e:7b:30:4b:8d:66:23:67:21:8e:33:8f:4e:c9:81:63:
                    4b:95:f6:5d:4d:ec:e3:e5:a2:30:88:21:d1:1f:b6:90:
                    53:37:f6:ae:33:08:79:b7:95:c6:de:7c:8c:ac:2c:f9:
                    5b:0a:6a:2a:4a:14:1a:17:a0:d0:28:83:12:4c:fa:61:
                    bd:5f:68:03:c3:9f:80:30:07:9d:c6:ac:41:d8:14:df:
                    ea:cd:74:fb:36:02:01:7f:c0:26:eb:6e:35:64:8e:00:
                    2b:41:aa:47:84:0e:a3:b7:f9:08:f4:da:cc:b8:01:a4:
                    c4:34:68:33:55:79:08:56:4e:ae:89:bb:ff:8f:f1:38:
                    f0:c0:78:52:d4:a3:f5:05:fe:03:4c:68:41:5b:c6:2d:
                    0c:5a:79:38:94:22:92:d9:ad:af:a3:ad:14:14:23:b8:
                    f2:83:be:60:5c:26:d1:49:7e:d8:3c:d8:d6:21:a1:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:89:e3:cd:8d:36:8b:e6:67:f3:c5:a8:0a:f1:a8:36:
        d0:12:73:50:c4:ff:01:14:40:b9:ff:5f:3e:1c:1b:75:
        79:63:2f:75:dc:ab:2c:ca:53:a3:72:98:6c:23:80:da:
        3f:30:b4:9c:a5:e7:56:8e:43:e6:96:5c:66:af:18:4e:
        3d:fa:10:82:72:2f:b1:9c:6b:77:81:69:53:84:49:6a:
        d3:fd:4e:80:20:ac:2a:82:fd:0a:c6:30:d3:f3:db:ae:
        c9:86:fc:ae:cb:ba:cd:b7:6d:86:46:ee:2f:0b:de:9b:
        07:4e:88:ef:42:72:d3:bf:9d:12:de:47:ea:57:6a:c7:
        b6:f4:54:95:0d:7d:98:47:cc:76:a2:85:09:2e:69:86:
        92:33:a4:9d:18:ad:ab:3a:a3:05:99:1e:d6:d3:77:51:
        d3:5c:84:7d:3a:5d:9a:87:d2:26:0e:01:07:91:ca:3d:
        8e:d5:a7:c3:b3:7d:d0:d0:21:05:7c:cc:e9:3f:de:1b:
        57:39:17:01:69:cd:df:72:67:9c:ba:21:4a:4c:d3:1e:
        05:13:73:fc:11:7f:8f:d3:24:1b:be:fc:39:1f:cd:4d:
        6e:a8:cc:08:60:86:e6:61:58:20:a0:ec:21:e8:c6:25:
        ce:15:9e:31:43:1b:0b:f6:d6:b7:90:c1:d9:78:af:53
    Fingerprint (SHA-256):
        75:AB:DF:A8:66:98:54:11:3E:78:4D:C6:C8:EC:21:65:89:E6:D3:40:F4:F5:9A:E9:34:11:59:7B:E4:67:F7:F4
    Fingerprint (SHA1):
        48:FA:10:CB:DE:34:BF:73:EF:3A:75:D8:94:6B:B2:C2:B7:C2:10:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7330: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7331: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7332: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7333: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7334: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7335: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7336: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7337: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7338: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153592 (0x1dee4178)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:35:18 2017
            Not After : Mon May 02 15:35:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:00:cd:3b:0d:10:f6:83:f2:78:b9:d8:6f:0b:2b:0a:
                    86:7d:f1:53:be:9f:dd:9e:96:a7:81:f8:45:73:23:05:
                    50:66:cf:df:7c:4b:73:d7:7c:1f:0e:ce:63:3f:aa:7b:
                    37:f4:df:7c:39:c3:e8:c0:37:ef:b1:f2:b9:30:c5:fa:
                    1f:0a:5f:6a:89:6e:2e:80:d2:b4:db:3b:36:4d:c1:58:
                    f0:09:96:8c:95:cf:3f:09:3c:97:ac:25:b4:ed:d6:02:
                    7a:21:cb:2f:78:9d:31:29:fa:16:b2:1a:3b:ea:45:1e:
                    d5:70:87:39:1a:fb:de:8e:c4:6e:eb:76:d7:c6:81:ec:
                    94:18:b7:a4:71:59:4b:fc:15:b7:e0:b6:74:e5:3f:15:
                    07:2e:b6:ca:58:a7:f8:a3:2d:f0:13:a8:90:97:97:22:
                    67:7e:3b:0e:9d:8d:65:f6:47:07:f7:6d:c0:06:26:eb:
                    cb:3a:08:2d:68:d5:cd:bd:8e:19:ea:79:0a:f3:b2:3c:
                    e2:26:a4:57:cf:a1:73:67:fe:f5:32:02:f0:aa:d2:79:
                    39:58:7f:e7:17:61:f4:fe:a8:78:c2:31:69:76:00:40:
                    b2:7b:04:1f:2a:cb:d6:7d:2c:2f:eb:f4:d0:52:4e:f5:
                    6b:0b:69:56:b3:53:69:4d:1f:73:1a:3e:eb:63:1c:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:a6:41:19:9a:49:ad:bc:77:78:48:75:89:0b:db:71:
        2c:91:47:d1:90:bd:02:33:79:c2:72:a6:0a:e7:0e:bf:
        68:1e:c6:84:b6:4b:69:48:57:75:55:5d:ef:3b:03:41:
        7c:a1:70:a6:63:76:f3:e1:85:84:a4:77:5c:10:54:f3:
        f3:14:34:36:fb:f3:66:96:34:81:f8:b3:b3:eb:5c:4e:
        75:a5:c8:be:5f:35:4f:bd:1f:38:ee:bb:11:3f:e7:fb:
        08:ca:e2:ed:34:53:99:b7:c4:42:0b:c6:ba:41:e5:4c:
        1e:90:62:53:1d:82:b7:e6:20:01:25:e9:9d:91:07:7a:
        f6:12:1f:1e:9c:57:d8:e7:2a:c3:be:70:78:99:e6:cd:
        2f:05:00:8b:8f:e9:0c:09:cd:06:5a:b6:24:bf:b4:87:
        b5:0c:13:19:f0:f1:23:7d:2c:31:13:52:bf:6e:88:07:
        ce:d6:3f:7d:b5:c5:22:32:47:d1:a8:4a:bc:cd:81:f2:
        22:d0:64:0f:5c:8c:2f:32:74:fb:59:06:36:91:5d:db:
        94:c3:13:d0:4e:a3:03:73:43:ef:4c:3a:a2:8d:3d:ea:
        d7:05:26:47:60:a5:a8:b7:6b:9a:de:f8:73:cd:e9:72:
        f6:de:2b:43:87:26:4f:3e:63:4e:75:c1:fd:f1:cf:16
    Fingerprint (SHA-256):
        45:3B:E0:13:81:41:02:73:66:59:38:58:51:CF:3F:C9:3B:C1:51:B3:27:47:F5:09:06:11:4B:2F:A8:A2:09:58
    Fingerprint (SHA1):
        34:2F:DB:C8:DB:25:A4:B1:D8:2B:E6:52:ED:80:24:B2:89:26:F6:CA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7339: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7340: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7341: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7342: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7343: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7344: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7345: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #7346: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #7347: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #7348: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #7349: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #7350: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #7351: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #7352: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7353: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7354: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #7355: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #7356: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7357: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153601 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7358: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7359: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7360: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7361: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153602   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7362: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7363: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7364: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7365: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153603   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7366: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7367: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7368: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7369: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502153604   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7370: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7371: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7372: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7373: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153605   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7374: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7375: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7376: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7377: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502153606   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7378: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7379: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7380: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7381: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502153607   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7382: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7383: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #7384: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7385: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502153608   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7386: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7387: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7388: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7389: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502153609   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7390: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7391: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7392: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153601 (0x1dee4181)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:22 2017
            Not After : Mon May 02 15:35:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ad:af:1a:d2:7e:09:23:9a:e8:71:cd:83:d0:bc:23:0a:
                    8e:fc:f0:d0:18:bf:59:3f:39:d1:cc:a0:30:f0:d7:48:
                    a8:85:f8:31:47:39:0e:7d:8d:f2:3f:40:e8:52:2b:22:
                    43:d7:b3:07:44:49:7f:1f:66:23:5f:21:b1:36:7a:8a:
                    81:8d:86:e6:62:27:49:6e:0e:b5:06:ee:63:95:8e:18:
                    66:1e:0b:7d:7b:c4:aa:7d:e3:e6:94:f8:65:07:e7:d9:
                    c6:dd:24:58:a9:05:69:0d:a0:2f:07:ad:b2:b9:d0:98:
                    49:b9:73:fc:bf:d7:6a:86:c7:db:80:87:b4:74:1a:f2:
                    45:33:7b:d1:db:fa:fa:71:d2:a7:3f:94:5a:88:59:9b:
                    67:a7:d9:0f:6a:a9:08:9c:c5:6d:b1:19:6d:8e:1e:fe:
                    df:b3:9f:09:79:84:40:51:78:c7:e6:9c:47:db:10:15:
                    44:22:2c:16:8d:41:79:2c:70:56:07:71:cb:c2:9f:0c:
                    6e:26:26:24:ab:8a:25:74:8d:c2:40:a3:55:ea:3d:77:
                    95:98:76:ab:17:bc:f8:82:ca:f1:1e:3d:dd:2b:b6:ac:
                    cd:58:dd:ac:d9:8f:10:c9:01:92:4f:ba:d7:fb:f4:c7:
                    e8:68:46:11:b6:61:c5:5b:8f:b2:60:bf:8f:51:90:37
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:6a:67:dd:e8:d5:08:55:56:dd:5e:ce:99:
        6d:1e:52:ce:fa:09:21:89:c1:ac:c6:a3:3b:ad:1a:fe:
        02:1c:6e:b4:f0:ca:5b:43:c2:bc:da:56:a2:da:d8:73:
        3a:dd:e5:53:f3:8c:1b:97:7c:39:dc:17:4d:77
    Fingerprint (SHA-256):
        50:D3:ED:D5:88:4B:96:CF:81:1C:7A:C6:C1:CF:E1:6A:B4:66:60:57:6E:CD:7F:6D:B9:AE:2C:0B:DF:61:A9:DF
    Fingerprint (SHA1):
        25:0A:B4:26:B7:6F:44:92:7F:23:AC:8B:F6:3D:EA:84:95:B7:B4:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7393: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153601 (0x1dee4181)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:22 2017
            Not After : Mon May 02 15:35:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ad:af:1a:d2:7e:09:23:9a:e8:71:cd:83:d0:bc:23:0a:
                    8e:fc:f0:d0:18:bf:59:3f:39:d1:cc:a0:30:f0:d7:48:
                    a8:85:f8:31:47:39:0e:7d:8d:f2:3f:40:e8:52:2b:22:
                    43:d7:b3:07:44:49:7f:1f:66:23:5f:21:b1:36:7a:8a:
                    81:8d:86:e6:62:27:49:6e:0e:b5:06:ee:63:95:8e:18:
                    66:1e:0b:7d:7b:c4:aa:7d:e3:e6:94:f8:65:07:e7:d9:
                    c6:dd:24:58:a9:05:69:0d:a0:2f:07:ad:b2:b9:d0:98:
                    49:b9:73:fc:bf:d7:6a:86:c7:db:80:87:b4:74:1a:f2:
                    45:33:7b:d1:db:fa:fa:71:d2:a7:3f:94:5a:88:59:9b:
                    67:a7:d9:0f:6a:a9:08:9c:c5:6d:b1:19:6d:8e:1e:fe:
                    df:b3:9f:09:79:84:40:51:78:c7:e6:9c:47:db:10:15:
                    44:22:2c:16:8d:41:79:2c:70:56:07:71:cb:c2:9f:0c:
                    6e:26:26:24:ab:8a:25:74:8d:c2:40:a3:55:ea:3d:77:
                    95:98:76:ab:17:bc:f8:82:ca:f1:1e:3d:dd:2b:b6:ac:
                    cd:58:dd:ac:d9:8f:10:c9:01:92:4f:ba:d7:fb:f4:c7:
                    e8:68:46:11:b6:61:c5:5b:8f:b2:60:bf:8f:51:90:37
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:6a:67:dd:e8:d5:08:55:56:dd:5e:ce:99:
        6d:1e:52:ce:fa:09:21:89:c1:ac:c6:a3:3b:ad:1a:fe:
        02:1c:6e:b4:f0:ca:5b:43:c2:bc:da:56:a2:da:d8:73:
        3a:dd:e5:53:f3:8c:1b:97:7c:39:dc:17:4d:77
    Fingerprint (SHA-256):
        50:D3:ED:D5:88:4B:96:CF:81:1C:7A:C6:C1:CF:E1:6A:B4:66:60:57:6E:CD:7F:6D:B9:AE:2C:0B:DF:61:A9:DF
    Fingerprint (SHA1):
        25:0A:B4:26:B7:6F:44:92:7F:23:AC:8B:F6:3D:EA:84:95:B7:B4:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7394: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153601 (0x1dee4181)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:22 2017
            Not After : Mon May 02 15:35:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ad:af:1a:d2:7e:09:23:9a:e8:71:cd:83:d0:bc:23:0a:
                    8e:fc:f0:d0:18:bf:59:3f:39:d1:cc:a0:30:f0:d7:48:
                    a8:85:f8:31:47:39:0e:7d:8d:f2:3f:40:e8:52:2b:22:
                    43:d7:b3:07:44:49:7f:1f:66:23:5f:21:b1:36:7a:8a:
                    81:8d:86:e6:62:27:49:6e:0e:b5:06:ee:63:95:8e:18:
                    66:1e:0b:7d:7b:c4:aa:7d:e3:e6:94:f8:65:07:e7:d9:
                    c6:dd:24:58:a9:05:69:0d:a0:2f:07:ad:b2:b9:d0:98:
                    49:b9:73:fc:bf:d7:6a:86:c7:db:80:87:b4:74:1a:f2:
                    45:33:7b:d1:db:fa:fa:71:d2:a7:3f:94:5a:88:59:9b:
                    67:a7:d9:0f:6a:a9:08:9c:c5:6d:b1:19:6d:8e:1e:fe:
                    df:b3:9f:09:79:84:40:51:78:c7:e6:9c:47:db:10:15:
                    44:22:2c:16:8d:41:79:2c:70:56:07:71:cb:c2:9f:0c:
                    6e:26:26:24:ab:8a:25:74:8d:c2:40:a3:55:ea:3d:77:
                    95:98:76:ab:17:bc:f8:82:ca:f1:1e:3d:dd:2b:b6:ac:
                    cd:58:dd:ac:d9:8f:10:c9:01:92:4f:ba:d7:fb:f4:c7:
                    e8:68:46:11:b6:61:c5:5b:8f:b2:60:bf:8f:51:90:37
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:6a:67:dd:e8:d5:08:55:56:dd:5e:ce:99:
        6d:1e:52:ce:fa:09:21:89:c1:ac:c6:a3:3b:ad:1a:fe:
        02:1c:6e:b4:f0:ca:5b:43:c2:bc:da:56:a2:da:d8:73:
        3a:dd:e5:53:f3:8c:1b:97:7c:39:dc:17:4d:77
    Fingerprint (SHA-256):
        50:D3:ED:D5:88:4B:96:CF:81:1C:7A:C6:C1:CF:E1:6A:B4:66:60:57:6E:CD:7F:6D:B9:AE:2C:0B:DF:61:A9:DF
    Fingerprint (SHA1):
        25:0A:B4:26:B7:6F:44:92:7F:23:AC:8B:F6:3D:EA:84:95:B7:B4:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7395: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153601 (0x1dee4181)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:22 2017
            Not After : Mon May 02 15:35:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ad:af:1a:d2:7e:09:23:9a:e8:71:cd:83:d0:bc:23:0a:
                    8e:fc:f0:d0:18:bf:59:3f:39:d1:cc:a0:30:f0:d7:48:
                    a8:85:f8:31:47:39:0e:7d:8d:f2:3f:40:e8:52:2b:22:
                    43:d7:b3:07:44:49:7f:1f:66:23:5f:21:b1:36:7a:8a:
                    81:8d:86:e6:62:27:49:6e:0e:b5:06:ee:63:95:8e:18:
                    66:1e:0b:7d:7b:c4:aa:7d:e3:e6:94:f8:65:07:e7:d9:
                    c6:dd:24:58:a9:05:69:0d:a0:2f:07:ad:b2:b9:d0:98:
                    49:b9:73:fc:bf:d7:6a:86:c7:db:80:87:b4:74:1a:f2:
                    45:33:7b:d1:db:fa:fa:71:d2:a7:3f:94:5a:88:59:9b:
                    67:a7:d9:0f:6a:a9:08:9c:c5:6d:b1:19:6d:8e:1e:fe:
                    df:b3:9f:09:79:84:40:51:78:c7:e6:9c:47:db:10:15:
                    44:22:2c:16:8d:41:79:2c:70:56:07:71:cb:c2:9f:0c:
                    6e:26:26:24:ab:8a:25:74:8d:c2:40:a3:55:ea:3d:77:
                    95:98:76:ab:17:bc:f8:82:ca:f1:1e:3d:dd:2b:b6:ac:
                    cd:58:dd:ac:d9:8f:10:c9:01:92:4f:ba:d7:fb:f4:c7:
                    e8:68:46:11:b6:61:c5:5b:8f:b2:60:bf:8f:51:90:37
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:6a:67:dd:e8:d5:08:55:56:dd:5e:ce:99:
        6d:1e:52:ce:fa:09:21:89:c1:ac:c6:a3:3b:ad:1a:fe:
        02:1c:6e:b4:f0:ca:5b:43:c2:bc:da:56:a2:da:d8:73:
        3a:dd:e5:53:f3:8c:1b:97:7c:39:dc:17:4d:77
    Fingerprint (SHA-256):
        50:D3:ED:D5:88:4B:96:CF:81:1C:7A:C6:C1:CF:E1:6A:B4:66:60:57:6E:CD:7F:6D:B9:AE:2C:0B:DF:61:A9:DF
    Fingerprint (SHA1):
        25:0A:B4:26:B7:6F:44:92:7F:23:AC:8B:F6:3D:EA:84:95:B7:B4:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #7396: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7397: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7398: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7399: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7400: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7401: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7402: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7403: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7404: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7405: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7406: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7407: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7408: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7409: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7410: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7411: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #7412: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7413: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7414: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7415: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7416: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7417: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7418: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7419: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7420: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7421: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7422: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7423: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153526Z
nextupdate=20180502153526Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:35:26 2017
    Next Update: Wed May 02 15:35:26 2018
    CRL Extensions:
chains.sh: #7424: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153526Z
nextupdate=20180502153526Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:35:26 2017
    Next Update: Wed May 02 15:35:26 2018
    CRL Extensions:
chains.sh: #7425: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153526Z
nextupdate=20180502153526Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:35:26 2017
    Next Update: Wed May 02 15:35:26 2018
    CRL Extensions:
chains.sh: #7426: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153526Z
nextupdate=20180502153526Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:35:26 2017
    Next Update: Wed May 02 15:35:26 2018
    CRL Extensions:
chains.sh: #7427: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153527Z
addcert 14 20170502153527Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:35:27 2017
    Next Update: Wed May 02 15:35:26 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:35:27 2017
    CRL Extensions:
chains.sh: #7428: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153528Z
addcert 15 20170502153528Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:35:28 2017
    Next Update: Wed May 02 15:35:26 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:35:28 2017
    CRL Extensions:
chains.sh: #7429: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7430: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7431: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7432: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #7433: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #7434: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #7435: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #7436: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #7437: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #7438: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:24 2017
            Not After : Mon May 02 15:35:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:11:71:38:ec:2d:a6:a3:c1:b9:64:b5:72:24:11:c1:
                    36:de:aa:c2:a0:fa:c8:8d:d2:88:8d:2b:82:db:b3:24:
                    78:d9:11:be:22:4d:86:28:fe:29:33:80:03:23:c3:1e:
                    60:86:e3:ac:5c:14:bd:b4:9b:2a:bd:a5:4b:12:b0:49:
                    ff:f6:eb:86:bd:c2:2f:40:99:e3:87:e8:b5:ed:e7:56:
                    c0:a4:3c:6f:4b:b4:a7:65:45:53:89:09:58:ea:37:22:
                    ae:bc:62:68:b7:03:35:17:89:16:4d:3b:a4:5d:65:e3:
                    f9:06:c7:0a:f9:b2:d6:1b:af:70:9e:79:19:d8:d9:42:
                    73:25:68:d6:d3:82:c9:eb:35:48:5b:e3:3c:72:cb:3f:
                    31:07:33:dd:d7:1d:f4:50:c9:6b:e2:90:74:dc:9c:39:
                    21:a7:7a:af:26:11:2c:01:26:f2:12:0b:65:16:b5:81:
                    da:ec:38:f4:5e:f5:ae:47:5e:d5:a0:e4:f0:9c:90:5a:
                    ed:54:03:31:ab:da:88:60:b6:24:86:60:32:f3:54:ea:
                    95:68:aa:be:98:f3:6a:71:85:58:dc:f5:77:bb:64:75:
                    b3:94:74:ea:3d:8d:a7:11:66:8a:58:6e:4a:05:49:9c:
                    44:38:60:b5:51:0d:8a:03:3c:6d:a7:35:4e:50:a0:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:1a:95:3c:09:27:87:b0:ec:9d:c9:9f:6c:76:45:2c:
        c3:3e:73:d8:ca:2f:2f:96:44:32:f2:2d:bd:bc:30:0a:
        c9:18:34:b7:0b:7e:cf:12:38:a3:66:bb:de:8c:04:d5:
        73:b3:da:30:0f:16:61:a3:4b:69:f5:6b:ee:f3:cb:17:
        c8:9b:c4:77:10:e4:11:54:33:f7:3b:d8:86:11:c9:24:
        f5:c1:9e:5b:b6:d4:1d:53:d3:ec:5c:4e:b5:46:a6:6e:
        25:1c:44:4c:2e:34:02:ef:cd:c3:8a:6f:ba:20:95:83:
        e1:e7:a8:fb:5e:00:ae:10:1b:fb:4d:8e:7f:5c:15:b6:
        03:e9:66:02:98:67:25:24:ac:d0:38:a4:f0:c5:84:49:
        34:2e:a8:a8:a6:41:57:fa:b4:07:90:14:08:14:bc:f0:
        08:ac:31:62:2a:d5:ba:2e:be:30:3a:fa:bb:61:24:d6:
        50:5b:da:0a:ae:e9:7e:37:e3:d3:f0:b5:4d:f9:2a:09:
        22:64:33:d7:62:50:62:84:1c:26:8a:fc:fe:fc:7b:9e:
        14:12:73:9f:b8:13:ee:35:f5:6e:2c:df:cf:21:9f:20:
        ad:d4:3c:9d:7d:85:59:8d:55:e8:7e:86:18:bc:a1:29:
        b6:52:51:73:b3:56:d3:71:7d:e5:9b:8e:b7:86:24:c5
    Fingerprint (SHA-256):
        F8:E1:43:27:8A:C3:44:F5:57:91:28:70:FA:F2:C1:5C:B0:11:62:8E:08:C4:E7:87:3B:30:39:32:28:35:C4:CB
    Fingerprint (SHA1):
        71:C7:B2:E0:7C:61:A3:8D:19:0C:ED:50:BC:4C:DD:E1:62:38:ED:A8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7439: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7440: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:24 2017
            Not After : Mon May 02 15:35:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:11:71:38:ec:2d:a6:a3:c1:b9:64:b5:72:24:11:c1:
                    36:de:aa:c2:a0:fa:c8:8d:d2:88:8d:2b:82:db:b3:24:
                    78:d9:11:be:22:4d:86:28:fe:29:33:80:03:23:c3:1e:
                    60:86:e3:ac:5c:14:bd:b4:9b:2a:bd:a5:4b:12:b0:49:
                    ff:f6:eb:86:bd:c2:2f:40:99:e3:87:e8:b5:ed:e7:56:
                    c0:a4:3c:6f:4b:b4:a7:65:45:53:89:09:58:ea:37:22:
                    ae:bc:62:68:b7:03:35:17:89:16:4d:3b:a4:5d:65:e3:
                    f9:06:c7:0a:f9:b2:d6:1b:af:70:9e:79:19:d8:d9:42:
                    73:25:68:d6:d3:82:c9:eb:35:48:5b:e3:3c:72:cb:3f:
                    31:07:33:dd:d7:1d:f4:50:c9:6b:e2:90:74:dc:9c:39:
                    21:a7:7a:af:26:11:2c:01:26:f2:12:0b:65:16:b5:81:
                    da:ec:38:f4:5e:f5:ae:47:5e:d5:a0:e4:f0:9c:90:5a:
                    ed:54:03:31:ab:da:88:60:b6:24:86:60:32:f3:54:ea:
                    95:68:aa:be:98:f3:6a:71:85:58:dc:f5:77:bb:64:75:
                    b3:94:74:ea:3d:8d:a7:11:66:8a:58:6e:4a:05:49:9c:
                    44:38:60:b5:51:0d:8a:03:3c:6d:a7:35:4e:50:a0:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:1a:95:3c:09:27:87:b0:ec:9d:c9:9f:6c:76:45:2c:
        c3:3e:73:d8:ca:2f:2f:96:44:32:f2:2d:bd:bc:30:0a:
        c9:18:34:b7:0b:7e:cf:12:38:a3:66:bb:de:8c:04:d5:
        73:b3:da:30:0f:16:61:a3:4b:69:f5:6b:ee:f3:cb:17:
        c8:9b:c4:77:10:e4:11:54:33:f7:3b:d8:86:11:c9:24:
        f5:c1:9e:5b:b6:d4:1d:53:d3:ec:5c:4e:b5:46:a6:6e:
        25:1c:44:4c:2e:34:02:ef:cd:c3:8a:6f:ba:20:95:83:
        e1:e7:a8:fb:5e:00:ae:10:1b:fb:4d:8e:7f:5c:15:b6:
        03:e9:66:02:98:67:25:24:ac:d0:38:a4:f0:c5:84:49:
        34:2e:a8:a8:a6:41:57:fa:b4:07:90:14:08:14:bc:f0:
        08:ac:31:62:2a:d5:ba:2e:be:30:3a:fa:bb:61:24:d6:
        50:5b:da:0a:ae:e9:7e:37:e3:d3:f0:b5:4d:f9:2a:09:
        22:64:33:d7:62:50:62:84:1c:26:8a:fc:fe:fc:7b:9e:
        14:12:73:9f:b8:13:ee:35:f5:6e:2c:df:cf:21:9f:20:
        ad:d4:3c:9d:7d:85:59:8d:55:e8:7e:86:18:bc:a1:29:
        b6:52:51:73:b3:56:d3:71:7d:e5:9b:8e:b7:86:24:c5
    Fingerprint (SHA-256):
        F8:E1:43:27:8A:C3:44:F5:57:91:28:70:FA:F2:C1:5C:B0:11:62:8E:08:C4:E7:87:3B:30:39:32:28:35:C4:CB
    Fingerprint (SHA1):
        71:C7:B2:E0:7C:61:A3:8D:19:0C:ED:50:BC:4C:DD:E1:62:38:ED:A8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7441: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7442: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7443: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153610 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7444: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7445: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7446: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7447: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502153611   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7448: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7449: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7450: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7451: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502153356.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7452: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7453: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7454: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7455: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502153612   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7456: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7457: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7458: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7459: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502153357.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7460: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7461: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7462: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7463: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502153613   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7464: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7465: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7466: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7467: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502153358.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7468: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7469: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7470: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502153382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7471: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502153359.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7472: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7473: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153531Z
nextupdate=20180502153531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:35:31 2017
    Next Update: Wed May 02 15:35:31 2018
    CRL Extensions:
chains.sh: #7474: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153531Z
nextupdate=20180502153531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:35:31 2017
    Next Update: Wed May 02 15:35:31 2018
    CRL Extensions:
chains.sh: #7475: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153531Z
nextupdate=20180502153531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:35:31 2017
    Next Update: Wed May 02 15:35:31 2018
    CRL Extensions:
chains.sh: #7476: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153531Z
nextupdate=20180502153531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:35:31 2017
    Next Update: Wed May 02 15:35:31 2018
    CRL Extensions:
chains.sh: #7477: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153532Z
addcert 20 20170502153532Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:35:32 2017
    Next Update: Wed May 02 15:35:31 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:35:32 2017
    CRL Extensions:
chains.sh: #7478: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153533Z
addcert 40 20170502153533Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:35:33 2017
    Next Update: Wed May 02 15:35:31 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:35:32 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:35:33 2017
    CRL Extensions:
chains.sh: #7479: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7480: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7481: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7482: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153610 (0x1dee418a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:29 2017
            Not After : Mon May 02 15:35:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:e2:46:87:7b:3d:65:d8:c8:b3:76:61:9a:ba:57:7c:
                    4e:99:1c:b5:41:27:bb:c8:04:f6:c4:17:a4:8f:09:ea:
                    ed:e7:2f:df:a4:4e:7f:e4:9a:6c:7d:7c:60:7a:b2:22:
                    5a:72:e1:cc:5c:5f:f2:75:07:8d:d2:3b:e5:8f:1f:ac:
                    6c:74:95:d1:1b:57:a1:26:f4:a7:db:ef:c8:df:70:ad:
                    91:6a:86:9a:dc:a2:38:67:8b:a1:b5:1d:01:da:a7:93:
                    73:fa:d6:8c:8e:19:18:5e:0c:83:f9:de:76:74:f5:7d:
                    f3:7f:7d:55:80:17:29:0d:4c:23:fa:47:c0:9e:57:b8:
                    b2:00:ff:23:77:7b:b6:f5:b0:21:02:cd:2b:a8:6c:46:
                    46:3c:1a:ef:b4:8c:d8:81:a8:c6:53:6b:5c:19:fa:f7:
                    cb:84:a9:a7:f1:41:32:db:f2:fd:6b:a9:2a:08:c2:aa:
                    e7:a3:2d:11:a1:e5:45:9a:96:d2:64:3d:7e:e1:e9:48:
                    f4:71:1b:2b:27:f0:6b:61:f9:c7:35:62:35:80:8a:9e:
                    e9:60:16:e2:b7:c6:b1:79:06:6e:b0:72:a3:4a:d4:41:
                    cd:e0:5c:26:7a:d3:5e:d1:58:d6:92:5f:ad:8b:2e:8c:
                    46:f2:7b:8c:c7:9d:b4:55:4c:2c:c1:c8:15:d4:cb:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:64:14:ea:77:1e:af:2b:de:32:81:a5:ea:0c:8c:8a:
        01:45:c5:11:83:49:2b:ed:b5:d8:39:e3:e1:b1:ba:87:
        aa:08:87:0b:70:22:a5:06:85:ec:76:02:52:a5:78:d8:
        85:2a:c4:e2:cf:73:c0:a1:a7:fc:c0:c2:ea:6c:8f:e5:
        76:af:77:b7:08:d7:1d:aa:1a:bd:ad:72:67:f5:3e:26:
        27:3b:f9:5a:8e:ab:49:2e:ba:41:9c:2c:07:e4:3f:4e:
        6f:3c:2e:f5:34:d3:27:39:45:b2:36:0c:8f:db:67:e9:
        b9:83:4e:a1:79:4f:d7:36:38:37:7f:b7:32:64:65:17:
        04:b0:2c:f9:0f:f1:9c:8c:ad:70:21:4a:c0:7a:a4:58:
        2e:89:38:f9:41:7a:ae:38:48:7c:00:d4:e1:cc:d4:d4:
        e9:4c:bc:22:be:07:f8:26:d5:8c:1f:22:cf:e3:bb:be:
        b3:ed:6e:61:80:ba:54:9c:89:13:20:6f:4d:7f:55:9a:
        f7:8a:89:a8:42:ef:04:e4:2b:ce:11:34:7b:32:23:30:
        f1:7f:94:b8:76:d5:5a:99:f7:0c:ef:7d:8c:e0:99:49:
        04:db:9c:7e:4e:48:78:6d:d9:8f:73:f0:5a:0d:0e:98:
        1a:fc:c9:06:66:b1:6f:d7:36:9f:66:e6:ea:5e:4d:0a
    Fingerprint (SHA-256):
        45:0A:4B:51:B0:20:CB:9E:96:46:90:C1:32:F0:64:95:78:94:83:20:C9:64:65:7B:2E:70:FC:C4:E0:9B:45:2A
    Fingerprint (SHA1):
        6E:B1:2B:04:39:15:9B:E9:B6:2D:83:82:FB:57:61:3B:6B:4F:6B:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7483: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7484: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153610 (0x1dee418a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:35:29 2017
            Not After : Mon May 02 15:35:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:e2:46:87:7b:3d:65:d8:c8:b3:76:61:9a:ba:57:7c:
                    4e:99:1c:b5:41:27:bb:c8:04:f6:c4:17:a4:8f:09:ea:
                    ed:e7:2f:df:a4:4e:7f:e4:9a:6c:7d:7c:60:7a:b2:22:
                    5a:72:e1:cc:5c:5f:f2:75:07:8d:d2:3b:e5:8f:1f:ac:
                    6c:74:95:d1:1b:57:a1:26:f4:a7:db:ef:c8:df:70:ad:
                    91:6a:86:9a:dc:a2:38:67:8b:a1:b5:1d:01:da:a7:93:
                    73:fa:d6:8c:8e:19:18:5e:0c:83:f9:de:76:74:f5:7d:
                    f3:7f:7d:55:80:17:29:0d:4c:23:fa:47:c0:9e:57:b8:
                    b2:00:ff:23:77:7b:b6:f5:b0:21:02:cd:2b:a8:6c:46:
                    46:3c:1a:ef:b4:8c:d8:81:a8:c6:53:6b:5c:19:fa:f7:
                    cb:84:a9:a7:f1:41:32:db:f2:fd:6b:a9:2a:08:c2:aa:
                    e7:a3:2d:11:a1:e5:45:9a:96:d2:64:3d:7e:e1:e9:48:
                    f4:71:1b:2b:27:f0:6b:61:f9:c7:35:62:35:80:8a:9e:
                    e9:60:16:e2:b7:c6:b1:79:06:6e:b0:72:a3:4a:d4:41:
                    cd:e0:5c:26:7a:d3:5e:d1:58:d6:92:5f:ad:8b:2e:8c:
                    46:f2:7b:8c:c7:9d:b4:55:4c:2c:c1:c8:15:d4:cb:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:64:14:ea:77:1e:af:2b:de:32:81:a5:ea:0c:8c:8a:
        01:45:c5:11:83:49:2b:ed:b5:d8:39:e3:e1:b1:ba:87:
        aa:08:87:0b:70:22:a5:06:85:ec:76:02:52:a5:78:d8:
        85:2a:c4:e2:cf:73:c0:a1:a7:fc:c0:c2:ea:6c:8f:e5:
        76:af:77:b7:08:d7:1d:aa:1a:bd:ad:72:67:f5:3e:26:
        27:3b:f9:5a:8e:ab:49:2e:ba:41:9c:2c:07:e4:3f:4e:
        6f:3c:2e:f5:34:d3:27:39:45:b2:36:0c:8f:db:67:e9:
        b9:83:4e:a1:79:4f:d7:36:38:37:7f:b7:32:64:65:17:
        04:b0:2c:f9:0f:f1:9c:8c:ad:70:21:4a:c0:7a:a4:58:
        2e:89:38:f9:41:7a:ae:38:48:7c:00:d4:e1:cc:d4:d4:
        e9:4c:bc:22:be:07:f8:26:d5:8c:1f:22:cf:e3:bb:be:
        b3:ed:6e:61:80:ba:54:9c:89:13:20:6f:4d:7f:55:9a:
        f7:8a:89:a8:42:ef:04:e4:2b:ce:11:34:7b:32:23:30:
        f1:7f:94:b8:76:d5:5a:99:f7:0c:ef:7d:8c:e0:99:49:
        04:db:9c:7e:4e:48:78:6d:d9:8f:73:f0:5a:0d:0e:98:
        1a:fc:c9:06:66:b1:6f:d7:36:9f:66:e6:ea:5e:4d:0a
    Fingerprint (SHA-256):
        45:0A:4B:51:B0:20:CB:9E:96:46:90:C1:32:F0:64:95:78:94:83:20:C9:64:65:7B:2E:70:FC:C4:E0:9B:45:2A
    Fingerprint (SHA1):
        6E:B1:2B:04:39:15:9B:E9:B6:2D:83:82:FB:57:61:3B:6B:4F:6B:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7485: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7486: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7487: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153614 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7488: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7489: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7490: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7491: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153615   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7492: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7493: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7494: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7495: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153616   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7496: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7497: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7498: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7499: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502153617   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7500: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7501: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #7502: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153618 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7503: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #7504: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #7505: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7506: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502153619   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7507: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7508: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7509: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7510: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502153620   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7511: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7512: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #7513: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #7514: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #7515: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153614 (0x1dee418e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:35:34 2017
            Not After : Mon May 02 15:35:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:08:84:c6:04:cf:e4:e7:04:08:c8:0f:20:04:32:f0:
                    fb:69:86:15:a1:8c:27:56:de:85:d0:b7:9a:77:3e:84:
                    65:14:ae:b8:f1:50:b4:ef:94:3b:50:12:11:95:84:7c:
                    0c:4d:df:ef:c3:bd:38:f8:88:89:18:8f:e7:cc:c0:7d:
                    4c:53:99:8e:e4:18:00:14:41:1f:88:43:c5:81:6f:99:
                    48:5b:f8:9a:c7:20:e1:fb:67:a3:d7:8a:40:78:db:24:
                    fe:67:e4:f1:16:86:73:05:0e:21:81:6f:f3:7c:f1:dc:
                    69:10:c2:52:c4:39:d8:77:f8:1a:8c:49:a3:24:04:62:
                    88:88:7b:62:cd:4b:0e:7f:01:cb:b8:f3:18:2e:f7:a5:
                    68:b2:ee:21:21:ed:73:52:ef:c8:1f:f2:e9:db:d3:76:
                    e0:3a:63:e3:31:59:0c:e5:b1:de:25:80:c5:ca:d6:36:
                    2f:1c:14:d7:4b:1f:cf:b8:05:e8:e2:7c:92:7d:ff:b0:
                    85:65:ef:2e:97:16:cf:b7:b9:9a:1a:3a:12:b1:ba:13:
                    47:a5:31:9f:7c:76:80:2e:8e:25:26:33:95:d4:fe:29:
                    0d:91:ec:ed:61:c5:c0:99:0f:eb:fc:90:50:93:d9:c4:
                    ec:77:de:2a:b3:25:b0:9d:fd:e5:50:7f:7c:f5:2f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:9a:73:63:be:89:97:e2:2b:de:de:84:fb:a6:f4:f8:
        e4:49:c1:e2:ab:de:ad:54:0e:da:f3:e9:a4:cc:c9:a3:
        09:74:39:3d:80:e8:3c:79:68:7d:7b:e7:a2:cb:71:53:
        9d:14:39:27:7a:cc:b8:35:4f:90:cc:7e:c1:1c:5e:8e:
        3a:3c:58:32:24:0a:df:72:83:b9:5a:e2:00:f1:2f:67:
        9d:ec:a5:11:68:3f:09:a4:92:87:be:c8:3b:c7:9a:7d:
        ff:30:db:ba:69:25:c0:b8:75:e8:d8:b1:22:45:96:c5:
        1b:dc:df:9c:aa:d7:e7:f7:67:5f:d1:8b:0c:bc:e8:34:
        28:e4:1c:b3:fe:5a:9c:79:77:06:80:24:e8:6c:df:79:
        45:a0:32:94:f1:81:b8:43:27:20:41:1f:b9:97:f8:84:
        77:e3:a3:6c:4f:2c:73:d5:b4:05:b6:3d:a7:a2:99:e7:
        b3:70:b4:1b:78:5b:50:56:00:54:63:15:21:db:8c:1f:
        eb:7b:68:d9:9b:90:77:35:36:b6:8b:c8:df:52:b3:ef:
        60:ce:14:bd:44:f0:8a:1c:4f:af:96:40:d6:0e:4a:d5:
        05:35:bf:c0:bc:48:0c:a4:41:d0:ff:41:52:cb:e7:4e:
        d3:bc:b7:5c:53:55:b4:34:e7:d6:83:45:3e:07:af:6d
    Fingerprint (SHA-256):
        11:44:EE:FF:7B:E2:D6:28:3D:26:63:F2:6F:1D:61:A7:B4:52:08:AC:5A:0D:23:41:23:3B:A6:4F:29:AB:2A:C7
    Fingerprint (SHA1):
        A5:2E:FD:7D:5A:1A:A5:A4:89:7F:CF:73:EB:4F:E6:BC:BD:F4:06:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7516: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153616 (0x1dee4190)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:35:35 2017
            Not After : Mon May 02 15:35:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:6e:ab:ff:2f:69:ea:24:cc:a5:5c:3e:77:24:9d:db:
                    2e:f0:cf:cf:d2:42:95:e5:3c:e4:b6:b5:6f:eb:fc:c9:
                    3d:b6:7a:87:d4:e4:69:f1:c7:4a:82:51:6d:06:b1:8d:
                    8e:fd:4c:e3:af:fa:49:9c:00:78:49:46:c8:39:53:84:
                    07:4e:eb:66:92:37:4b:c3:bf:1d:fc:b7:7e:c2:f5:2a:
                    6e:4a:fc:85:f7:f7:98:f3:5b:38:1e:99:bb:fe:0a:5b:
                    1b:72:d6:11:0f:e9:b1:2a:3c:f4:66:f0:1a:7a:b2:9c:
                    bc:61:28:fe:41:f5:b9:ff:fc:fd:c2:f6:9d:a3:4a:63:
                    33:c1:b6:93:e9:0a:ed:31:33:ba:b5:81:e5:b8:02:43:
                    aa:3c:03:81:d6:ac:42:c0:a1:01:94:7b:29:1b:8f:53:
                    19:d8:f1:7f:14:52:ad:40:80:2c:48:ff:90:78:b6:03:
                    58:95:12:cf:a3:a3:38:85:59:ec:c3:af:ef:27:ac:8c:
                    83:81:cd:7e:a2:32:a2:98:57:49:2b:f5:ba:8e:41:00:
                    c7:16:a9:69:2f:99:09:6b:f3:f2:b9:8c:f8:7c:bf:03:
                    6f:af:66:48:45:01:10:94:2a:ad:dd:6c:7d:15:c9:24:
                    91:19:8a:da:28:10:3f:08:33:fb:a5:87:34:ca:9d:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:b7:20:99:d2:d3:19:54:99:ed:88:6b:fc:a9:0c:0f:
        df:72:e2:ef:e9:bc:77:b7:3b:2d:1a:45:53:0b:c9:a9:
        c1:4c:bd:c9:64:78:b7:1e:0c:2a:6b:ec:61:bc:76:64:
        85:48:7e:5c:59:3d:8c:19:a6:8a:d1:a4:06:fb:d2:b0:
        20:f0:f5:7d:9a:0d:af:15:4a:64:1c:01:68:8e:cc:0f:
        8c:92:67:6b:eb:55:fb:ed:5b:81:8b:fe:7f:2e:5f:ea:
        8f:84:33:7d:07:c7:7b:55:61:5d:0e:fd:99:7f:1b:09:
        0f:ea:b5:b1:c5:24:12:16:fc:57:a4:a8:15:7b:36:9e:
        11:4f:2e:df:2c:0f:18:bf:cf:3b:8d:93:a2:84:aa:8d:
        d0:32:90:ec:7e:39:02:f1:95:14:04:25:09:32:95:92:
        89:4d:57:15:07:16:25:02:a3:54:50:0c:a8:97:57:ed:
        52:0e:44:19:54:3c:58:84:b8:e9:31:d3:fb:77:64:df:
        d1:43:7f:29:18:93:2d:a2:19:1b:c5:0c:da:a8:df:58:
        92:48:33:0d:15:99:8d:55:1b:2f:a8:6b:be:bf:5c:0b:
        be:b3:34:3d:8b:18:a2:81:1a:e5:fe:44:57:16:f9:59:
        14:49:c6:c7:b6:c6:7e:e4:c2:42:1a:fb:c3:66:f3:f4
    Fingerprint (SHA-256):
        F6:FA:35:6C:F6:74:F7:92:06:B4:26:DF:87:C3:B9:67:38:A2:3E:3C:CB:83:8F:92:5D:73:C9:FE:38:DE:01:51
    Fingerprint (SHA1):
        48:7B:AE:FF:74:26:25:44:B5:98:C5:CA:A2:59:23:FE:0B:1A:2B:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7517: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153614 (0x1dee418e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:35:34 2017
            Not After : Mon May 02 15:35:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:08:84:c6:04:cf:e4:e7:04:08:c8:0f:20:04:32:f0:
                    fb:69:86:15:a1:8c:27:56:de:85:d0:b7:9a:77:3e:84:
                    65:14:ae:b8:f1:50:b4:ef:94:3b:50:12:11:95:84:7c:
                    0c:4d:df:ef:c3:bd:38:f8:88:89:18:8f:e7:cc:c0:7d:
                    4c:53:99:8e:e4:18:00:14:41:1f:88:43:c5:81:6f:99:
                    48:5b:f8:9a:c7:20:e1:fb:67:a3:d7:8a:40:78:db:24:
                    fe:67:e4:f1:16:86:73:05:0e:21:81:6f:f3:7c:f1:dc:
                    69:10:c2:52:c4:39:d8:77:f8:1a:8c:49:a3:24:04:62:
                    88:88:7b:62:cd:4b:0e:7f:01:cb:b8:f3:18:2e:f7:a5:
                    68:b2:ee:21:21:ed:73:52:ef:c8:1f:f2:e9:db:d3:76:
                    e0:3a:63:e3:31:59:0c:e5:b1:de:25:80:c5:ca:d6:36:
                    2f:1c:14:d7:4b:1f:cf:b8:05:e8:e2:7c:92:7d:ff:b0:
                    85:65:ef:2e:97:16:cf:b7:b9:9a:1a:3a:12:b1:ba:13:
                    47:a5:31:9f:7c:76:80:2e:8e:25:26:33:95:d4:fe:29:
                    0d:91:ec:ed:61:c5:c0:99:0f:eb:fc:90:50:93:d9:c4:
                    ec:77:de:2a:b3:25:b0:9d:fd:e5:50:7f:7c:f5:2f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:9a:73:63:be:89:97:e2:2b:de:de:84:fb:a6:f4:f8:
        e4:49:c1:e2:ab:de:ad:54:0e:da:f3:e9:a4:cc:c9:a3:
        09:74:39:3d:80:e8:3c:79:68:7d:7b:e7:a2:cb:71:53:
        9d:14:39:27:7a:cc:b8:35:4f:90:cc:7e:c1:1c:5e:8e:
        3a:3c:58:32:24:0a:df:72:83:b9:5a:e2:00:f1:2f:67:
        9d:ec:a5:11:68:3f:09:a4:92:87:be:c8:3b:c7:9a:7d:
        ff:30:db:ba:69:25:c0:b8:75:e8:d8:b1:22:45:96:c5:
        1b:dc:df:9c:aa:d7:e7:f7:67:5f:d1:8b:0c:bc:e8:34:
        28:e4:1c:b3:fe:5a:9c:79:77:06:80:24:e8:6c:df:79:
        45:a0:32:94:f1:81:b8:43:27:20:41:1f:b9:97:f8:84:
        77:e3:a3:6c:4f:2c:73:d5:b4:05:b6:3d:a7:a2:99:e7:
        b3:70:b4:1b:78:5b:50:56:00:54:63:15:21:db:8c:1f:
        eb:7b:68:d9:9b:90:77:35:36:b6:8b:c8:df:52:b3:ef:
        60:ce:14:bd:44:f0:8a:1c:4f:af:96:40:d6:0e:4a:d5:
        05:35:bf:c0:bc:48:0c:a4:41:d0:ff:41:52:cb:e7:4e:
        d3:bc:b7:5c:53:55:b4:34:e7:d6:83:45:3e:07:af:6d
    Fingerprint (SHA-256):
        11:44:EE:FF:7B:E2:D6:28:3D:26:63:F2:6F:1D:61:A7:B4:52:08:AC:5A:0D:23:41:23:3B:A6:4F:29:AB:2A:C7
    Fingerprint (SHA1):
        A5:2E:FD:7D:5A:1A:A5:A4:89:7F:CF:73:EB:4F:E6:BC:BD:F4:06:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7518: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #7519: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153614 (0x1dee418e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:35:34 2017
            Not After : Mon May 02 15:35:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:08:84:c6:04:cf:e4:e7:04:08:c8:0f:20:04:32:f0:
                    fb:69:86:15:a1:8c:27:56:de:85:d0:b7:9a:77:3e:84:
                    65:14:ae:b8:f1:50:b4:ef:94:3b:50:12:11:95:84:7c:
                    0c:4d:df:ef:c3:bd:38:f8:88:89:18:8f:e7:cc:c0:7d:
                    4c:53:99:8e:e4:18:00:14:41:1f:88:43:c5:81:6f:99:
                    48:5b:f8:9a:c7:20:e1:fb:67:a3:d7:8a:40:78:db:24:
                    fe:67:e4:f1:16:86:73:05:0e:21:81:6f:f3:7c:f1:dc:
                    69:10:c2:52:c4:39:d8:77:f8:1a:8c:49:a3:24:04:62:
                    88:88:7b:62:cd:4b:0e:7f:01:cb:b8:f3:18:2e:f7:a5:
                    68:b2:ee:21:21:ed:73:52:ef:c8:1f:f2:e9:db:d3:76:
                    e0:3a:63:e3:31:59:0c:e5:b1:de:25:80:c5:ca:d6:36:
                    2f:1c:14:d7:4b:1f:cf:b8:05:e8:e2:7c:92:7d:ff:b0:
                    85:65:ef:2e:97:16:cf:b7:b9:9a:1a:3a:12:b1:ba:13:
                    47:a5:31:9f:7c:76:80:2e:8e:25:26:33:95:d4:fe:29:
                    0d:91:ec:ed:61:c5:c0:99:0f:eb:fc:90:50:93:d9:c4:
                    ec:77:de:2a:b3:25:b0:9d:fd:e5:50:7f:7c:f5:2f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:9a:73:63:be:89:97:e2:2b:de:de:84:fb:a6:f4:f8:
        e4:49:c1:e2:ab:de:ad:54:0e:da:f3:e9:a4:cc:c9:a3:
        09:74:39:3d:80:e8:3c:79:68:7d:7b:e7:a2:cb:71:53:
        9d:14:39:27:7a:cc:b8:35:4f:90:cc:7e:c1:1c:5e:8e:
        3a:3c:58:32:24:0a:df:72:83:b9:5a:e2:00:f1:2f:67:
        9d:ec:a5:11:68:3f:09:a4:92:87:be:c8:3b:c7:9a:7d:
        ff:30:db:ba:69:25:c0:b8:75:e8:d8:b1:22:45:96:c5:
        1b:dc:df:9c:aa:d7:e7:f7:67:5f:d1:8b:0c:bc:e8:34:
        28:e4:1c:b3:fe:5a:9c:79:77:06:80:24:e8:6c:df:79:
        45:a0:32:94:f1:81:b8:43:27:20:41:1f:b9:97:f8:84:
        77:e3:a3:6c:4f:2c:73:d5:b4:05:b6:3d:a7:a2:99:e7:
        b3:70:b4:1b:78:5b:50:56:00:54:63:15:21:db:8c:1f:
        eb:7b:68:d9:9b:90:77:35:36:b6:8b:c8:df:52:b3:ef:
        60:ce:14:bd:44:f0:8a:1c:4f:af:96:40:d6:0e:4a:d5:
        05:35:bf:c0:bc:48:0c:a4:41:d0:ff:41:52:cb:e7:4e:
        d3:bc:b7:5c:53:55:b4:34:e7:d6:83:45:3e:07:af:6d
    Fingerprint (SHA-256):
        11:44:EE:FF:7B:E2:D6:28:3D:26:63:F2:6F:1D:61:A7:B4:52:08:AC:5A:0D:23:41:23:3B:A6:4F:29:AB:2A:C7
    Fingerprint (SHA1):
        A5:2E:FD:7D:5A:1A:A5:A4:89:7F:CF:73:EB:4F:E6:BC:BD:F4:06:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7520: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153616 (0x1dee4190)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:35:35 2017
            Not After : Mon May 02 15:35:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:6e:ab:ff:2f:69:ea:24:cc:a5:5c:3e:77:24:9d:db:
                    2e:f0:cf:cf:d2:42:95:e5:3c:e4:b6:b5:6f:eb:fc:c9:
                    3d:b6:7a:87:d4:e4:69:f1:c7:4a:82:51:6d:06:b1:8d:
                    8e:fd:4c:e3:af:fa:49:9c:00:78:49:46:c8:39:53:84:
                    07:4e:eb:66:92:37:4b:c3:bf:1d:fc:b7:7e:c2:f5:2a:
                    6e:4a:fc:85:f7:f7:98:f3:5b:38:1e:99:bb:fe:0a:5b:
                    1b:72:d6:11:0f:e9:b1:2a:3c:f4:66:f0:1a:7a:b2:9c:
                    bc:61:28:fe:41:f5:b9:ff:fc:fd:c2:f6:9d:a3:4a:63:
                    33:c1:b6:93:e9:0a:ed:31:33:ba:b5:81:e5:b8:02:43:
                    aa:3c:03:81:d6:ac:42:c0:a1:01:94:7b:29:1b:8f:53:
                    19:d8:f1:7f:14:52:ad:40:80:2c:48:ff:90:78:b6:03:
                    58:95:12:cf:a3:a3:38:85:59:ec:c3:af:ef:27:ac:8c:
                    83:81:cd:7e:a2:32:a2:98:57:49:2b:f5:ba:8e:41:00:
                    c7:16:a9:69:2f:99:09:6b:f3:f2:b9:8c:f8:7c:bf:03:
                    6f:af:66:48:45:01:10:94:2a:ad:dd:6c:7d:15:c9:24:
                    91:19:8a:da:28:10:3f:08:33:fb:a5:87:34:ca:9d:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:b7:20:99:d2:d3:19:54:99:ed:88:6b:fc:a9:0c:0f:
        df:72:e2:ef:e9:bc:77:b7:3b:2d:1a:45:53:0b:c9:a9:
        c1:4c:bd:c9:64:78:b7:1e:0c:2a:6b:ec:61:bc:76:64:
        85:48:7e:5c:59:3d:8c:19:a6:8a:d1:a4:06:fb:d2:b0:
        20:f0:f5:7d:9a:0d:af:15:4a:64:1c:01:68:8e:cc:0f:
        8c:92:67:6b:eb:55:fb:ed:5b:81:8b:fe:7f:2e:5f:ea:
        8f:84:33:7d:07:c7:7b:55:61:5d:0e:fd:99:7f:1b:09:
        0f:ea:b5:b1:c5:24:12:16:fc:57:a4:a8:15:7b:36:9e:
        11:4f:2e:df:2c:0f:18:bf:cf:3b:8d:93:a2:84:aa:8d:
        d0:32:90:ec:7e:39:02:f1:95:14:04:25:09:32:95:92:
        89:4d:57:15:07:16:25:02:a3:54:50:0c:a8:97:57:ed:
        52:0e:44:19:54:3c:58:84:b8:e9:31:d3:fb:77:64:df:
        d1:43:7f:29:18:93:2d:a2:19:1b:c5:0c:da:a8:df:58:
        92:48:33:0d:15:99:8d:55:1b:2f:a8:6b:be:bf:5c:0b:
        be:b3:34:3d:8b:18:a2:81:1a:e5:fe:44:57:16:f9:59:
        14:49:c6:c7:b6:c6:7e:e4:c2:42:1a:fb:c3:66:f3:f4
    Fingerprint (SHA-256):
        F6:FA:35:6C:F6:74:F7:92:06:B4:26:DF:87:C3:B9:67:38:A2:3E:3C:CB:83:8F:92:5D:73:C9:FE:38:DE:01:51
    Fingerprint (SHA1):
        48:7B:AE:FF:74:26:25:44:B5:98:C5:CA:A2:59:23:FE:0B:1A:2B:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7521: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #7522: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #7523: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #7524: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153614 (0x1dee418e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:35:34 2017
            Not After : Mon May 02 15:35:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:08:84:c6:04:cf:e4:e7:04:08:c8:0f:20:04:32:f0:
                    fb:69:86:15:a1:8c:27:56:de:85:d0:b7:9a:77:3e:84:
                    65:14:ae:b8:f1:50:b4:ef:94:3b:50:12:11:95:84:7c:
                    0c:4d:df:ef:c3:bd:38:f8:88:89:18:8f:e7:cc:c0:7d:
                    4c:53:99:8e:e4:18:00:14:41:1f:88:43:c5:81:6f:99:
                    48:5b:f8:9a:c7:20:e1:fb:67:a3:d7:8a:40:78:db:24:
                    fe:67:e4:f1:16:86:73:05:0e:21:81:6f:f3:7c:f1:dc:
                    69:10:c2:52:c4:39:d8:77:f8:1a:8c:49:a3:24:04:62:
                    88:88:7b:62:cd:4b:0e:7f:01:cb:b8:f3:18:2e:f7:a5:
                    68:b2:ee:21:21:ed:73:52:ef:c8:1f:f2:e9:db:d3:76:
                    e0:3a:63:e3:31:59:0c:e5:b1:de:25:80:c5:ca:d6:36:
                    2f:1c:14:d7:4b:1f:cf:b8:05:e8:e2:7c:92:7d:ff:b0:
                    85:65:ef:2e:97:16:cf:b7:b9:9a:1a:3a:12:b1:ba:13:
                    47:a5:31:9f:7c:76:80:2e:8e:25:26:33:95:d4:fe:29:
                    0d:91:ec:ed:61:c5:c0:99:0f:eb:fc:90:50:93:d9:c4:
                    ec:77:de:2a:b3:25:b0:9d:fd:e5:50:7f:7c:f5:2f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:9a:73:63:be:89:97:e2:2b:de:de:84:fb:a6:f4:f8:
        e4:49:c1:e2:ab:de:ad:54:0e:da:f3:e9:a4:cc:c9:a3:
        09:74:39:3d:80:e8:3c:79:68:7d:7b:e7:a2:cb:71:53:
        9d:14:39:27:7a:cc:b8:35:4f:90:cc:7e:c1:1c:5e:8e:
        3a:3c:58:32:24:0a:df:72:83:b9:5a:e2:00:f1:2f:67:
        9d:ec:a5:11:68:3f:09:a4:92:87:be:c8:3b:c7:9a:7d:
        ff:30:db:ba:69:25:c0:b8:75:e8:d8:b1:22:45:96:c5:
        1b:dc:df:9c:aa:d7:e7:f7:67:5f:d1:8b:0c:bc:e8:34:
        28:e4:1c:b3:fe:5a:9c:79:77:06:80:24:e8:6c:df:79:
        45:a0:32:94:f1:81:b8:43:27:20:41:1f:b9:97:f8:84:
        77:e3:a3:6c:4f:2c:73:d5:b4:05:b6:3d:a7:a2:99:e7:
        b3:70:b4:1b:78:5b:50:56:00:54:63:15:21:db:8c:1f:
        eb:7b:68:d9:9b:90:77:35:36:b6:8b:c8:df:52:b3:ef:
        60:ce:14:bd:44:f0:8a:1c:4f:af:96:40:d6:0e:4a:d5:
        05:35:bf:c0:bc:48:0c:a4:41:d0:ff:41:52:cb:e7:4e:
        d3:bc:b7:5c:53:55:b4:34:e7:d6:83:45:3e:07:af:6d
    Fingerprint (SHA-256):
        11:44:EE:FF:7B:E2:D6:28:3D:26:63:F2:6F:1D:61:A7:B4:52:08:AC:5A:0D:23:41:23:3B:A6:4F:29:AB:2A:C7
    Fingerprint (SHA1):
        A5:2E:FD:7D:5A:1A:A5:A4:89:7F:CF:73:EB:4F:E6:BC:BD:F4:06:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7525: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153618 (0x1dee4192)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:35:35 2017
            Not After : Mon May 02 15:35:35 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:f2:7d:4a:25:2b:85:20:db:d0:07:1e:d5:69:d0:21:
                    3b:b7:1e:42:4f:9b:22:0f:38:35:27:a4:e9:b2:0f:0b:
                    11:a5:21:0c:cb:d2:fe:13:d6:e9:60:26:22:67:c1:8f:
                    3f:76:a5:37:1b:d6:cb:2c:be:d1:63:b2:0e:8b:8b:27:
                    4d:64:45:46:a6:41:c6:40:20:f3:d0:bb:7b:af:f8:2d:
                    5d:98:73:bb:9e:0d:c5:04:4e:c0:bb:a0:be:b0:80:c9:
                    53:1a:1a:ea:1f:0e:56:8f:dd:6a:de:23:ea:d1:66:27:
                    82:0c:ec:d7:16:33:3e:0b:89:b7:73:f8:ce:dd:03:7f:
                    4d:f2:16:b3:f7:28:c9:1f:8d:c8:4e:af:9d:4b:9d:0e:
                    55:ba:3c:19:f2:3b:40:39:de:6f:b3:6e:1a:f4:46:af:
                    ec:33:39:29:8b:ed:7b:64:d6:7e:24:18:3c:1b:57:e5:
                    8e:d9:5f:5b:b5:27:af:dd:15:5b:dd:32:62:f1:81:55:
                    50:12:71:3d:51:7e:5d:51:84:5d:b9:1f:3f:b0:20:b8:
                    53:e7:b2:6b:31:97:c2:e5:b1:4f:f8:a1:5a:83:aa:fc:
                    38:2e:f6:d0:f2:31:85:02:03:4e:ec:da:f5:f9:91:96:
                    92:d8:23:9a:b6:d3:f8:c0:9d:96:d3:5d:e0:4e:bd:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:5e:0d:ee:ac:03:85:49:af:8b:94:b0:47:11:ce:31:
        c0:f1:b0:c0:10:b7:43:a5:69:81:f8:9d:62:e4:f6:61:
        7b:ad:d1:03:6d:eb:1b:a8:26:31:fd:7e:b4:ee:24:d9:
        7d:36:59:73:a7:92:a5:d0:a8:cb:2b:cf:b0:7a:dc:65:
        5d:b7:86:eb:45:5c:98:49:df:a6:bf:31:fa:b6:9c:f1:
        30:df:cd:07:87:71:fc:af:c2:40:a9:25:c3:af:37:a7:
        1a:46:d7:13:25:12:62:67:c0:9e:f2:95:12:5e:9e:04:
        e5:00:da:71:a6:9e:75:64:b2:28:a1:3d:07:76:26:96:
        99:9b:9e:58:58:02:cd:59:f7:d9:e7:10:c8:bd:6d:1c:
        53:40:6b:38:d2:07:5f:cd:5c:2f:97:2d:4e:1d:24:76:
        f2:55:2f:58:6b:e4:30:49:ab:40:8a:50:ba:37:bc:e8:
        4b:bb:08:be:c7:aa:83:46:4d:35:e6:53:e7:43:c9:1d:
        c8:0b:ae:80:44:bd:4d:f5:d1:39:b5:f9:b3:7b:53:14:
        c3:44:f3:0d:73:0b:6e:68:d9:1a:d8:2b:d7:0f:96:78:
        91:77:2d:3d:fd:e6:79:ef:df:90:c4:14:4f:e5:d1:dc:
        c0:f6:11:18:ea:c8:56:0e:b4:e8:26:19:b6:a1:4d:75
    Fingerprint (SHA-256):
        7B:B9:35:C1:B4:28:F4:7C:D4:9A:3C:E8:72:1F:47:BF:03:56:E8:78:81:DC:EC:BA:7B:43:16:FC:D6:F7:C5:93
    Fingerprint (SHA1):
        39:C4:76:D7:40:2F:0B:0F:C0:28:86:76:03:DA:FD:9A:02:C9:E6:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #7526: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153614 (0x1dee418e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:35:34 2017
            Not After : Mon May 02 15:35:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:08:84:c6:04:cf:e4:e7:04:08:c8:0f:20:04:32:f0:
                    fb:69:86:15:a1:8c:27:56:de:85:d0:b7:9a:77:3e:84:
                    65:14:ae:b8:f1:50:b4:ef:94:3b:50:12:11:95:84:7c:
                    0c:4d:df:ef:c3:bd:38:f8:88:89:18:8f:e7:cc:c0:7d:
                    4c:53:99:8e:e4:18:00:14:41:1f:88:43:c5:81:6f:99:
                    48:5b:f8:9a:c7:20:e1:fb:67:a3:d7:8a:40:78:db:24:
                    fe:67:e4:f1:16:86:73:05:0e:21:81:6f:f3:7c:f1:dc:
                    69:10:c2:52:c4:39:d8:77:f8:1a:8c:49:a3:24:04:62:
                    88:88:7b:62:cd:4b:0e:7f:01:cb:b8:f3:18:2e:f7:a5:
                    68:b2:ee:21:21:ed:73:52:ef:c8:1f:f2:e9:db:d3:76:
                    e0:3a:63:e3:31:59:0c:e5:b1:de:25:80:c5:ca:d6:36:
                    2f:1c:14:d7:4b:1f:cf:b8:05:e8:e2:7c:92:7d:ff:b0:
                    85:65:ef:2e:97:16:cf:b7:b9:9a:1a:3a:12:b1:ba:13:
                    47:a5:31:9f:7c:76:80:2e:8e:25:26:33:95:d4:fe:29:
                    0d:91:ec:ed:61:c5:c0:99:0f:eb:fc:90:50:93:d9:c4:
                    ec:77:de:2a:b3:25:b0:9d:fd:e5:50:7f:7c:f5:2f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:9a:73:63:be:89:97:e2:2b:de:de:84:fb:a6:f4:f8:
        e4:49:c1:e2:ab:de:ad:54:0e:da:f3:e9:a4:cc:c9:a3:
        09:74:39:3d:80:e8:3c:79:68:7d:7b:e7:a2:cb:71:53:
        9d:14:39:27:7a:cc:b8:35:4f:90:cc:7e:c1:1c:5e:8e:
        3a:3c:58:32:24:0a:df:72:83:b9:5a:e2:00:f1:2f:67:
        9d:ec:a5:11:68:3f:09:a4:92:87:be:c8:3b:c7:9a:7d:
        ff:30:db:ba:69:25:c0:b8:75:e8:d8:b1:22:45:96:c5:
        1b:dc:df:9c:aa:d7:e7:f7:67:5f:d1:8b:0c:bc:e8:34:
        28:e4:1c:b3:fe:5a:9c:79:77:06:80:24:e8:6c:df:79:
        45:a0:32:94:f1:81:b8:43:27:20:41:1f:b9:97:f8:84:
        77:e3:a3:6c:4f:2c:73:d5:b4:05:b6:3d:a7:a2:99:e7:
        b3:70:b4:1b:78:5b:50:56:00:54:63:15:21:db:8c:1f:
        eb:7b:68:d9:9b:90:77:35:36:b6:8b:c8:df:52:b3:ef:
        60:ce:14:bd:44:f0:8a:1c:4f:af:96:40:d6:0e:4a:d5:
        05:35:bf:c0:bc:48:0c:a4:41:d0:ff:41:52:cb:e7:4e:
        d3:bc:b7:5c:53:55:b4:34:e7:d6:83:45:3e:07:af:6d
    Fingerprint (SHA-256):
        11:44:EE:FF:7B:E2:D6:28:3D:26:63:F2:6F:1D:61:A7:B4:52:08:AC:5A:0D:23:41:23:3B:A6:4F:29:AB:2A:C7
    Fingerprint (SHA1):
        A5:2E:FD:7D:5A:1A:A5:A4:89:7F:CF:73:EB:4F:E6:BC:BD:F4:06:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7527: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #7528: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #7529: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #7530: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #7531: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #7532: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153619 (0x1dee4193)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:35:35 2017
            Not After : Mon May 02 15:35:35 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:2d:af:d9:3a:95:2a:36:55:cb:df:2e:53:76:0d:8f:
                    ff:9e:b9:1f:7a:5e:0f:cc:86:a6:c2:29:22:29:23:40:
                    0d:26:5a:5a:f0:e3:35:df:d0:4f:b6:40:b2:40:6b:6a:
                    4f:ca:ec:13:0f:86:71:e9:e4:41:b2:5c:b6:17:53:a6:
                    a7:58:45:54:fd:b4:33:74:c4:ae:8b:f1:9c:b5:7c:0c:
                    5f:3e:54:51:b7:ea:70:06:29:c7:92:0d:17:4b:b1:f4:
                    d4:7e:b2:b9:e8:c6:a5:de:a0:72:bd:dc:ef:c7:77:14:
                    62:5e:c2:be:b6:b0:2d:3d:76:af:89:ec:48:5e:db:7a:
                    25:e1:78:ba:72:b3:a4:91:7f:9a:a5:03:f9:ae:c0:89:
                    75:f3:0f:3d:28:8a:11:9c:22:ad:40:90:38:e0:b3:18:
                    f7:ad:f5:bf:32:e3:eb:e9:b9:fa:ec:84:90:1f:7c:cd:
                    e3:97:2b:b0:53:67:25:2f:44:a7:74:b2:36:85:0b:77:
                    25:93:76:28:52:b6:1b:fe:d1:0f:fa:8e:dd:a1:0c:92:
                    30:5a:c1:cb:dc:16:ac:cd:c1:73:09:4d:57:56:94:cd:
                    6d:24:e2:cf:79:80:36:cb:40:ed:d8:3e:c3:17:51:67:
                    19:2e:1c:c8:d3:23:c7:c4:2d:0b:51:f2:e3:7f:65:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:ad:37:5a:5c:e1:80:53:dd:f8:73:38:34:aa:37:a1:
        d9:41:cc:18:90:7f:ad:3d:65:49:36:6b:ed:f7:09:95:
        0c:af:6c:7c:20:35:a3:19:8a:32:4c:15:13:27:50:a3:
        81:56:11:6b:27:4f:85:27:89:8a:c6:6d:72:e5:cf:b7:
        ea:8c:fc:f5:e9:19:8f:0e:5f:4f:ac:e7:62:38:1e:39:
        1e:60:b4:02:a5:51:44:c1:94:75:c4:e5:aa:23:ee:00:
        f5:ab:c2:7c:06:9c:2d:cd:4b:2b:15:45:27:f0:1c:89:
        3e:1d:f7:70:d5:87:e8:7f:13:86:a6:2e:88:20:d6:6c:
        d9:36:87:e0:a7:98:7d:bf:17:e6:81:08:64:af:99:4c:
        3f:cb:bf:28:ec:5f:f3:2f:89:fb:46:28:47:e5:46:99:
        e1:95:f3:51:38:f8:a9:b0:f1:5e:ba:88:3b:c3:f1:39:
        3f:ae:90:fa:d9:52:77:de:7f:03:02:90:d8:fb:90:1a:
        5e:73:dd:b2:c8:5f:7f:d9:8b:c5:c6:f8:09:49:08:e6:
        31:04:cc:69:70:c3:a3:a3:86:69:c9:14:d2:30:b0:d4:
        0f:db:68:90:da:c4:26:ea:53:b0:fe:c7:c3:19:a9:10:
        60:1f:31:cc:31:46:d8:62:f6:3f:fc:53:a9:56:11:5b
    Fingerprint (SHA-256):
        72:C8:D0:7B:81:C6:07:31:97:DC:F3:8C:A9:40:DE:BA:DE:C2:43:45:BA:47:A9:93:D4:78:4D:27:05:02:82:23
    Fingerprint (SHA1):
        01:41:F1:8F:23:AD:31:DC:F8:3C:85:CA:D4:05:85:70:7F:E1:BA:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7533: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #7534: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #7535: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #7536: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #7537: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7538: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7539: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7540: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7541: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7542: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7543: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7544: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7545: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7546: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7547: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7548: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7549: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7550: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7551: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #7552: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7553: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7554: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7555: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7556: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 7661 at Tue May  2 15:35:38 UTC 2017
kill -USR1 7661
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 7661 killed at Tue May  2 15:35:38 UTC 2017
TIMESTAMP chains END: Tue May  2 15:35:38 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:35:38 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:35:38 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #7557: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:35:38 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:35:38 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7558: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7559: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7560: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7561: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #7562: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #7563: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:35:38 UTC 2017
TIMESTAMP ec END: Tue May  2 15:35:38 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:35:38 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (2 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (3 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (1 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (1 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (4 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #7564: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #7565: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #7566: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #7567: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #7568: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #7569: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #7570: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #7571: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #7572: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #7573: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #7574: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #7575: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #7576: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #7577: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #7578: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #7579: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #7580: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #7581: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #7582: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:35:39 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:35:39 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #7583: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7584: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7585: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7586: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7587: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7588: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7589: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7590: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7591: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7592: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7593: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7594: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7595: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7596: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7597: create certificate: sign  - PASSED
ssl_gtest.sh: #7598: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:35:40 UTC 2017
ssl_gtests.sh: Testing with upgraded library ===============================
cp: cannot stat '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Tue May  2 15:35:40 UTC 2017
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
certutil: could not find certificate named "objsigner": SEC_ERROR_BAD_DATABASE: security library: bad database.
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
dbupgrade.sh: Legacy to shared Library update ===============================
alicedir
upgrading db alicedir
Generating key.  This may take a few moments...
dbupgrade.sh: #7599: Upgrading alicedir  - PASSED
bobdir
upgrading db bobdir
Generating key.  This may take a few moments...
dbupgrade.sh: #7600: Upgrading bobdir  - PASSED
CA
upgrading db CA
Generating key.  This may take a few moments...
dbupgrade.sh: #7601: Upgrading CA  - PASSED
cert_extensions
upgrading db cert_extensions
Generating key.  This may take a few moments...
dbupgrade.sh: #7602: Upgrading cert_extensions  - PASSED
client
upgrading db client
Generating key.  This may take a few moments...
dbupgrade.sh: #7603: Upgrading client  - PASSED
clientCA
upgrading db clientCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7604: Upgrading clientCA  - PASSED
dave
upgrading db dave
Generating key.  This may take a few moments...
dbupgrade.sh: #7605: Upgrading dave  - PASSED
eccurves
upgrading db eccurves
Generating key.  This may take a few moments...
dbupgrade.sh: #7606: Upgrading eccurves  - PASSED
eve
upgrading db eve
Generating key.  This may take a few moments...
dbupgrade.sh: #7607: Upgrading eve  - PASSED
ext_client
upgrading db ext_client
Generating key.  This may take a few moments...
dbupgrade.sh: #7608: Upgrading ext_client  - PASSED
ext_server
upgrading db ext_server
Generating key.  This may take a few moments...
dbupgrade.sh: #7609: Upgrading ext_server  - PASSED
SDR
upgrading db SDR
Generating key.  This may take a few moments...
dbupgrade.sh: #7610: Upgrading SDR  - PASSED
server
upgrading db server
Generating key.  This may take a few moments...
dbupgrade.sh: #7611: Upgrading server  - PASSED
serverCA
upgrading db serverCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7612: Upgrading serverCA  - PASSED
ssl_gtests
skipping db ssl_gtests
dbupgrade.sh: #7613: No directory ssl_gtests  - PASSED
stapling
upgrading db stapling
Generating key.  This may take a few moments...
dbupgrade.sh: #7614: Upgrading stapling  - PASSED
tools/copydir
skipping db tools/copydir
dbupgrade.sh: #7615: No directory tools/copydir  - PASSED
upgrading db fips
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
dbupgrade.sh: #7616: Upgrading fips  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
TIMESTAMP dbupgrade END: Tue May  2 15:35:46 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:35:46 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7617: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ad:66:60:0c:44:8a:51:16:46:22:4a:72:9e:ca:58:7d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7618: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7619: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7620: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7621: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                88:cc:10:4c:b2:ba:4f:69:1c:84:7e:1b:12:72:7f:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:15:50 2017
            Not After : Mon May 02 15:15:50 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:5a:5e:f2:1d:17:83:1f:68:03:b5:69:ee:7d:f5:
                    97:f3:9a:e4:9b:66:a3:7b:ca:bf:6a:ff:95:3f:2c:9b:
                    f4:d9:ad:41:45:ab:31:44:14:1e:2b:49:ae:dc:31:93:
                    00:70:b9:0c:7f:b8:f8:f6:cc:9e:f4:d8:b1:4b:6f:25:
                    e6:97:19:01:71:a9:27:87:23:84:6e:b8:a9:0b:02:d5:
                    b3:48:3e:5c:b9:0c:27:c5:46:a4:1d:9b:c7:d5:7d:a6:
                    2f:d6:4e:df:86:90:17:72:e5:f0:eb:b0:e0:19:9b:82:
                    ac:d8:37:00:ae:5d:b3:e8:05:57:d3:59:ce:6e:5c:e1:
                    71:c9:59:43:82
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:01:4f:ff:ec:55:82:26:98:b1:9e:fd:
        fb:76:fc:68:40:2c:b5:b1:8a:b0:31:3f:bc:9c:57:f5:
        f7:f9:50:a8:e4:c3:ec:51:b6:ee:ee:3e:cd:50:a8:fd:
        28:19:78:40:ca:39:82:6e:80:65:e4:07:c0:fb:76:b5:
        3e:58:05:59:70:f4:7b:02:42:00:fd:56:c6:68:f4:d9:
        12:f8:d1:e0:27:e0:0d:6b:47:ee:6e:21:71:67:b8:06:
        44:ee:d1:64:d1:00:6b:d3:dc:19:48:01:c3:4f:ce:64:
        3d:2e:9e:d2:21:fd:3e:f4:fe:54:a3:1f:87:b9:57:12:
        63:78:8f:34:b1:b4:7e:16:d9:0a:14
    Fingerprint (SHA-256):
        BE:D6:D4:BD:67:3F:C8:53:ED:1F:57:AD:23:2E:2D:B2:0A:D6:91:E0:34:54:75:70:4A:8D:54:3B:4C:85:BE:C0
    Fingerprint (SHA1):
        5E:FB:56:B5:41:EC:56:ED:B7:A6:1D:86:1B:A8:0C:12:B5:C4:5D:EC
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:15:55 2017
            Not After : Mon May 02 15:15:55 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:98:9c:91:b7:ef:6e:23:f6:8d:70:43:57:60:63:8d:
                    17:a8:f4:87:f0:ad:bc:b5:3d:76:eb:b7:5b:da:f0:9e:
                    10:7a:e3:c3:e7:4b:b1:ef:41:01:c0:82:c9:e3:39:e3:
                    aa:5c:2a:62:c2:f2:a9:b2:d4:33:ba:7c:e5:8b:4a:7d:
                    3c:fc:a4:1a:3f:e0:11:6c:6c:d5:9e:76:82:f2:73:64:
                    56:3d:c0:5b:1d:86:f8:91:71:46:78:b7:2e:32:e4:94:
                    b1
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:ee:ed:e4:44:36:3e:73:b0:06:7a:
        ab:09:0e:5e:5a:2f:e0:a4:87:24:4a:f3:d1:d3:7c:3b:
        28:b7:44:0b:7a:08:2e:cd:e8:e8:8a:1b:1d:94:c2:79:
        1c:8c:52:7d:f4:21:65:84:e6:0b:97:bc:36:db:ed:23:
        7e:f2:fb:13:3f:e0:2b:02:42:01:59:73:52:df:bf:a6:
        0d:23:c8:64:ac:fa:4c:6b:e9:a9:71:39:30:a9:c7:84:
        f7:85:22:d1:5d:87:5a:a2:cd:fc:25:af:38:4e:65:02:
        c3:df:51:57:0e:a8:c3:55:25:1f:10:1b:94:13:13:d4:
        03:5c:71:80:fb:1c:46:7a:28:5e:13
    Fingerprint (SHA-256):
        A6:2F:14:D7:9F:1E:7E:AD:90:1A:16:0C:CA:43:27:7D:E5:A1:33:E7:DF:66:7E:4D:58:0C:66:39:04:2F:A8:F4
    Fingerprint (SHA1):
        04:80:E7:DC:99:26:4C:A2:2D:7B:70:46:09:9C:DA:B9:A4:D9:64:21
    Friendly Name: Alice-ec
tools.sh: #7622: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7623: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                27:59:09:bb:c0:72:07:fc:d1:7a:7c:ad:b9:c1:b4:a8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7624: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7625: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7626: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                3f:d6:f3:30:4e:85:3a:11:6b:73:af:af:2d:39:09:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7627: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7628: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7629: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                e5:8e:67:b2:96:c1:39:37:d4:5b:2d:a6:a3:7a:0f:83
            Iteration Count: 2000 (0x7d0)
tools.sh: #7630: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7631: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7632: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                58:03:83:c3:90:f3:ee:b1:17:9f:39:70:21:9d:c8:c3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7633: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7634: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7635: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0c:41:f0:1b:f7:2a:39:2b:47:a1:56:a5:7e:43:e2:a6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7636: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7637: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7638: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                61:ee:5b:93:8c:17:98:18:65:27:e9:0a:39:3b:8d:e7
            Iteration Count: 2000 (0x7d0)
tools.sh: #7639: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7640: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7641: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        80:dd:f5:7c:56:9d:ac:79:78:28:63:84:a0:8f:39:be
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:8c:c9:a4:7c:e9:14:2c:f0:1f:27:ed:cd:00:f8:
                    fe:f2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7642: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7643: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7644: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        dc:c5:a0:66:17:65:60:29:1b:4d:fd:d4:ef:a5:90:10
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:8c:08:30:35:79:2a:07:57:2f:df:e3:1f:d3:aa:
                    d6:c8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7645: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7646: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7647: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bb:eb:11:a3:dc:02:45:c5:31:78:da:b9:20:60:b2:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:5b:84:e6:e1:1b:87:5f:22:73:eb:fe:66:12:32:
                    76:c0
tools.sh: #7648: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7649: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7650: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d2:74:13:3a:03:f3:98:1d:8f:f2:54:59:00:2a:ff:9d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:8c:b3:53:3a:2d:78:64:5a:24:6a:64:89:34:83:
                    bb:6e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7651: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7652: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7653: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ea:6e:ae:74:82:c7:d5:9b:e7:e8:e4:20:60:8e:ae:d9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:2a:9b:36:50:77:21:e0:e4:62:86:c2:84:64:0a:
                    4b:02
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7654: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7655: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7656: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a8:fb:65:f5:2e:bd:ab:20:1c:1f:9a:a9:a3:9d:bc:4f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:72:54:89:e4:f9:30:a7:60:f1:58:9a:21:44:4f:
                    bc:f5
tools.sh: #7657: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7658: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7659: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b4:08:38:3c:7a:dc:28:72:a5:b8:31:35:75:20:69:19
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:33:4b:e5:72:13:9e:e1:96:99:71:f2:07:8d:b6:
                    74:d6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7660: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7661: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7662: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ac:3b:9b:cd:ca:70:c5:48:15:29:d8:e3:e0:2d:98:bf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:92:9f:9b:3e:d7:fd:9e:8c:73:87:94:2f:ba:91:
                    d4:89
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7663: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7664: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7665: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d2:bf:ec:d9:02:fe:70:60:44:b1:6a:20:17:91:bb:49
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:92:4e:3b:c5:df:f1:58:91:a3:01:ff:44:39:90:
                    6d:55
tools.sh: #7666: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7667: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7668: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        43:f8:89:cd:fa:ed:84:d0:c3:1e:2f:4a:c3:54:57:4b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:6d:03:61:2e:48:6d:e9:1e:02:56:02:d7:6e:9d:
                    21:d4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7669: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7670: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7671: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2f:81:8c:2e:39:c2:92:38:d9:30:3f:04:3b:9e:d0:4c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:80:18:12:bc:5e:a0:0e:c1:86:7f:85:42:eb:dc:
                    db:c0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7672: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7673: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7674: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a6:0c:d7:85:7a:09:6a:31:f0:d5:af:d0:5b:ae:ee:42
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:0c:af:49:15:95:93:a9:13:4e:e3:27:e7:eb:cb:
                    85:96
tools.sh: #7675: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7676: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7677: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        af:5c:f2:cd:eb:2c:75:9c:ea:56:bf:78:71:61:6b:b0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:85:52:b2:c1:5f:15:5c:83:17:c7:5b:4a:3d:57:
                    98:e0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7678: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7679: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7680: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ad:c2:50:cd:66:1d:ec:17:72:1a:0f:b8:bd:44:27:35
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:1d:bc:b6:f7:3b:24:13:85:f3:45:41:c5:ca:5c:
                    31:97
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7681: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7682: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7683: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4d:00:b4:f6:a0:c0:5a:51:a5:8b:13:b9:a3:e9:ec:55
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:41:92:65:52:aa:e5:c9:ec:07:25:59:5a:2e:a5:
                    98:4f
tools.sh: #7684: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7685: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7686: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9c:6a:cd:8f:33:02:9c:b5:92:f6:cb:3a:73:99:fa:35
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:f0:89:a2:ef:7c:f6:54:05:55:94:9f:27:5a:c4:
                    b2:39
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7687: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7688: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7689: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b5:ee:3f:12:52:9d:af:17:6f:20:6d:88:7f:c4:2d:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:e9:67:6e:d7:e0:03:95:c1:ba:42:a0:6f:9f:59:
                    ae:a8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7690: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7691: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7692: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f2:96:32:ef:7f:f1:c5:15:72:e1:d9:f1:45:2d:2c:17
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:98:14:c9:5c:1d:f4:8c:7c:70:ef:86:95:ef:f4:
                    ea:3e
tools.sh: #7693: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7694: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7695: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                e8:43:9b:06:ff:4a:01:53:e5:42:ff:eb:7d:65:80:c9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7696: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7697: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7698: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                5a:e3:8c:b2:b9:38:4e:3e:17:32:4a:de:28:3b:9a:c7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7699: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7700: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7701: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                7d:81:2d:f4:d0:f3:b4:f7:4b:98:83:88:2d:c3:28:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7702: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7703: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7704: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                58:a9:8b:e2:dd:ef:48:f9:3d:22:bd:31:64:ca:8b:07
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7705: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7706: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7707: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                04:48:70:8c:eb:9a:85:90:08:cc:17:90:2e:ef:03:10
            Iteration Count: 2000 (0x7d0)
tools.sh: #7708: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7709: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7710: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                13:17:80:13:2e:98:a0:95:64:8f:b3:c6:96:32:a8:a7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7711: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7712: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7713: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                1a:55:05:dc:3d:be:36:f9:bf:89:72:69:4e:c5:7e:9e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7714: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7715: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7716: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                a2:4f:b4:51:80:70:20:b7:ea:39:49:6e:1a:1b:41:e1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7717: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7718: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7719: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                16:ac:ba:c6:c0:83:fa:5e:37:e3:aa:3e:4e:f8:04:95
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7720: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7721: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7722: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                1d:3e:1e:28:62:6e:c3:81:0c:82:fb:68:32:06:83:6d
            Iteration Count: 2000 (0x7d0)
tools.sh: #7723: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7724: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7725: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                f3:3c:69:91:96:56:26:77:70:d8:36:1b:86:ff:c0:36
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7726: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7727: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7728: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                34:a9:94:97:71:da:9d:66:33:da:5b:a2:da:93:19:fc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7729: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7730: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7731: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                1c:a1:b5:86:8c:87:41:dd:22:fe:50:a7:69:34:f4:38
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7732: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7733: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7734: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                88:41:5e:53:76:2b:06:ae:95:04:ec:94:f7:86:fa:ec
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7735: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7736: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7737: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                55:d8:7e:23:ac:e6:b2:75:84:69:f6:fc:d2:91:01:c3
            Iteration Count: 2000 (0x7d0)
tools.sh: #7738: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7739: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7740: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                24:92:01:72:88:8e:3a:29:81:33:00:86:e0:62:f7:ed
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7741: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7742: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7743: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d0:fd:87:b8:f5:87:a5:f6:50:8b:18:d1:0f:3c:15:5b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7744: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7745: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7746: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2e:67:4b:56:96:31:1b:d8:c8:eb:18:7e:a8:8f:0e:a6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7747: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7748: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7749: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c9:7d:d2:ae:0f:ec:5c:e4:e9:07:80:a6:dc:1e:45:cd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7750: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7751: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7752: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ef:d1:7f:46:5a:b2:83:d5:78:ba:de:b1:1b:94:69:1e
            Iteration Count: 2000 (0x7d0)
tools.sh: #7753: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7754: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7755: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a2:ae:e9:39:fe:2a:2e:f5:81:6c:af:d4:88:05:1e:cb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7756: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7757: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7758: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                63:05:38:e6:84:9f:a0:82:ca:00:c2:89:07:4d:5d:71
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7759: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7760: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7761: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                50:88:ca:8b:e7:8a:f3:7a:8c:bd:7f:38:1b:e8:51:ae
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7762: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7763: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7764: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                78:1c:19:10:12:1b:78:73:aa:3e:fd:06:af:c9:6e:43
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7765: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7766: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7767: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bd:fc:2b:fa:3b:c4:35:95:33:c7:84:ba:bd:38:70:78
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7768: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7769: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7770: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                43:e7:9f:b8:b5:18:53:81:ee:f4:76:7c:c7:a0:d4:ce
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7771: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7772: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7773: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                57:5a:bd:a7:5b:30:8a:0a:de:fb:3b:9e:7b:0c:7b:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7774: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7775: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7776: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                31:19:4d:70:08:ec:58:89:81:23:e6:6f:dd:09:3e:0d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7777: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7778: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7779: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2d:f0:2a:4e:0c:24:25:93:ef:7a:7a:12:de:c5:71:28
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7780: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7781: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7782: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                82:ad:19:f0:a1:ad:04:27:25:52:d7:b7:78:12:c1:3b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:1c:47:1b:1a:d9:44:81:17:d8:7e:1d:cb:40:a6:
                    aa:25:59:c8:14:b2:33:97:09:0f:1e:89:7a:93:20:28:
                    a3:05:fb:98:f9:df:33:fd:74:39:49:bc:3b:a6:ef:6e:
                    ab:19:41:28:0e:76:eb:38:df:4d:a1:3f:d5:83:e7:18:
                    dd:db:45:0c:12:52:f6:65:15:0e:61:cf:23:9c:cb:99:
                    7f:ff:ae:1b:f9:d1:eb:5c:75:20:b3:b0:c5:d9:42:ed:
                    cb:72:fb:22:09:d8:7f:f0:f3:80:4c:ba:eb:58:f6:84:
                    bd:d1:dd:f7:86:1a:c4:7c:ae:e0:9b:7f:1c:01:dd:8d:
                    eb:39:fe:b1:4f:0f:70:ef:49:52:70:44:3b:45:7a:4c:
                    15:96:e3:28:0a:ba:57:c3:ba:af:93:95:a4:03:a0:f8:
                    2f:52:da:72:f0:6e:50:de:ee:84:0f:2c:af:59:e3:b4:
                    eb:c7:ab:4e:2c:c4:9a:47:9b:19:0c:d6:2f:5f:9a:04:
                    bf:7e:66:fc:d4:19:08:d0:02:b0:13:fa:3c:92:02:39:
                    4f:0c:21:f4:19:08:41:22:81:fc:c8:ec:df:2a:e5:96:
                    d0:e9:b2:24:a1:e2:58:13:2d:49:cb:2c:6a:8e:06:7a:
                    e4:ba:e1:63:ad:f0:b0:0e:82:b1:d1:9e:a4:6e:da:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:3a:d8:e3:37:bd:f3:5d:63:34:64:01:c9:af:76:be:
        81:b2:4c:2d:c6:f4:a5:ca:b5:70:72:a8:c3:83:d3:b0:
        d7:20:88:65:8b:c5:85:97:ae:6b:b4:f7:15:3f:9c:56:
        d4:ad:f7:0d:fe:5c:d9:ea:7e:ec:27:64:95:69:0d:ba:
        43:3e:49:8e:fb:ff:80:d5:3b:0e:d7:cc:bb:9b:56:5a:
        5b:ec:87:31:c1:c6:81:9e:5d:83:8d:47:02:86:eb:5d:
        c1:1c:28:5a:64:c1:76:e1:d3:a6:e3:ee:87:e6:ac:52:
        89:7a:a7:b6:dd:2c:4c:ee:a6:b5:8d:cd:6e:c2:36:49:
        ab:62:80:6e:f1:13:7f:30:ad:3a:74:b6:f1:47:82:17:
        31:32:cd:25:a1:9d:94:71:ef:2b:21:ac:49:e3:dd:44:
        32:08:76:ca:45:5a:92:2c:d8:81:fa:db:68:02:53:70:
        06:50:41:86:10:96:f4:19:38:38:11:d3:68:99:68:90:
        78:a8:ab:08:bc:b6:24:63:6c:d7:50:12:85:c3:2d:f7:
        c0:0e:97:f4:9b:f0:8a:35:91:3f:b7:d6:46:02:6f:ce:
        f3:66:93:eb:b8:02:46:ee:ab:68:f6:60:19:19:9b:81:
        c1:94:5d:1a:36:a8:a0:e9:0b:82:96:e4:6e:3c:a2:88
    Fingerprint (SHA-256):
        3E:8D:56:87:AD:E6:6F:AE:90:B9:F5:AE:54:B6:41:92:08:7E:C8:2B:6C:60:7A:1A:A9:76:1E:5D:7E:BB:11:94
    Fingerprint (SHA1):
        F4:53:AB:B2:4D:07:23:9D:85:5C:82:24:FB:5D:09:58:A8:F3:4D:E3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:54 2017
            Not After : Mon May 02 15:15:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:93:dd:f0:5f:fb:52:09:f8:fb:b3:f3:8f:92:00:41:
                    a7:68:ea:e2:19:f0:7b:aa:ee:98:97:64:bb:8c:ca:11:
                    03:93:7a:f7:29:83:45:b6:31:5a:61:77:b8:d4:77:2d:
                    e8:81:69:03:f2:51:7a:df:89:4a:ca:20:99:e1:ea:b4:
                    b0:cd:b5:15:e3:c5:2b:92:96:62:3c:49:78:83:a9:af:
                    6e:ec:16:75:37:00:5f:8f:cd:bd:d5:2e:b9:cc:d0:69:
                    1f:30:c8:e2:09:3b:8d:c0:14:71:ee:28:38:5c:0d:28:
                    89:09:e1:c7:ba:1b:ea:41:ad:dc:3d:ed:4b:05:c7:4d:
                    f3:8c:fa:81:0b:99:54:11:2c:4e:fd:08:95:d6:fe:62:
                    d2:2e:30:db:56:4d:52:8f:f5:b7:07:14:86:60:ea:4b:
                    58:86:c3:ef:76:38:dd:3e:34:66:86:c5:b7:d4:85:a8:
                    25:bf:eb:4a:b7:d7:71:a6:f6:de:b6:f9:d2:6a:ab:46:
                    64:31:df:33:8b:8a:48:fe:62:c4:2a:eb:1e:67:a7:8d:
                    04:b9:ec:55:0d:ca:87:ac:95:b6:49:da:cd:b7:51:cb:
                    3a:eb:03:f4:52:ab:41:96:a4:75:1d:aa:e3:37:45:b1:
                    83:19:ea:c1:59:ef:68:c1:85:3a:1e:31:6e:ff:a7:41
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:98:9c:dd:29:7e:94:05:a2:1f:16:c8:2f:af:c7:c0:
        b1:35:88:38:70:1d:bf:cd:c1:77:f2:4a:f6:5c:11:bc:
        88:f9:bb:3e:0c:06:6f:e2:ae:94:55:a7:3e:81:f0:58:
        2d:6b:a8:de:59:a6:23:a6:25:ee:01:d3:b7:94:43:8f:
        e8:a8:4e:69:23:6e:5c:f3:c4:7b:59:41:d1:57:f5:04:
        e2:f5:1b:03:26:65:db:b5:e8:a4:b7:d0:55:33:c8:4c:
        b9:ac:ea:53:5a:f8:c3:de:8b:31:10:8d:11:63:ac:75:
        1a:1d:fa:ac:41:39:a5:dc:6c:fd:9c:e3:47:9e:3c:d9:
        97:b9:b5:65:56:e5:5a:20:f1:10:07:e3:23:8f:13:dc:
        c6:a4:4e:4a:7f:8d:c1:e8:32:96:24:96:18:2c:e6:4d:
        f8:12:15:77:fc:d4:a8:8d:73:36:53:d7:f5:4c:24:d9:
        9a:3c:3e:c1:6f:70:b0:89:87:a8:3e:66:2e:07:70:29:
        3b:3c:a7:be:4f:26:3d:10:50:f5:00:71:63:3e:2e:9e:
        57:12:db:62:ab:e5:07:2f:df:05:19:4d:03:80:a1:d1:
        e0:7b:f9:08:2f:d1:e7:f2:6c:63:ce:92:03:d0:af:db:
        f7:10:70:a1:d0:54:d8:d3:5a:08:aa:0f:7c:3a:7c:2e
    Fingerprint (SHA-256):
        CE:1A:20:8F:10:F7:E0:A8:58:B3:A2:9B:9E:B0:7E:FB:AE:C2:06:B3:B0:CA:28:AC:25:3F:21:7A:B4:19:0E:FD
    Fingerprint (SHA1):
        8E:98:71:28:DD:34:B6:AE:47:2E:4C:D2:51:45:84:0E:10:45:B4:9D
    Friendly Name: Alice
tools.sh: #7783: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7784: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #7785: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7786: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #7787: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #7788: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #7789: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #7790: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #7791: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #7792: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #7793: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:36:01 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:36:01 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #7794: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #7795: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      46e75498b248640390368d6354ede6389f8e7958   FIPS_PUB_140_Test_Certificate
fips.sh: #7796: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #7797: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #7798: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #7799: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #7800: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #7801: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #7802: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #7803: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #7804: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #7805: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #7806: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      46e75498b248640390368d6354ede6389f8e7958   FIPS_PUB_140_Test_Certificate
fips.sh: #7807: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #7808: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #7809: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #7810: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #7811: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      46e75498b248640390368d6354ede6389f8e7958   FIPS_PUB_140_Test_Certificate
fips.sh: #7812: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #7813: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #7814: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
mkdir: cannot create directory '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle': File exists
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so -o -8 -b 5
Changing byte 0x0003fd48 (261448): from 20 (32) to 00 (0)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle dbtest -r -d ../fips
fips.sh: #7815: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:36:12 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 15:36:12 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #7816: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #7817: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 15:36:12 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 15:36:12 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #7818: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7819: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #7820: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #7821: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #7822: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #7823: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7824: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #7825: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #7826: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #7827: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #7828: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7829: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #7830: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #7831: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #7832: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #7833: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7834: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #7835: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #7836: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #7837: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #7838: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7839: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #7840: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #7841: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #7842: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #7843: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7844: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #7845: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #7846: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #7847: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #7848: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7849: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #7850: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #7851: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #7852: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #7853: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7854: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #7855: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #7856: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #7857: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #7858: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #7859: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #7860: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #7861: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #7862: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #7863: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #7864: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #7865: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #7866: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #7867: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #7868: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #7869: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #7870: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #7871: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #7872: Decode Encrypted-Data . - PASSED
smime.sh: #7873: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #7874: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #7875: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #7876: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #7877: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #7878: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 15:36:16 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:36:16 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26312 >/dev/null 2>/dev/null
selfserv_9247 with PID 26312 found at Tue May  2 15:36:17 UTC 2017
selfserv_9247 with PID 26312 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7879: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26312 at Tue May  2 15:36:17 UTC 2017
kill -USR1 26312
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26312 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26368 >/dev/null 2>/dev/null
selfserv_9247 with PID 26368 found at Tue May  2 15:36:17 UTC 2017
selfserv_9247 with PID 26368 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7880: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26368 at Tue May  2 15:36:17 UTC 2017
kill -USR1 26368
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26368 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26424 >/dev/null 2>/dev/null
selfserv_9247 with PID 26424 found at Tue May  2 15:36:17 UTC 2017
selfserv_9247 with PID 26424 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7881: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26424 at Tue May  2 15:36:17 UTC 2017
kill -USR1 26424
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26424 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26492 >/dev/null 2>/dev/null
selfserv_9247 with PID 26492 found at Tue May  2 15:36:17 UTC 2017
selfserv_9247 with PID 26492 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7882: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26492 at Tue May  2 15:36:18 UTC 2017
kill -USR1 26492
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26492 killed at Tue May  2 15:36:18 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26548 >/dev/null 2>/dev/null
selfserv_9247 with PID 26548 found at Tue May  2 15:36:18 UTC 2017
selfserv_9247 with PID 26548 started at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7883: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26548 at Tue May  2 15:36:18 UTC 2017
kill -USR1 26548
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26548 killed at Tue May  2 15:36:18 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26604 >/dev/null 2>/dev/null
selfserv_9247 with PID 26604 found at Tue May  2 15:36:18 UTC 2017
selfserv_9247 with PID 26604 started at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7884: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26604 at Tue May  2 15:36:18 UTC 2017
kill -USR1 26604
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26604 killed at Tue May  2 15:36:18 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26672 >/dev/null 2>/dev/null
selfserv_9247 with PID 26672 found at Tue May  2 15:36:18 UTC 2017
selfserv_9247 with PID 26672 started at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7885: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 26672 at Tue May  2 15:36:19 UTC 2017
kill -USR1 26672
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26672 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26728 >/dev/null 2>/dev/null
selfserv_9247 with PID 26728 found at Tue May  2 15:36:19 UTC 2017
selfserv_9247 with PID 26728 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7886: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 26728 at Tue May  2 15:36:19 UTC 2017
kill -USR1 26728
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26728 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26784 >/dev/null 2>/dev/null
selfserv_9247 with PID 26784 found at Tue May  2 15:36:19 UTC 2017
selfserv_9247 with PID 26784 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7887: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 26784 at Tue May  2 15:36:19 UTC 2017
kill -USR1 26784
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26784 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26852 >/dev/null 2>/dev/null
selfserv_9247 with PID 26852 found at Tue May  2 15:36:19 UTC 2017
selfserv_9247 with PID 26852 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7888: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 26852 at Tue May  2 15:36:20 UTC 2017
kill -USR1 26852
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26852 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26908 >/dev/null 2>/dev/null
selfserv_9247 with PID 26908 found at Tue May  2 15:36:20 UTC 2017
selfserv_9247 with PID 26908 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7889: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 26908 at Tue May  2 15:36:20 UTC 2017
kill -USR1 26908
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26908 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26964 >/dev/null 2>/dev/null
selfserv_9247 with PID 26964 found at Tue May  2 15:36:20 UTC 2017
selfserv_9247 with PID 26964 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7890: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 26964 at Tue May  2 15:36:20 UTC 2017
kill -USR1 26964
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26964 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27032 >/dev/null 2>/dev/null
selfserv_9247 with PID 27032 found at Tue May  2 15:36:20 UTC 2017
selfserv_9247 with PID 27032 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7891: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27032 at Tue May  2 15:36:20 UTC 2017
kill -USR1 27032
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27032 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27088 >/dev/null 2>/dev/null
selfserv_9247 with PID 27088 found at Tue May  2 15:36:20 UTC 2017
selfserv_9247 with PID 27088 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7892: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27088 at Tue May  2 15:36:21 UTC 2017
kill -USR1 27088
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27088 killed at Tue May  2 15:36:21 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27144 >/dev/null 2>/dev/null
selfserv_9247 with PID 27144 found at Tue May  2 15:36:21 UTC 2017
selfserv_9247 with PID 27144 started at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7893: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27144 at Tue May  2 15:36:21 UTC 2017
kill -USR1 27144
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27144 killed at Tue May  2 15:36:21 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27212 >/dev/null 2>/dev/null
selfserv_9247 with PID 27212 found at Tue May  2 15:36:21 UTC 2017
selfserv_9247 with PID 27212 started at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7894: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27212 at Tue May  2 15:36:21 UTC 2017
kill -USR1 27212
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27212 killed at Tue May  2 15:36:21 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27268 >/dev/null 2>/dev/null
selfserv_9247 with PID 27268 found at Tue May  2 15:36:21 UTC 2017
selfserv_9247 with PID 27268 started at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7895: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27268 at Tue May  2 15:36:22 UTC 2017
kill -USR1 27268
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27268 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27324 >/dev/null 2>/dev/null
selfserv_9247 with PID 27324 found at Tue May  2 15:36:22 UTC 2017
selfserv_9247 with PID 27324 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7896: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27324 at Tue May  2 15:36:22 UTC 2017
kill -USR1 27324
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27324 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27392 >/dev/null 2>/dev/null
selfserv_9247 with PID 27392 found at Tue May  2 15:36:22 UTC 2017
selfserv_9247 with PID 27392 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7897: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27392 at Tue May  2 15:36:22 UTC 2017
kill -USR1 27392
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27392 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27448 >/dev/null 2>/dev/null
selfserv_9247 with PID 27448 found at Tue May  2 15:36:22 UTC 2017
selfserv_9247 with PID 27448 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7898: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27448 at Tue May  2 15:36:22 UTC 2017
kill -USR1 27448
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27448 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27504 >/dev/null 2>/dev/null
selfserv_9247 with PID 27504 found at Tue May  2 15:36:22 UTC 2017
selfserv_9247 with PID 27504 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7899: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27504 at Tue May  2 15:36:23 UTC 2017
kill -USR1 27504
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27504 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27572 >/dev/null 2>/dev/null
selfserv_9247 with PID 27572 found at Tue May  2 15:36:23 UTC 2017
selfserv_9247 with PID 27572 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7900: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27572 at Tue May  2 15:36:23 UTC 2017
kill -USR1 27572
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27572 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27628 >/dev/null 2>/dev/null
selfserv_9247 with PID 27628 found at Tue May  2 15:36:23 UTC 2017
selfserv_9247 with PID 27628 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7901: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27628 at Tue May  2 15:36:23 UTC 2017
kill -USR1 27628
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27628 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27684 >/dev/null 2>/dev/null
selfserv_9247 with PID 27684 found at Tue May  2 15:36:23 UTC 2017
selfserv_9247 with PID 27684 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7902: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27684 at Tue May  2 15:36:24 UTC 2017
kill -USR1 27684
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27684 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27752 >/dev/null 2>/dev/null
selfserv_9247 with PID 27752 found at Tue May  2 15:36:24 UTC 2017
selfserv_9247 with PID 27752 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7903: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27752 at Tue May  2 15:36:24 UTC 2017
kill -USR1 27752
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27752 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27808 >/dev/null 2>/dev/null
selfserv_9247 with PID 27808 found at Tue May  2 15:36:24 UTC 2017
selfserv_9247 with PID 27808 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7904: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 27808 at Tue May  2 15:36:24 UTC 2017
kill -USR1 27808
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27808 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27864 >/dev/null 2>/dev/null
selfserv_9247 with PID 27864 found at Tue May  2 15:36:24 UTC 2017
selfserv_9247 with PID 27864 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7905: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27864 at Tue May  2 15:36:24 UTC 2017
kill -USR1 27864
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27864 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27932 >/dev/null 2>/dev/null
selfserv_9247 with PID 27932 found at Tue May  2 15:36:24 UTC 2017
selfserv_9247 with PID 27932 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7906: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27932 at Tue May  2 15:36:25 UTC 2017
kill -USR1 27932
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27932 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27988 >/dev/null 2>/dev/null
selfserv_9247 with PID 27988 found at Tue May  2 15:36:25 UTC 2017
selfserv_9247 with PID 27988 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7907: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 27988 at Tue May  2 15:36:25 UTC 2017
kill -USR1 27988
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 27988 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28044 >/dev/null 2>/dev/null
selfserv_9247 with PID 28044 found at Tue May  2 15:36:25 UTC 2017
selfserv_9247 with PID 28044 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7908: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 28044 at Tue May  2 15:36:25 UTC 2017
kill -USR1 28044
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28044 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28112 >/dev/null 2>/dev/null
selfserv_9247 with PID 28112 found at Tue May  2 15:36:25 UTC 2017
selfserv_9247 with PID 28112 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7909: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 28112 at Tue May  2 15:36:26 UTC 2017
kill -USR1 28112
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28112 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28168 >/dev/null 2>/dev/null
selfserv_9247 with PID 28168 found at Tue May  2 15:36:26 UTC 2017
selfserv_9247 with PID 28168 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7910: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 28168 at Tue May  2 15:36:26 UTC 2017
kill -USR1 28168
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28168 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28224 >/dev/null 2>/dev/null
selfserv_9247 with PID 28224 found at Tue May  2 15:36:26 UTC 2017
selfserv_9247 with PID 28224 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7911: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 28224 at Tue May  2 15:36:26 UTC 2017
kill -USR1 28224
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28224 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28292 >/dev/null 2>/dev/null
selfserv_9247 with PID 28292 found at Tue May  2 15:36:26 UTC 2017
selfserv_9247 with PID 28292 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7912: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 28292 at Tue May  2 15:36:26 UTC 2017
kill -USR1 28292
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28292 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28348 >/dev/null 2>/dev/null
selfserv_9247 with PID 28348 found at Tue May  2 15:36:26 UTC 2017
selfserv_9247 with PID 28348 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7913: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28348 at Tue May  2 15:36:27 UTC 2017
kill -USR1 28348
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28348 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28404 >/dev/null 2>/dev/null
selfserv_9247 with PID 28404 found at Tue May  2 15:36:27 UTC 2017
selfserv_9247 with PID 28404 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7914: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 28404 at Tue May  2 15:36:27 UTC 2017
kill -USR1 28404
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28404 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28472 >/dev/null 2>/dev/null
selfserv_9247 with PID 28472 found at Tue May  2 15:36:27 UTC 2017
selfserv_9247 with PID 28472 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7915: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28472 at Tue May  2 15:36:27 UTC 2017
kill -USR1 28472
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28472 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28528 >/dev/null 2>/dev/null
selfserv_9247 with PID 28528 found at Tue May  2 15:36:27 UTC 2017
selfserv_9247 with PID 28528 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7916: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28528 at Tue May  2 15:36:27 UTC 2017
kill -USR1 28528
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28528 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28584 >/dev/null 2>/dev/null
selfserv_9247 with PID 28584 found at Tue May  2 15:36:27 UTC 2017
selfserv_9247 with PID 28584 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7917: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28584 at Tue May  2 15:36:28 UTC 2017
kill -USR1 28584
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28584 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28652 >/dev/null 2>/dev/null
selfserv_9247 with PID 28652 found at Tue May  2 15:36:28 UTC 2017
selfserv_9247 with PID 28652 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7918: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28652 at Tue May  2 15:36:28 UTC 2017
kill -USR1 28652
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28652 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28708 >/dev/null 2>/dev/null
selfserv_9247 with PID 28708 found at Tue May  2 15:36:28 UTC 2017
selfserv_9247 with PID 28708 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7919: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28708 at Tue May  2 15:36:28 UTC 2017
kill -USR1 28708
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28708 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28764 >/dev/null 2>/dev/null
selfserv_9247 with PID 28764 found at Tue May  2 15:36:28 UTC 2017
selfserv_9247 with PID 28764 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7920: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28764 at Tue May  2 15:36:29 UTC 2017
kill -USR1 28764
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28764 killed at Tue May  2 15:36:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28832 >/dev/null 2>/dev/null
selfserv_9247 with PID 28832 found at Tue May  2 15:36:29 UTC 2017
selfserv_9247 with PID 28832 started at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7921: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28832 at Tue May  2 15:36:29 UTC 2017
kill -USR1 28832
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28832 killed at Tue May  2 15:36:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28888 >/dev/null 2>/dev/null
selfserv_9247 with PID 28888 found at Tue May  2 15:36:29 UTC 2017
selfserv_9247 with PID 28888 started at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7922: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 28888 at Tue May  2 15:36:29 UTC 2017
kill -USR1 28888
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28888 killed at Tue May  2 15:36:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28944 >/dev/null 2>/dev/null
selfserv_9247 with PID 28944 found at Tue May  2 15:36:29 UTC 2017
selfserv_9247 with PID 28944 started at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7923: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28944 at Tue May  2 15:36:30 UTC 2017
kill -USR1 28944
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28944 killed at Tue May  2 15:36:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29012 >/dev/null 2>/dev/null
selfserv_9247 with PID 29012 found at Tue May  2 15:36:30 UTC 2017
selfserv_9247 with PID 29012 started at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7924: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29012 at Tue May  2 15:36:30 UTC 2017
kill -USR1 29012
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29012 killed at Tue May  2 15:36:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29068 >/dev/null 2>/dev/null
selfserv_9247 with PID 29068 found at Tue May  2 15:36:30 UTC 2017
selfserv_9247 with PID 29068 started at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7925: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29068 at Tue May  2 15:36:30 UTC 2017
kill -USR1 29068
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29068 killed at Tue May  2 15:36:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29124 >/dev/null 2>/dev/null
selfserv_9247 with PID 29124 found at Tue May  2 15:36:30 UTC 2017
selfserv_9247 with PID 29124 started at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7926: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29124 at Tue May  2 15:36:31 UTC 2017
kill -USR1 29124
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29124 killed at Tue May  2 15:36:31 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29192 >/dev/null 2>/dev/null
selfserv_9247 with PID 29192 found at Tue May  2 15:36:31 UTC 2017
selfserv_9247 with PID 29192 started at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7927: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29192 at Tue May  2 15:36:31 UTC 2017
kill -USR1 29192
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29192 killed at Tue May  2 15:36:31 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29248 >/dev/null 2>/dev/null
selfserv_9247 with PID 29248 found at Tue May  2 15:36:31 UTC 2017
selfserv_9247 with PID 29248 started at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7928: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29248 at Tue May  2 15:36:31 UTC 2017
kill -USR1 29248
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29248 killed at Tue May  2 15:36:31 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29304 >/dev/null 2>/dev/null
selfserv_9247 with PID 29304 found at Tue May  2 15:36:31 UTC 2017
selfserv_9247 with PID 29304 started at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7929: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29304 at Tue May  2 15:36:31 UTC 2017
kill -USR1 29304
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29304 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29372 >/dev/null 2>/dev/null
selfserv_9247 with PID 29372 found at Tue May  2 15:36:32 UTC 2017
selfserv_9247 with PID 29372 started at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7930: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29372 at Tue May  2 15:36:32 UTC 2017
kill -USR1 29372
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29372 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29428 >/dev/null 2>/dev/null
selfserv_9247 with PID 29428 found at Tue May  2 15:36:32 UTC 2017
selfserv_9247 with PID 29428 started at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7931: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29428 at Tue May  2 15:36:32 UTC 2017
kill -USR1 29428
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29428 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29484 >/dev/null 2>/dev/null
selfserv_9247 with PID 29484 found at Tue May  2 15:36:32 UTC 2017
selfserv_9247 with PID 29484 started at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7932: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29484 at Tue May  2 15:36:32 UTC 2017
kill -USR1 29484
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29484 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29552 >/dev/null 2>/dev/null
selfserv_9247 with PID 29552 found at Tue May  2 15:36:33 UTC 2017
selfserv_9247 with PID 29552 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7933: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29552 at Tue May  2 15:36:33 UTC 2017
kill -USR1 29552
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29552 killed at Tue May  2 15:36:33 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29608 >/dev/null 2>/dev/null
selfserv_9247 with PID 29608 found at Tue May  2 15:36:33 UTC 2017
selfserv_9247 with PID 29608 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7934: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29608 at Tue May  2 15:36:33 UTC 2017
kill -USR1 29608
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29608 killed at Tue May  2 15:36:33 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29664 >/dev/null 2>/dev/null
selfserv_9247 with PID 29664 found at Tue May  2 15:36:33 UTC 2017
selfserv_9247 with PID 29664 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7935: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29664 at Tue May  2 15:36:34 UTC 2017
kill -USR1 29664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29664 killed at Tue May  2 15:36:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29732 >/dev/null 2>/dev/null
selfserv_9247 with PID 29732 found at Tue May  2 15:36:34 UTC 2017
selfserv_9247 with PID 29732 started at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7936: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29732 at Tue May  2 15:36:34 UTC 2017
kill -USR1 29732
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29732 killed at Tue May  2 15:36:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29788 >/dev/null 2>/dev/null
selfserv_9247 with PID 29788 found at Tue May  2 15:36:34 UTC 2017
selfserv_9247 with PID 29788 started at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7937: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29788 at Tue May  2 15:36:34 UTC 2017
kill -USR1 29788
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29788 killed at Tue May  2 15:36:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29844 >/dev/null 2>/dev/null
selfserv_9247 with PID 29844 found at Tue May  2 15:36:34 UTC 2017
selfserv_9247 with PID 29844 started at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7938: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29844 at Tue May  2 15:36:34 UTC 2017
kill -USR1 29844
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29844 killed at Tue May  2 15:36:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29912 >/dev/null 2>/dev/null
selfserv_9247 with PID 29912 found at Tue May  2 15:36:35 UTC 2017
selfserv_9247 with PID 29912 started at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7939: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29912 at Tue May  2 15:36:35 UTC 2017
kill -USR1 29912
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29912 killed at Tue May  2 15:36:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29968 >/dev/null 2>/dev/null
selfserv_9247 with PID 29968 found at Tue May  2 15:36:35 UTC 2017
selfserv_9247 with PID 29968 started at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7940: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 29968 at Tue May  2 15:36:35 UTC 2017
kill -USR1 29968
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29968 killed at Tue May  2 15:36:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30024 >/dev/null 2>/dev/null
selfserv_9247 with PID 30024 found at Tue May  2 15:36:35 UTC 2017
selfserv_9247 with PID 30024 started at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7941: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30024 at Tue May  2 15:36:36 UTC 2017
kill -USR1 30024
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30024 killed at Tue May  2 15:36:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30092 >/dev/null 2>/dev/null
selfserv_9247 with PID 30092 found at Tue May  2 15:36:36 UTC 2017
selfserv_9247 with PID 30092 started at Tue May  2 15:36:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7942: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30092 at Tue May  2 15:36:36 UTC 2017
kill -USR1 30092
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30092 killed at Tue May  2 15:36:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30148 >/dev/null 2>/dev/null
selfserv_9247 with PID 30148 found at Tue May  2 15:36:36 UTC 2017
selfserv_9247 with PID 30148 started at Tue May  2 15:36:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7943: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30148 at Tue May  2 15:36:36 UTC 2017
kill -USR1 30148
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30148 killed at Tue May  2 15:36:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:36 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30204 >/dev/null 2>/dev/null
selfserv_9247 with PID 30204 found at Tue May  2 15:36:36 UTC 2017
selfserv_9247 with PID 30204 started at Tue May  2 15:36:36 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7944: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30204 at Tue May  2 15:36:37 UTC 2017
kill -USR1 30204
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30204 killed at Tue May  2 15:36:37 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30272 >/dev/null 2>/dev/null
selfserv_9247 with PID 30272 found at Tue May  2 15:36:37 UTC 2017
selfserv_9247 with PID 30272 started at Tue May  2 15:36:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7945: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30272 at Tue May  2 15:36:37 UTC 2017
kill -USR1 30272
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30272 killed at Tue May  2 15:36:37 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30328 >/dev/null 2>/dev/null
selfserv_9247 with PID 30328 found at Tue May  2 15:36:37 UTC 2017
selfserv_9247 with PID 30328 started at Tue May  2 15:36:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7946: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30328 at Tue May  2 15:36:37 UTC 2017
kill -USR1 30328
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30328 killed at Tue May  2 15:36:37 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:37 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30384 >/dev/null 2>/dev/null
selfserv_9247 with PID 30384 found at Tue May  2 15:36:37 UTC 2017
selfserv_9247 with PID 30384 started at Tue May  2 15:36:37 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7947: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30384 at Tue May  2 15:36:38 UTC 2017
kill -USR1 30384
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30384 killed at Tue May  2 15:36:38 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30452 >/dev/null 2>/dev/null
selfserv_9247 with PID 30452 found at Tue May  2 15:36:38 UTC 2017
selfserv_9247 with PID 30452 started at Tue May  2 15:36:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7948: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30452 at Tue May  2 15:36:38 UTC 2017
kill -USR1 30452
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30452 killed at Tue May  2 15:36:38 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30508 >/dev/null 2>/dev/null
selfserv_9247 with PID 30508 found at Tue May  2 15:36:38 UTC 2017
selfserv_9247 with PID 30508 started at Tue May  2 15:36:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7949: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30508 at Tue May  2 15:36:38 UTC 2017
kill -USR1 30508
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30508 killed at Tue May  2 15:36:38 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:38 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30564 >/dev/null 2>/dev/null
selfserv_9247 with PID 30564 found at Tue May  2 15:36:38 UTC 2017
selfserv_9247 with PID 30564 started at Tue May  2 15:36:38 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7950: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30564 at Tue May  2 15:36:39 UTC 2017
kill -USR1 30564
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30564 killed at Tue May  2 15:36:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30632 >/dev/null 2>/dev/null
selfserv_9247 with PID 30632 found at Tue May  2 15:36:39 UTC 2017
selfserv_9247 with PID 30632 started at Tue May  2 15:36:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7951: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30632 at Tue May  2 15:36:39 UTC 2017
kill -USR1 30632
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30632 killed at Tue May  2 15:36:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30688 >/dev/null 2>/dev/null
selfserv_9247 with PID 30688 found at Tue May  2 15:36:39 UTC 2017
selfserv_9247 with PID 30688 started at Tue May  2 15:36:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7952: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30688 at Tue May  2 15:36:39 UTC 2017
kill -USR1 30688
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30688 killed at Tue May  2 15:36:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30744 >/dev/null 2>/dev/null
selfserv_9247 with PID 30744 found at Tue May  2 15:36:39 UTC 2017
selfserv_9247 with PID 30744 started at Tue May  2 15:36:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7953: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30744 at Tue May  2 15:36:40 UTC 2017
kill -USR1 30744
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30744 killed at Tue May  2 15:36:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30812 >/dev/null 2>/dev/null
selfserv_9247 with PID 30812 found at Tue May  2 15:36:40 UTC 2017
selfserv_9247 with PID 30812 started at Tue May  2 15:36:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7954: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30812 at Tue May  2 15:36:40 UTC 2017
kill -USR1 30812
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30812 killed at Tue May  2 15:36:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30868 >/dev/null 2>/dev/null
selfserv_9247 with PID 30868 found at Tue May  2 15:36:40 UTC 2017
selfserv_9247 with PID 30868 started at Tue May  2 15:36:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7955: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30868 at Tue May  2 15:36:40 UTC 2017
kill -USR1 30868
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30868 killed at Tue May  2 15:36:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30924 >/dev/null 2>/dev/null
selfserv_9247 with PID 30924 found at Tue May  2 15:36:40 UTC 2017
selfserv_9247 with PID 30924 started at Tue May  2 15:36:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7956: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 30924 at Tue May  2 15:36:40 UTC 2017
kill -USR1 30924
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30924 killed at Tue May  2 15:36:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30992 >/dev/null 2>/dev/null
selfserv_9247 with PID 30992 found at Tue May  2 15:36:41 UTC 2017
selfserv_9247 with PID 30992 started at Tue May  2 15:36:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7957: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 30992 at Tue May  2 15:36:41 UTC 2017
kill -USR1 30992
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 30992 killed at Tue May  2 15:36:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31048 >/dev/null 2>/dev/null
selfserv_9247 with PID 31048 found at Tue May  2 15:36:41 UTC 2017
selfserv_9247 with PID 31048 started at Tue May  2 15:36:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7958: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31048 at Tue May  2 15:36:41 UTC 2017
kill -USR1 31048
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31048 killed at Tue May  2 15:36:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31104 >/dev/null 2>/dev/null
selfserv_9247 with PID 31104 found at Tue May  2 15:36:41 UTC 2017
selfserv_9247 with PID 31104 started at Tue May  2 15:36:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7959: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31104 at Tue May  2 15:36:41 UTC 2017
kill -USR1 31104
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31104 killed at Tue May  2 15:36:41 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:41 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31172 >/dev/null 2>/dev/null
selfserv_9247 with PID 31172 found at Tue May  2 15:36:41 UTC 2017
selfserv_9247 with PID 31172 started at Tue May  2 15:36:41 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7960: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31172 at Tue May  2 15:36:42 UTC 2017
kill -USR1 31172
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31172 killed at Tue May  2 15:36:42 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31228 >/dev/null 2>/dev/null
selfserv_9247 with PID 31228 found at Tue May  2 15:36:42 UTC 2017
selfserv_9247 with PID 31228 started at Tue May  2 15:36:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7961: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31228 at Tue May  2 15:36:42 UTC 2017
kill -USR1 31228
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31228 killed at Tue May  2 15:36:42 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:36:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31284 >/dev/null 2>/dev/null
selfserv_9247 with PID 31284 found at Tue May  2 15:36:42 UTC 2017
selfserv_9247 with PID 31284 started at Tue May  2 15:36:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7962: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31284 at Tue May  2 15:36:42 UTC 2017
kill -USR1 31284
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31284 killed at Tue May  2 15:36:42 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31352 >/dev/null 2>/dev/null
selfserv_9247 with PID 31352 found at Tue May  2 15:36:42 UTC 2017
selfserv_9247 with PID 31352 started at Tue May  2 15:36:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7963: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31352 at Tue May  2 15:36:43 UTC 2017
kill -USR1 31352
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31352 killed at Tue May  2 15:36:43 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31408 >/dev/null 2>/dev/null
selfserv_9247 with PID 31408 found at Tue May  2 15:36:43 UTC 2017
selfserv_9247 with PID 31408 started at Tue May  2 15:36:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7964: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31408 at Tue May  2 15:36:43 UTC 2017
kill -USR1 31408
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31408 killed at Tue May  2 15:36:43 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31465 >/dev/null 2>/dev/null
selfserv_9247 with PID 31465 found at Tue May  2 15:36:43 UTC 2017
selfserv_9247 with PID 31465 started at Tue May  2 15:36:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7965: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31465 at Tue May  2 15:36:43 UTC 2017
kill -USR1 31465
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31465 killed at Tue May  2 15:36:43 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:43 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31533 >/dev/null 2>/dev/null
selfserv_9247 with PID 31533 found at Tue May  2 15:36:43 UTC 2017
selfserv_9247 with PID 31533 started at Tue May  2 15:36:43 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7966: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31533 at Tue May  2 15:36:43 UTC 2017
kill -USR1 31533
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31533 killed at Tue May  2 15:36:43 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31589 >/dev/null 2>/dev/null
selfserv_9247 with PID 31589 found at Tue May  2 15:36:44 UTC 2017
selfserv_9247 with PID 31589 started at Tue May  2 15:36:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7967: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31589 at Tue May  2 15:36:44 UTC 2017
kill -USR1 31589
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31589 killed at Tue May  2 15:36:44 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31645 >/dev/null 2>/dev/null
selfserv_9247 with PID 31645 found at Tue May  2 15:36:44 UTC 2017
selfserv_9247 with PID 31645 started at Tue May  2 15:36:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7968: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31645 at Tue May  2 15:36:44 UTC 2017
kill -USR1 31645
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31645 killed at Tue May  2 15:36:44 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31722 >/dev/null 2>/dev/null
selfserv_9247 with PID 31722 found at Tue May  2 15:36:44 UTC 2017
selfserv_9247 with PID 31722 started at Tue May  2 15:36:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7969: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31722 at Tue May  2 15:36:44 UTC 2017
kill -USR1 31722
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31722 killed at Tue May  2 15:36:44 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:44 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31778 >/dev/null 2>/dev/null
selfserv_9247 with PID 31778 found at Tue May  2 15:36:44 UTC 2017
selfserv_9247 with PID 31778 started at Tue May  2 15:36:44 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7970: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31778 at Tue May  2 15:36:45 UTC 2017
kill -USR1 31778
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31778 killed at Tue May  2 15:36:45 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31834 >/dev/null 2>/dev/null
selfserv_9247 with PID 31834 found at Tue May  2 15:36:45 UTC 2017
selfserv_9247 with PID 31834 started at Tue May  2 15:36:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7971: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31834 at Tue May  2 15:36:45 UTC 2017
kill -USR1 31834
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31834 killed at Tue May  2 15:36:45 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31902 >/dev/null 2>/dev/null
selfserv_9247 with PID 31902 found at Tue May  2 15:36:45 UTC 2017
selfserv_9247 with PID 31902 started at Tue May  2 15:36:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7972: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 31902 at Tue May  2 15:36:45 UTC 2017
kill -USR1 31902
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31902 killed at Tue May  2 15:36:45 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31958 >/dev/null 2>/dev/null
selfserv_9247 with PID 31958 found at Tue May  2 15:36:45 UTC 2017
selfserv_9247 with PID 31958 started at Tue May  2 15:36:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7973: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 31958 at Tue May  2 15:36:46 UTC 2017
kill -USR1 31958
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31958 killed at Tue May  2 15:36:46 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32014 >/dev/null 2>/dev/null
selfserv_9247 with PID 32014 found at Tue May  2 15:36:46 UTC 2017
selfserv_9247 with PID 32014 started at Tue May  2 15:36:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7974: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32014 at Tue May  2 15:36:46 UTC 2017
kill -USR1 32014
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32014 killed at Tue May  2 15:36:46 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32082 >/dev/null 2>/dev/null
selfserv_9247 with PID 32082 found at Tue May  2 15:36:46 UTC 2017
selfserv_9247 with PID 32082 started at Tue May  2 15:36:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7975: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32082 at Tue May  2 15:36:46 UTC 2017
kill -USR1 32082
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32082 killed at Tue May  2 15:36:46 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32138 >/dev/null 2>/dev/null
selfserv_9247 with PID 32138 found at Tue May  2 15:36:46 UTC 2017
selfserv_9247 with PID 32138 started at Tue May  2 15:36:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7976: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32138 at Tue May  2 15:36:47 UTC 2017
kill -USR1 32138
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32138 killed at Tue May  2 15:36:47 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32194 >/dev/null 2>/dev/null
selfserv_9247 with PID 32194 found at Tue May  2 15:36:47 UTC 2017
selfserv_9247 with PID 32194 started at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7977: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32194 at Tue May  2 15:36:47 UTC 2017
kill -USR1 32194
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32194 killed at Tue May  2 15:36:47 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32262 >/dev/null 2>/dev/null
selfserv_9247 with PID 32262 found at Tue May  2 15:36:47 UTC 2017
selfserv_9247 with PID 32262 started at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7978: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32262 at Tue May  2 15:36:47 UTC 2017
kill -USR1 32262
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32262 killed at Tue May  2 15:36:47 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32318 >/dev/null 2>/dev/null
selfserv_9247 with PID 32318 found at Tue May  2 15:36:47 UTC 2017
selfserv_9247 with PID 32318 started at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7979: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 32318 at Tue May  2 15:36:47 UTC 2017
kill -USR1 32318
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32318 killed at Tue May  2 15:36:47 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32375 >/dev/null 2>/dev/null
selfserv_9247 with PID 32375 found at Tue May  2 15:36:48 UTC 2017
selfserv_9247 with PID 32375 started at Tue May  2 15:36:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7980: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32375 at Tue May  2 15:36:48 UTC 2017
kill -USR1 32375
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32375 killed at Tue May  2 15:36:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32443 >/dev/null 2>/dev/null
selfserv_9247 with PID 32443 found at Tue May  2 15:36:48 UTC 2017
selfserv_9247 with PID 32443 started at Tue May  2 15:36:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7981: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 32443 at Tue May  2 15:36:48 UTC 2017
kill -USR1 32443
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32443 killed at Tue May  2 15:36:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32499 >/dev/null 2>/dev/null
selfserv_9247 with PID 32499 found at Tue May  2 15:36:48 UTC 2017
selfserv_9247 with PID 32499 started at Tue May  2 15:36:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7982: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 32499 at Tue May  2 15:36:48 UTC 2017
kill -USR1 32499
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32499 killed at Tue May  2 15:36:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32555 >/dev/null 2>/dev/null
selfserv_9247 with PID 32555 found at Tue May  2 15:36:48 UTC 2017
selfserv_9247 with PID 32555 started at Tue May  2 15:36:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7983: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 32555 at Tue May  2 15:36:49 UTC 2017
kill -USR1 32555
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32555 killed at Tue May  2 15:36:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32623 >/dev/null 2>/dev/null
selfserv_9247 with PID 32623 found at Tue May  2 15:36:49 UTC 2017
selfserv_9247 with PID 32623 started at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7984: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32623 at Tue May  2 15:36:49 UTC 2017
kill -USR1 32623
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32623 killed at Tue May  2 15:36:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32679 >/dev/null 2>/dev/null
selfserv_9247 with PID 32679 found at Tue May  2 15:36:49 UTC 2017
selfserv_9247 with PID 32679 started at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7985: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 32679 at Tue May  2 15:36:49 UTC 2017
kill -USR1 32679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32679 killed at Tue May  2 15:36:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32735 >/dev/null 2>/dev/null
selfserv_9247 with PID 32735 found at Tue May  2 15:36:49 UTC 2017
selfserv_9247 with PID 32735 started at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7986: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 32735 at Tue May  2 15:36:49 UTC 2017
kill -USR1 32735
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32735 killed at Tue May  2 15:36:49 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 335 >/dev/null 2>/dev/null
selfserv_9247 with PID 335 found at Tue May  2 15:36:49 UTC 2017
selfserv_9247 with PID 335 started at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7987: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 335 at Tue May  2 15:36:50 UTC 2017
kill -USR1 335
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 335 killed at Tue May  2 15:36:50 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 393 >/dev/null 2>/dev/null
selfserv_9247 with PID 393 found at Tue May  2 15:36:50 UTC 2017
selfserv_9247 with PID 393 started at Tue May  2 15:36:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7988: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 393 at Tue May  2 15:36:50 UTC 2017
kill -USR1 393
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 393 killed at Tue May  2 15:36:50 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 452 >/dev/null 2>/dev/null
selfserv_9247 with PID 452 found at Tue May  2 15:36:50 UTC 2017
selfserv_9247 with PID 452 started at Tue May  2 15:36:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7989: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 452 at Tue May  2 15:36:50 UTC 2017
kill -USR1 452
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 452 killed at Tue May  2 15:36:50 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 529 >/dev/null 2>/dev/null
selfserv_9247 with PID 529 found at Tue May  2 15:36:50 UTC 2017
selfserv_9247 with PID 529 started at Tue May  2 15:36:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7990: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 529 at Tue May  2 15:36:50 UTC 2017
kill -USR1 529
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 529 killed at Tue May  2 15:36:50 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 599 >/dev/null 2>/dev/null
selfserv_9247 with PID 599 found at Tue May  2 15:36:50 UTC 2017
selfserv_9247 with PID 599 started at Tue May  2 15:36:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7991: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 599 at Tue May  2 15:36:51 UTC 2017
kill -USR1 599
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 599 killed at Tue May  2 15:36:51 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 656 >/dev/null 2>/dev/null
selfserv_9247 with PID 656 found at Tue May  2 15:36:51 UTC 2017
selfserv_9247 with PID 656 started at Tue May  2 15:36:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7992: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 656 at Tue May  2 15:36:51 UTC 2017
kill -USR1 656
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 656 killed at Tue May  2 15:36:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 729 >/dev/null 2>/dev/null
selfserv_9247 with PID 729 found at Tue May  2 15:36:51 UTC 2017
selfserv_9247 with PID 729 started at Tue May  2 15:36:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7993: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 729 at Tue May  2 15:36:51 UTC 2017
kill -USR1 729
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 729 killed at Tue May  2 15:36:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 789 >/dev/null 2>/dev/null
selfserv_9247 with PID 789 found at Tue May  2 15:36:51 UTC 2017
selfserv_9247 with PID 789 started at Tue May  2 15:36:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7994: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 789 at Tue May  2 15:36:52 UTC 2017
kill -USR1 789
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 789 killed at Tue May  2 15:36:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 896 >/dev/null 2>/dev/null
selfserv_9247 with PID 896 found at Tue May  2 15:36:52 UTC 2017
selfserv_9247 with PID 896 started at Tue May  2 15:36:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7995: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 896 at Tue May  2 15:36:52 UTC 2017
kill -USR1 896
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 896 killed at Tue May  2 15:36:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 967 >/dev/null 2>/dev/null
selfserv_9247 with PID 967 found at Tue May  2 15:36:52 UTC 2017
selfserv_9247 with PID 967 started at Tue May  2 15:36:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7996: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 967 at Tue May  2 15:36:52 UTC 2017
kill -USR1 967
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 967 killed at Tue May  2 15:36:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1023 >/dev/null 2>/dev/null
selfserv_9247 with PID 1023 found at Tue May  2 15:36:52 UTC 2017
selfserv_9247 with PID 1023 started at Tue May  2 15:36:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7997: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 1023 at Tue May  2 15:36:53 UTC 2017
kill -USR1 1023
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1023 killed at Tue May  2 15:36:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1079 >/dev/null 2>/dev/null
selfserv_9247 with PID 1079 found at Tue May  2 15:36:53 UTC 2017
selfserv_9247 with PID 1079 started at Tue May  2 15:36:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7998: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1079 at Tue May  2 15:36:53 UTC 2017
kill -USR1 1079
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1079 killed at Tue May  2 15:36:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1147 >/dev/null 2>/dev/null
selfserv_9247 with PID 1147 found at Tue May  2 15:36:53 UTC 2017
selfserv_9247 with PID 1147 started at Tue May  2 15:36:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7999: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1147 at Tue May  2 15:36:53 UTC 2017
kill -USR1 1147
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1147 killed at Tue May  2 15:36:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1203 >/dev/null 2>/dev/null
selfserv_9247 with PID 1203 found at Tue May  2 15:36:53 UTC 2017
selfserv_9247 with PID 1203 started at Tue May  2 15:36:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8000: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1203 at Tue May  2 15:36:54 UTC 2017
kill -USR1 1203
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1203 killed at Tue May  2 15:36:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1259 >/dev/null 2>/dev/null
selfserv_9247 with PID 1259 found at Tue May  2 15:36:54 UTC 2017
selfserv_9247 with PID 1259 started at Tue May  2 15:36:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8001: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1259 at Tue May  2 15:36:54 UTC 2017
kill -USR1 1259
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1259 killed at Tue May  2 15:36:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1327 >/dev/null 2>/dev/null
selfserv_9247 with PID 1327 found at Tue May  2 15:36:54 UTC 2017
selfserv_9247 with PID 1327 started at Tue May  2 15:36:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8002: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1327 at Tue May  2 15:36:54 UTC 2017
kill -USR1 1327
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1327 killed at Tue May  2 15:36:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1384 >/dev/null 2>/dev/null
selfserv_9247 with PID 1384 found at Tue May  2 15:36:54 UTC 2017
selfserv_9247 with PID 1384 started at Tue May  2 15:36:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8003: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 1384 at Tue May  2 15:36:55 UTC 2017
kill -USR1 1384
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1384 killed at Tue May  2 15:36:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1440 >/dev/null 2>/dev/null
selfserv_9247 with PID 1440 found at Tue May  2 15:36:55 UTC 2017
selfserv_9247 with PID 1440 started at Tue May  2 15:36:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8004: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1440 at Tue May  2 15:36:55 UTC 2017
kill -USR1 1440
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1440 killed at Tue May  2 15:36:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1508 >/dev/null 2>/dev/null
selfserv_9247 with PID 1508 found at Tue May  2 15:36:55 UTC 2017
selfserv_9247 with PID 1508 started at Tue May  2 15:36:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8005: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 1508 at Tue May  2 15:36:55 UTC 2017
kill -USR1 1508
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1508 killed at Tue May  2 15:36:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1564 >/dev/null 2>/dev/null
selfserv_9247 with PID 1564 found at Tue May  2 15:36:55 UTC 2017
selfserv_9247 with PID 1564 started at Tue May  2 15:36:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8006: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 1564 at Tue May  2 15:36:56 UTC 2017
kill -USR1 1564
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1564 killed at Tue May  2 15:36:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1620 >/dev/null 2>/dev/null
selfserv_9247 with PID 1620 found at Tue May  2 15:36:56 UTC 2017
selfserv_9247 with PID 1620 started at Tue May  2 15:36:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8007: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 1620 at Tue May  2 15:36:56 UTC 2017
kill -USR1 1620
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1620 killed at Tue May  2 15:36:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1688 >/dev/null 2>/dev/null
selfserv_9247 with PID 1688 found at Tue May  2 15:36:56 UTC 2017
selfserv_9247 with PID 1688 started at Tue May  2 15:36:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8008: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1688 at Tue May  2 15:36:56 UTC 2017
kill -USR1 1688
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1688 killed at Tue May  2 15:36:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1744 >/dev/null 2>/dev/null
selfserv_9247 with PID 1744 found at Tue May  2 15:36:56 UTC 2017
selfserv_9247 with PID 1744 started at Tue May  2 15:36:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8009: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 1744 at Tue May  2 15:36:57 UTC 2017
kill -USR1 1744
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1744 killed at Tue May  2 15:36:57 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1800 >/dev/null 2>/dev/null
selfserv_9247 with PID 1800 found at Tue May  2 15:36:57 UTC 2017
selfserv_9247 with PID 1800 started at Tue May  2 15:36:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8010: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1800 at Tue May  2 15:36:57 UTC 2017
kill -USR1 1800
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1800 killed at Tue May  2 15:36:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1868 >/dev/null 2>/dev/null
selfserv_9247 with PID 1868 found at Tue May  2 15:36:57 UTC 2017
selfserv_9247 with PID 1868 started at Tue May  2 15:36:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8011: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1868 at Tue May  2 15:36:57 UTC 2017
kill -USR1 1868
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1868 killed at Tue May  2 15:36:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1924 >/dev/null 2>/dev/null
selfserv_9247 with PID 1924 found at Tue May  2 15:36:57 UTC 2017
selfserv_9247 with PID 1924 started at Tue May  2 15:36:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8012: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1924 at Tue May  2 15:36:58 UTC 2017
kill -USR1 1924
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1924 killed at Tue May  2 15:36:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1980 >/dev/null 2>/dev/null
selfserv_9247 with PID 1980 found at Tue May  2 15:36:58 UTC 2017
selfserv_9247 with PID 1980 started at Tue May  2 15:36:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8013: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1980 at Tue May  2 15:36:58 UTC 2017
kill -USR1 1980
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1980 killed at Tue May  2 15:36:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2048 >/dev/null 2>/dev/null
selfserv_9247 with PID 2048 found at Tue May  2 15:36:58 UTC 2017
selfserv_9247 with PID 2048 started at Tue May  2 15:36:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8014: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2048 at Tue May  2 15:36:58 UTC 2017
kill -USR1 2048
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2048 killed at Tue May  2 15:36:59 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2104 >/dev/null 2>/dev/null
selfserv_9247 with PID 2104 found at Tue May  2 15:36:59 UTC 2017
selfserv_9247 with PID 2104 started at Tue May  2 15:36:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8015: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 2104 at Tue May  2 15:36:59 UTC 2017
kill -USR1 2104
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2104 killed at Tue May  2 15:36:59 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:36:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2160 >/dev/null 2>/dev/null
selfserv_9247 with PID 2160 found at Tue May  2 15:36:59 UTC 2017
selfserv_9247 with PID 2160 started at Tue May  2 15:36:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8016: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2160 at Tue May  2 15:36:59 UTC 2017
kill -USR1 2160
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2160 killed at Tue May  2 15:36:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:36:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:36:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2228 >/dev/null 2>/dev/null
selfserv_9247 with PID 2228 found at Tue May  2 15:36:59 UTC 2017
selfserv_9247 with PID 2228 started at Tue May  2 15:36:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8017: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 2228 at Tue May  2 15:36:59 UTC 2017
kill -USR1 2228
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2228 killed at Tue May  2 15:37:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:37:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2284 >/dev/null 2>/dev/null
selfserv_9247 with PID 2284 found at Tue May  2 15:37:00 UTC 2017
selfserv_9247 with PID 2284 started at Tue May  2 15:37:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8018: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 2284 at Tue May  2 15:37:00 UTC 2017
kill -USR1 2284
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2284 killed at Tue May  2 15:37:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:37:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2340 >/dev/null 2>/dev/null
selfserv_9247 with PID 2340 found at Tue May  2 15:37:00 UTC 2017
selfserv_9247 with PID 2340 started at Tue May  2 15:37:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8019: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 2340 at Tue May  2 15:37:00 UTC 2017
kill -USR1 2340
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2340 killed at Tue May  2 15:37:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2408 >/dev/null 2>/dev/null
selfserv_9247 with PID 2408 found at Tue May  2 15:37:00 UTC 2017
selfserv_9247 with PID 2408 started at Tue May  2 15:37:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8020: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2408 at Tue May  2 15:37:00 UTC 2017
kill -USR1 2408
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2408 killed at Tue May  2 15:37:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2464 >/dev/null 2>/dev/null
selfserv_9247 with PID 2464 found at Tue May  2 15:37:00 UTC 2017
selfserv_9247 with PID 2464 started at Tue May  2 15:37:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8021: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 2464 at Tue May  2 15:37:01 UTC 2017
kill -USR1 2464
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2464 killed at Tue May  2 15:37:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2520 >/dev/null 2>/dev/null
selfserv_9247 with PID 2520 found at Tue May  2 15:37:01 UTC 2017
selfserv_9247 with PID 2520 started at Tue May  2 15:37:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8022: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2520 at Tue May  2 15:37:01 UTC 2017
kill -USR1 2520
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2520 killed at Tue May  2 15:37:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:37:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2588 >/dev/null 2>/dev/null
selfserv_9247 with PID 2588 found at Tue May  2 15:37:01 UTC 2017
selfserv_9247 with PID 2588 started at Tue May  2 15:37:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8023: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2588 at Tue May  2 15:37:01 UTC 2017
kill -USR1 2588
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2588 killed at Tue May  2 15:37:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:37:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2644 >/dev/null 2>/dev/null
selfserv_9247 with PID 2644 found at Tue May  2 15:37:01 UTC 2017
selfserv_9247 with PID 2644 started at Tue May  2 15:37:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8024: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2644 at Tue May  2 15:37:02 UTC 2017
kill -USR1 2644
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2644 killed at Tue May  2 15:37:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:37:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2700 >/dev/null 2>/dev/null
selfserv_9247 with PID 2700 found at Tue May  2 15:37:02 UTC 2017
selfserv_9247 with PID 2700 started at Tue May  2 15:37:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8025: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2700 at Tue May  2 15:37:02 UTC 2017
kill -USR1 2700
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2700 killed at Tue May  2 15:37:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2768 >/dev/null 2>/dev/null
selfserv_9247 with PID 2768 found at Tue May  2 15:37:02 UTC 2017
selfserv_9247 with PID 2768 started at Tue May  2 15:37:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8026: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2768 at Tue May  2 15:37:02 UTC 2017
kill -USR1 2768
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2768 killed at Tue May  2 15:37:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2824 >/dev/null 2>/dev/null
selfserv_9247 with PID 2824 found at Tue May  2 15:37:02 UTC 2017
selfserv_9247 with PID 2824 started at Tue May  2 15:37:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8027: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 2824 at Tue May  2 15:37:02 UTC 2017
kill -USR1 2824
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2824 killed at Tue May  2 15:37:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2881 >/dev/null 2>/dev/null
selfserv_9247 with PID 2881 found at Tue May  2 15:37:02 UTC 2017
selfserv_9247 with PID 2881 started at Tue May  2 15:37:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8028: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 2881 at Tue May  2 15:37:03 UTC 2017
kill -USR1 2881
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2881 killed at Tue May  2 15:37:03 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/authin.tl.tmp
0
selfserv_9247 starting at Tue May  2 15:37:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:03 UTC 2017
selfserv_9247 with PID 2944 started at Tue May  2 15:37:03 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #8029: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #8030: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #8031: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #8032: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #8033: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #8034: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #8035: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #8036: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #8037: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #8038: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #8039: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #8040: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #8041: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8042: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #8043: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #8044: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #8045: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #8046: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #8047: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #8048: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #8049: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #8050: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #8051: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #8052: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #8053: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #8054: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #8055: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8056: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #8057: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #8058: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #8059: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #8060: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #8061: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #8062: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #8063: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #8064: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #8065: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #8066: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #8067: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #8068: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2944 >/dev/null 2>/dev/null
selfserv_9247 with PID 2944 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #8069: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 2944 at Tue May  2 15:37:09 UTC 2017
kill -USR1 2944
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 2944 killed at Tue May  2 15:37:09 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:09 UTC 2017
selfserv_9247 with PID 4368 started at Tue May  2 15:37:09 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #8070: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #8071: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #8072: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #8073: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #8074: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #8075: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #8076: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #8077: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #8078: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #8079: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #8080: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #8081: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #8082: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8083: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #8084: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #8085: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #8086: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #8087: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #8088: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #8089: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #8090: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #8091: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #8092: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #8093: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #8094: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #8095: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #8096: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8097: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #8098: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #8099: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #8100: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #8101: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #8102: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #8103: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #8104: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #8105: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #8106: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #8107: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #8108: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #8109: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9247 with PID 4368 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #8110: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4368 at Tue May  2 15:37:15 UTC 2017
kill -USR1 4368
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4368 killed at Tue May  2 15:37:15 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:15 UTC 2017
selfserv_9247 with PID 5796 started at Tue May  2 15:37:15 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #8111: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #8112: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #8113: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #8114: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #8115: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #8116: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #8117: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #8118: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #8119: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #8120: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #8121: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #8122: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #8123: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8124: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #8125: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #8126: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #8127: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #8128: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #8129: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #8130: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #8131: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #8132: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #8133: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #8134: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #8135: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #8136: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #8137: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8138: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #8139: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #8140: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #8141: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #8142: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #8143: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #8144: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #8145: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #8146: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #8147: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #8148: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #8149: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #8150: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5796 >/dev/null 2>/dev/null
selfserv_9247 with PID 5796 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #8151: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5796 at Tue May  2 15:37:22 UTC 2017
kill -USR1 5796
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5796 killed at Tue May  2 15:37:22 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:22 UTC 2017
selfserv_9247 with PID 7223 started at Tue May  2 15:37:22 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #8152: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #8153: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #8154: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #8155: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #8156: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #8157: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #8158: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #8159: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #8160: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #8161: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #8162: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #8163: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #8164: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8165: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #8166: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #8167: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #8168: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #8169: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #8170: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #8171: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #8172: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #8173: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #8174: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #8175: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #8176: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #8177: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #8178: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8179: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #8180: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #8181: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #8182: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #8183: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #8184: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #8185: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #8186: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #8187: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #8188: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #8189: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #8190: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #8191: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #8192: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 7223 at Tue May  2 15:37:27 UTC 2017
kill -USR1 7223
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7223 killed at Tue May  2 15:37:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8651 >/dev/null 2>/dev/null
selfserv_9247 with PID 8651 found at Tue May  2 15:37:27 UTC 2017
selfserv_9247 with PID 8651 started at Tue May  2 15:37:27 UTC 2017
trying to kill selfserv_9247 with PID 8651 at Tue May  2 15:37:27 UTC 2017
kill -USR1 8651
./ssl.sh: line 183:  8651 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8651 killed at Tue May  2 15:37:27 UTC 2017
selfserv_9247 starting at Tue May  2 15:37:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:28 UTC 2017
selfserv_9247 with PID 8685 started at Tue May  2 15:37:28 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:28 UTC 2017
ssl.sh: #8193: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #8194: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #8195: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #8196: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #8197: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #8198: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #8199: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #8200: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #8201: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #8202: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #8203: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #8204: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #8205: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8206: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #8207: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #8208: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #8209: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #8210: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #8211: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #8212: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #8213: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #8214: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #8215: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #8216: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #8217: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #8218: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #8219: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8220: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #8221: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #8222: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #8223: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #8224: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #8225: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #8226: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #8227: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #8228: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #8229: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #8230: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #8231: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #8232: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8685 >/dev/null 2>/dev/null
selfserv_9247 with PID 8685 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #8233: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8685 at Tue May  2 15:37:35 UTC 2017
kill -USR1 8685
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8685 killed at Tue May  2 15:37:35 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:35 UTC 2017
selfserv_9247 with PID 10116 started at Tue May  2 15:37:35 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #8234: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #8235: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #8236: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #8237: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #8238: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #8239: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #8240: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #8241: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #8242: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #8243: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #8244: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #8245: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #8246: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8247: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #8248: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #8249: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #8250: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #8251: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #8252: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #8253: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #8254: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #8255: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #8256: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #8257: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #8258: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #8259: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #8260: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8261: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #8262: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #8263: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #8264: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #8265: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #8266: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #8267: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #8268: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #8269: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #8270: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #8271: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #8272: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #8273: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10116 >/dev/null 2>/dev/null
selfserv_9247 with PID 10116 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #8274: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10116 at Tue May  2 15:37:42 UTC 2017
kill -USR1 10116
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10116 killed at Tue May  2 15:37:42 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:42 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:42 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:42 UTC 2017
selfserv_9247 with PID 11549 started at Tue May  2 15:37:42 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #8275: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #8276: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #8277: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #8278: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #8279: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #8280: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #8281: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #8282: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #8283: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #8284: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #8285: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #8286: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #8287: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8288: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #8289: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #8290: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #8291: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #8292: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #8293: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #8294: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #8295: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #8296: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #8297: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #8298: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #8299: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #8300: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #8301: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8302: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #8303: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #8304: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #8305: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #8306: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #8307: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #8308: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #8309: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #8310: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #8311: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #8312: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #8313: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #8314: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11549 >/dev/null 2>/dev/null
selfserv_9247 with PID 11549 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #8315: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11549 at Tue May  2 15:37:47 UTC 2017
kill -USR1 11549
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11549 killed at Tue May  2 15:37:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:47 UTC 2017
selfserv_9247 with PID 12972 started at Tue May  2 15:37:47 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #8316: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #8317: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #8318: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #8319: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #8320: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #8321: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #8322: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #8323: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #8324: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #8325: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #8326: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #8327: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #8328: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8329: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #8330: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #8331: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #8332: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #8333: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #8334: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #8335: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #8336: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #8337: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #8338: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #8339: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #8340: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #8341: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #8342: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8343: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #8344: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #8345: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #8346: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #8347: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #8348: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #8349: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #8350: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #8351: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #8352: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #8353: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #8354: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #8355: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12972 >/dev/null 2>/dev/null
selfserv_9247 with PID 12972 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #8356: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12972 at Tue May  2 15:37:54 UTC 2017
kill -USR1 12972
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12972 killed at Tue May  2 15:37:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:37:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:37:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:54 UTC 2017
selfserv_9247 with PID 14405 started at Tue May  2 15:37:54 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #8357: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #8358: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #8359: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #8360: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #8361: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #8362: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #8363: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #8364: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #8365: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #8366: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:56 UTC 2017
ssl.sh: #8367: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:56 UTC 2017
ssl.sh: #8368: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:56 UTC 2017
ssl.sh: #8369: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8370: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:56 UTC 2017
ssl.sh: #8371: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:56 UTC 2017
ssl.sh: #8372: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:57 UTC 2017
ssl.sh: #8373: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:57 UTC 2017
ssl.sh: #8374: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:57 UTC 2017
ssl.sh: #8375: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:57 UTC 2017
ssl.sh: #8376: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:57 UTC 2017
ssl.sh: #8377: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:58 UTC 2017
ssl.sh: #8378: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:58 UTC 2017
ssl.sh: #8379: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:58 UTC 2017
ssl.sh: #8380: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:58 UTC 2017
ssl.sh: #8381: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:58 UTC 2017
ssl.sh: #8382: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:59 UTC 2017
ssl.sh: #8383: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8384: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:59 UTC 2017
ssl.sh: #8385: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:59 UTC 2017
ssl.sh: #8386: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:59 UTC 2017
ssl.sh: #8387: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:37:59 UTC 2017
ssl.sh: #8388: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:00 UTC 2017
ssl.sh: #8389: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:00 UTC 2017
ssl.sh: #8390: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:00 UTC 2017
ssl.sh: #8391: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:00 UTC 2017
ssl.sh: #8392: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:00 UTC 2017
ssl.sh: #8393: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:01 UTC 2017
ssl.sh: #8394: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:01 UTC 2017
ssl.sh: #8395: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:01 UTC 2017
ssl.sh: #8396: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14405 >/dev/null 2>/dev/null
selfserv_9247 with PID 14405 found at Tue May  2 15:38:01 UTC 2017
ssl.sh: #8397: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 14405 at Tue May  2 15:38:01 UTC 2017
kill -USR1 14405
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 14405 killed at Tue May  2 15:38:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:38:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:01 UTC 2017
selfserv_9247 with PID 15838 started at Tue May  2 15:38:01 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:01 UTC 2017
ssl.sh: #8398: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:02 UTC 2017
ssl.sh: #8399: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:02 UTC 2017
ssl.sh: #8400: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:02 UTC 2017
ssl.sh: #8401: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:02 UTC 2017
ssl.sh: #8402: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:02 UTC 2017
ssl.sh: #8403: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:02 UTC 2017
ssl.sh: #8404: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:02 UTC 2017
ssl.sh: #8405: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:02 UTC 2017
ssl.sh: #8406: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:03 UTC 2017
ssl.sh: #8407: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:03 UTC 2017
ssl.sh: #8408: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:03 UTC 2017
ssl.sh: #8409: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:03 UTC 2017
ssl.sh: #8410: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8411: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:03 UTC 2017
ssl.sh: #8412: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:03 UTC 2017
ssl.sh: #8413: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:03 UTC 2017
ssl.sh: #8414: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:04 UTC 2017
ssl.sh: #8415: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:04 UTC 2017
ssl.sh: #8416: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:04 UTC 2017
ssl.sh: #8417: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:04 UTC 2017
ssl.sh: #8418: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:04 UTC 2017
ssl.sh: #8419: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:04 UTC 2017
ssl.sh: #8420: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:04 UTC 2017
ssl.sh: #8421: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:04 UTC 2017
ssl.sh: #8422: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:05 UTC 2017
ssl.sh: #8423: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:05 UTC 2017
ssl.sh: #8424: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8425: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:05 UTC 2017
ssl.sh: #8426: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:05 UTC 2017
ssl.sh: #8427: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:05 UTC 2017
ssl.sh: #8428: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:05 UTC 2017
ssl.sh: #8429: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:05 UTC 2017
ssl.sh: #8430: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:06 UTC 2017
ssl.sh: #8431: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:06 UTC 2017
ssl.sh: #8432: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:06 UTC 2017
ssl.sh: #8433: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:06 UTC 2017
ssl.sh: #8434: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:06 UTC 2017
ssl.sh: #8435: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:06 UTC 2017
ssl.sh: #8436: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:06 UTC 2017
ssl.sh: #8437: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9247 with PID 15838 found at Tue May  2 15:38:06 UTC 2017
ssl.sh: #8438: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 15838 at Tue May  2 15:38:06 UTC 2017
kill -USR1 15838
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 15838 killed at Tue May  2 15:38:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:38:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17263 >/dev/null 2>/dev/null
selfserv_9247 with PID 17263 found at Tue May  2 15:38:06 UTC 2017
selfserv_9247 with PID 17263 started at Tue May  2 15:38:06 UTC 2017
trying to kill selfserv_9247 with PID 17263 at Tue May  2 15:38:06 UTC 2017
kill -USR1 17263
./ssl.sh: line 183: 17263 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17263 killed at Tue May  2 15:38:06 UTC 2017
selfserv_9247 starting at Tue May  2 15:38:07 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:07 UTC 2017
selfserv_9247 with PID 17297 started at Tue May  2 15:38:07 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:07 UTC 2017
ssl.sh: #8439: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:07 UTC 2017
ssl.sh: #8440: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:07 UTC 2017
ssl.sh: #8441: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:07 UTC 2017
ssl.sh: #8442: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:07 UTC 2017
ssl.sh: #8443: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:07 UTC 2017
ssl.sh: #8444: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:08 UTC 2017
ssl.sh: #8445: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:08 UTC 2017
ssl.sh: #8446: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:08 UTC 2017
ssl.sh: #8447: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:08 UTC 2017
ssl.sh: #8448: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:08 UTC 2017
ssl.sh: #8449: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:08 UTC 2017
ssl.sh: #8450: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:09 UTC 2017
ssl.sh: #8451: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8452: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:09 UTC 2017
ssl.sh: #8453: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:09 UTC 2017
ssl.sh: #8454: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:09 UTC 2017
ssl.sh: #8455: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:09 UTC 2017
ssl.sh: #8456: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:09 UTC 2017
ssl.sh: #8457: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:09 UTC 2017
ssl.sh: #8458: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:10 UTC 2017
ssl.sh: #8459: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:10 UTC 2017
ssl.sh: #8460: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:10 UTC 2017
ssl.sh: #8461: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:10 UTC 2017
ssl.sh: #8462: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:10 UTC 2017
ssl.sh: #8463: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:10 UTC 2017
ssl.sh: #8464: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:10 UTC 2017
ssl.sh: #8465: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8466: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:11 UTC 2017
ssl.sh: #8467: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:11 UTC 2017
ssl.sh: #8468: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:11 UTC 2017
ssl.sh: #8469: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:11 UTC 2017
ssl.sh: #8470: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:11 UTC 2017
ssl.sh: #8471: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:11 UTC 2017
ssl.sh: #8472: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:12 UTC 2017
ssl.sh: #8473: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:12 UTC 2017
ssl.sh: #8474: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:12 UTC 2017
ssl.sh: #8475: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:12 UTC 2017
ssl.sh: #8476: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:12 UTC 2017
ssl.sh: #8477: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:12 UTC 2017
ssl.sh: #8478: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17297 >/dev/null 2>/dev/null
selfserv_9247 with PID 17297 found at Tue May  2 15:38:12 UTC 2017
ssl.sh: #8479: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 17297 at Tue May  2 15:38:12 UTC 2017
kill -USR1 17297
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 17297 killed at Tue May  2 15:38:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:38:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:12 UTC 2017
selfserv_9247 with PID 18723 started at Tue May  2 15:38:12 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:13 UTC 2017
ssl.sh: #8480: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:13 UTC 2017
ssl.sh: #8481: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:13 UTC 2017
ssl.sh: #8482: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:13 UTC 2017
ssl.sh: #8483: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:13 UTC 2017
ssl.sh: #8484: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:14 UTC 2017
ssl.sh: #8485: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:14 UTC 2017
ssl.sh: #8486: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:14 UTC 2017
ssl.sh: #8487: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:14 UTC 2017
ssl.sh: #8488: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:14 UTC 2017
ssl.sh: #8489: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:14 UTC 2017
ssl.sh: #8490: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:14 UTC 2017
ssl.sh: #8491: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:15 UTC 2017
ssl.sh: #8492: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8493: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:15 UTC 2017
ssl.sh: #8494: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:15 UTC 2017
ssl.sh: #8495: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:15 UTC 2017
ssl.sh: #8496: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:15 UTC 2017
ssl.sh: #8497: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:15 UTC 2017
ssl.sh: #8498: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:16 UTC 2017
ssl.sh: #8499: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:16 UTC 2017
ssl.sh: #8500: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:16 UTC 2017
ssl.sh: #8501: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:16 UTC 2017
ssl.sh: #8502: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:16 UTC 2017
ssl.sh: #8503: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:16 UTC 2017
ssl.sh: #8504: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:17 UTC 2017
ssl.sh: #8505: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:17 UTC 2017
ssl.sh: #8506: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8507: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:17 UTC 2017
ssl.sh: #8508: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:17 UTC 2017
ssl.sh: #8509: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:17 UTC 2017
ssl.sh: #8510: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:17 UTC 2017
ssl.sh: #8511: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:18 UTC 2017
ssl.sh: #8512: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:18 UTC 2017
ssl.sh: #8513: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:18 UTC 2017
ssl.sh: #8514: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:18 UTC 2017
ssl.sh: #8515: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:18 UTC 2017
ssl.sh: #8516: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:19 UTC 2017
ssl.sh: #8517: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:19 UTC 2017
ssl.sh: #8518: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:19 UTC 2017
ssl.sh: #8519: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18723 >/dev/null 2>/dev/null
selfserv_9247 with PID 18723 found at Tue May  2 15:38:19 UTC 2017
ssl.sh: #8520: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 18723 at Tue May  2 15:38:19 UTC 2017
kill -USR1 18723
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18723 killed at Tue May  2 15:38:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:38:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:19 UTC 2017
selfserv_9247 with PID 20146 started at Tue May  2 15:38:19 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:19 UTC 2017
ssl.sh: #8521: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:19 UTC 2017
ssl.sh: #8522: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:19 UTC 2017
ssl.sh: #8523: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:20 UTC 2017
ssl.sh: #8524: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:20 UTC 2017
ssl.sh: #8525: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:20 UTC 2017
ssl.sh: #8526: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:20 UTC 2017
ssl.sh: #8527: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:20 UTC 2017
ssl.sh: #8528: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:20 UTC 2017
ssl.sh: #8529: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:20 UTC 2017
ssl.sh: #8530: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:21 UTC 2017
ssl.sh: #8531: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:21 UTC 2017
ssl.sh: #8532: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:21 UTC 2017
ssl.sh: #8533: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8534: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:21 UTC 2017
ssl.sh: #8535: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:21 UTC 2017
ssl.sh: #8536: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:21 UTC 2017
ssl.sh: #8537: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:22 UTC 2017
ssl.sh: #8538: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:22 UTC 2017
ssl.sh: #8539: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:22 UTC 2017
ssl.sh: #8540: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:22 UTC 2017
ssl.sh: #8541: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:22 UTC 2017
ssl.sh: #8542: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:22 UTC 2017
ssl.sh: #8543: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:22 UTC 2017
ssl.sh: #8544: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:23 UTC 2017
ssl.sh: #8545: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:23 UTC 2017
ssl.sh: #8546: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:23 UTC 2017
ssl.sh: #8547: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8548: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:23 UTC 2017
ssl.sh: #8549: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:23 UTC 2017
ssl.sh: #8550: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:23 UTC 2017
ssl.sh: #8551: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:23 UTC 2017
ssl.sh: #8552: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:24 UTC 2017
ssl.sh: #8553: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:24 UTC 2017
ssl.sh: #8554: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:24 UTC 2017
ssl.sh: #8555: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:24 UTC 2017
ssl.sh: #8556: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:24 UTC 2017
ssl.sh: #8557: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:24 UTC 2017
ssl.sh: #8558: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:24 UTC 2017
ssl.sh: #8559: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:25 UTC 2017
ssl.sh: #8560: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20146 >/dev/null 2>/dev/null
selfserv_9247 with PID 20146 found at Tue May  2 15:38:25 UTC 2017
ssl.sh: #8561: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 20146 at Tue May  2 15:38:25 UTC 2017
kill -USR1 20146
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 20146 killed at Tue May  2 15:38:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:38:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:25 UTC 2017
selfserv_9247 with PID 21570 started at Tue May  2 15:38:25 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:25 UTC 2017
ssl.sh: #8562: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:25 UTC 2017
ssl.sh: #8563: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:25 UTC 2017
ssl.sh: #8564: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:26 UTC 2017
ssl.sh: #8565: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:26 UTC 2017
ssl.sh: #8566: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:26 UTC 2017
ssl.sh: #8567: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:26 UTC 2017
ssl.sh: #8568: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:26 UTC 2017
ssl.sh: #8569: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:26 UTC 2017
ssl.sh: #8570: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:26 UTC 2017
ssl.sh: #8571: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:27 UTC 2017
ssl.sh: #8572: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:27 UTC 2017
ssl.sh: #8573: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:27 UTC 2017
ssl.sh: #8574: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8575: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:27 UTC 2017
ssl.sh: #8576: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:28 UTC 2017
ssl.sh: #8577: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:28 UTC 2017
ssl.sh: #8578: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:28 UTC 2017
ssl.sh: #8579: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:28 UTC 2017
ssl.sh: #8580: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:28 UTC 2017
ssl.sh: #8581: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:28 UTC 2017
ssl.sh: #8582: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:28 UTC 2017
ssl.sh: #8583: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:29 UTC 2017
ssl.sh: #8584: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:29 UTC 2017
ssl.sh: #8585: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:29 UTC 2017
ssl.sh: #8586: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:29 UTC 2017
ssl.sh: #8587: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:29 UTC 2017
ssl.sh: #8588: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8589: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:30 UTC 2017
ssl.sh: #8590: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:30 UTC 2017
ssl.sh: #8591: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:30 UTC 2017
ssl.sh: #8592: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:30 UTC 2017
ssl.sh: #8593: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:30 UTC 2017
ssl.sh: #8594: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:31 UTC 2017
ssl.sh: #8595: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:31 UTC 2017
ssl.sh: #8596: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:31 UTC 2017
ssl.sh: #8597: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:31 UTC 2017
ssl.sh: #8598: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:31 UTC 2017
ssl.sh: #8599: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:31 UTC 2017
ssl.sh: #8600: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:32 UTC 2017
ssl.sh: #8601: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21570 >/dev/null 2>/dev/null
selfserv_9247 with PID 21570 found at Tue May  2 15:38:32 UTC 2017
ssl.sh: #8602: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21570 at Tue May  2 15:38:32 UTC 2017
kill -USR1 21570
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21570 killed at Tue May  2 15:38:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:38:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:32 UTC 2017
selfserv_9247 with PID 22992 started at Tue May  2 15:38:32 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:32 UTC 2017
ssl.sh: #8603: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:32 UTC 2017
ssl.sh: #8604: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:32 UTC 2017
ssl.sh: #8605: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:32 UTC 2017
ssl.sh: #8606: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:33 UTC 2017
ssl.sh: #8607: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:33 UTC 2017
ssl.sh: #8608: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:33 UTC 2017
ssl.sh: #8609: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:33 UTC 2017
ssl.sh: #8610: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:33 UTC 2017
ssl.sh: #8611: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:34 UTC 2017
ssl.sh: #8612: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:34 UTC 2017
ssl.sh: #8613: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:34 UTC 2017
ssl.sh: #8614: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:34 UTC 2017
ssl.sh: #8615: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8616: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:34 UTC 2017
ssl.sh: #8617: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:35 UTC 2017
ssl.sh: #8618: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:35 UTC 2017
ssl.sh: #8619: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:35 UTC 2017
ssl.sh: #8620: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:35 UTC 2017
ssl.sh: #8621: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:35 UTC 2017
ssl.sh: #8622: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:35 UTC 2017
ssl.sh: #8623: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:36 UTC 2017
ssl.sh: #8624: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:36 UTC 2017
ssl.sh: #8625: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:36 UTC 2017
ssl.sh: #8626: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:36 UTC 2017
ssl.sh: #8627: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:36 UTC 2017
ssl.sh: #8628: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:37 UTC 2017
ssl.sh: #8629: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8630: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:37 UTC 2017
ssl.sh: #8631: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:37 UTC 2017
ssl.sh: #8632: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:37 UTC 2017
ssl.sh: #8633: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:37 UTC 2017
ssl.sh: #8634: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:38 UTC 2017
ssl.sh: #8635: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:38 UTC 2017
ssl.sh: #8636: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:38 UTC 2017
ssl.sh: #8637: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:38 UTC 2017
ssl.sh: #8638: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:38 UTC 2017
ssl.sh: #8639: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:39 UTC 2017
ssl.sh: #8640: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:39 UTC 2017
ssl.sh: #8641: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:39 UTC 2017
ssl.sh: #8642: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22992 >/dev/null 2>/dev/null
selfserv_9247 with PID 22992 found at Tue May  2 15:38:39 UTC 2017
ssl.sh: #8643: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22992 at Tue May  2 15:38:39 UTC 2017
kill -USR1 22992
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22992 killed at Tue May  2 15:38:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:38:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:39 UTC 2017
selfserv_9247 with PID 24414 started at Tue May  2 15:38:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:39 UTC 2017
ssl.sh: #8644: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:40 UTC 2017
ssl.sh: #8645: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:40 UTC 2017
ssl.sh: #8646: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:40 UTC 2017
ssl.sh: #8647: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:40 UTC 2017
ssl.sh: #8648: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:40 UTC 2017
ssl.sh: #8649: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:40 UTC 2017
ssl.sh: #8650: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:41 UTC 2017
ssl.sh: #8651: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:41 UTC 2017
ssl.sh: #8652: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:41 UTC 2017
ssl.sh: #8653: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:41 UTC 2017
ssl.sh: #8654: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:41 UTC 2017
ssl.sh: #8655: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:41 UTC 2017
ssl.sh: #8656: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8657: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:42 UTC 2017
ssl.sh: #8658: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:42 UTC 2017
ssl.sh: #8659: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:42 UTC 2017
ssl.sh: #8660: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:42 UTC 2017
ssl.sh: #8661: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:42 UTC 2017
ssl.sh: #8662: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:42 UTC 2017
ssl.sh: #8663: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:42 UTC 2017
ssl.sh: #8664: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:43 UTC 2017
ssl.sh: #8665: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:43 UTC 2017
ssl.sh: #8666: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:43 UTC 2017
ssl.sh: #8667: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:43 UTC 2017
ssl.sh: #8668: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:43 UTC 2017
ssl.sh: #8669: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:43 UTC 2017
ssl.sh: #8670: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8671: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:44 UTC 2017
ssl.sh: #8672: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:44 UTC 2017
ssl.sh: #8673: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:44 UTC 2017
ssl.sh: #8674: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:44 UTC 2017
ssl.sh: #8675: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:44 UTC 2017
ssl.sh: #8676: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:44 UTC 2017
ssl.sh: #8677: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:44 UTC 2017
ssl.sh: #8678: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:45 UTC 2017
ssl.sh: #8679: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:45 UTC 2017
ssl.sh: #8680: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:45 UTC 2017
ssl.sh: #8681: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:45 UTC 2017
ssl.sh: #8682: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:45 UTC 2017
ssl.sh: #8683: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24414 >/dev/null 2>/dev/null
selfserv_9247 with PID 24414 found at Tue May  2 15:38:45 UTC 2017
ssl.sh: #8684: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 24414 at Tue May  2 15:38:45 UTC 2017
kill -USR1 24414
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 24414 killed at Tue May  2 15:38:45 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:38:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:38:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25836 >/dev/null 2>/dev/null
selfserv_9247 with PID 25836 found at Tue May  2 15:38:45 UTC 2017
selfserv_9247 with PID 25836 started at Tue May  2 15:38:45 UTC 2017
trying to kill selfserv_9247 with PID 25836 at Tue May  2 15:38:45 UTC 2017
kill -USR1 25836
./ssl.sh: line 183: 25836 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25836 killed at Tue May  2 15:38:45 UTC 2017
TIMESTAMP ssl END: Tue May  2 15:38:45 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 15:38:45 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v3.7616 -t Test2 -f ../tests.pw
merge.sh: #8685: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id dave --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8686: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id server --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8687: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id ext_client --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8688: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict1 --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8689: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict2 --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8690: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:16:08 2017
            Not After : Mon May 02 15:16:08 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:ec:ec:e8:3b:67:34:92:5d:ec:f1:6d:a9:79:72:25:
                    b0:83:b7:a4:c6:11:f0:91:7f:b1:0f:b9:4c:aa:eb:c1:
                    bb:48:9d:f9:6a:75:78:04:19:09:e1:17:60:6a:14:ea:
                    d6:66:6c:eb:15:59:76:6f:47:28:a7:21:0d:fa:29:ab:
                    4d:2e:a9:2f:cf:fb:63:32:cf:5b:1e:ca:3e:c6:80:e3:
                    45:bc:cf:4f:47:16:4f:e6:c9:94:67:cf:c9:d9:da:ac:
                    2c:12:e4:20:8b:8a:f3:7e:4f:e6:a7:b1:c0:01:8c:84:
                    71:d4:f3:e9:86:d0:67:d2:6c:4c:fe:22:83:cf:2e:ca:
                    92:88:4c:9c:0f:89:e5:d7:87:a9:0d:75:cc:41:34:5c:
                    cb:93:e6:27:75:d3:e6:54:98:72:2b:ba:69:38:ce:26:
                    ff:b9:53:11:d9:41:bc:d0:a8:13:ee:ee:12:f3:b0:55:
                    3b:c8:9d:0d:60:cb:71:db:38:75:af:44:1b:e0:c3:cf:
                    3d:ab:30:ee:87:17:e6:e1:a4:b5:eb:0c:36:31:65:a0:
                    42:6e:ba:73:ad:a1:aa:79:fa:b8:b5:0f:64:4a:4b:bf:
                    29:8f:47:59:4a:65:bd:ca:c8:23:b7:6e:82:48:9c:9e:
                    00:e1:c0:80:0b:7b:1e:b1:31:f2:9f:4d:0e:1a:10:c1
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:11:6f:9c:8f:24:14:55:af:e7:4d:7f:f0:a0:34:88:
        dd:73:2a:14:f9:d0:dc:5b:0a:ba:b4:d4:43:4f:9c:63:
        b4:ee:78:36:73:e8:d9:8c:69:ac:01:03:4c:57:d1:e2:
        9d:d3:c4:fe:10:56:d6:8c:07:3e:96:80:ab:cc:4a:3e:
        fb:50:34:21:df:6d:3d:58:c3:1b:18:5a:20:c9:d9:10:
        5c:a9:6b:5b:b6:59:39:82:a1:fd:28:45:6f:c7:c4:82:
        67:cc:a1:b8:43:48:d6:01:69:fa:59:c5:71:b7:1c:fa:
        21:2f:c6:6d:49:f3:c3:1d:05:78:a4:c8:77:cb:22:b0:
        e5:fd:39:52:d9:19:13:de:6d:d5:2e:d8:c5:45:9e:b1:
        dd:fe:9d:bb:84:92:f2:93:fe:4a:a9:70:f1:1f:45:49:
        b2:2e:af:ab:48:d3:00:ac:d3:17:6a:a6:90:22:ca:e8:
        a3:29:21:be:e4:4b:bc:c0:01:f7:67:4f:48:ad:e1:f8:
        30:7e:b5:78:44:b5:28:b1:4b:21:c3:d3:9f:e7:cf:f6:
        be:e0:16:de:bb:24:66:1d:06:b3:66:7e:62:ac:65:ab:
        fa:bc:18:a3:b5:1b:d7:b2:d8:55:95:e0:a0:2b:81:d2:
        40:a5:4a:c5:e3:50:2b:2c:7e:f7:c9:d8:76:c1:94:d7
    Fingerprint (SHA-256):
        2A:4A:22:36:8B:32:34:FC:8E:A0:BE:35:7A:A6:70:60:BF:3E:08:7E:96:85:68:1B:9B:3B:32:90:53:F3:8A:C1
    Fingerprint (SHA1):
        4D:C2:39:A6:09:89:45:52:3F:03:96:C6:9D:13:21:6C:08:9A:3C:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8691: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:16:08 2017
            Not After : Mon May 02 15:16:08 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:8f:ce:58:ac:d4:b9:57:2a:12:e8:97:ee:50:80:dd:
                    d6:9c:9a:91:04:d0:13:5e:03:79:44:e9:e5:36:24:86:
                    7e:57:d6:ca:4e:82:f6:02:a3:69:51:82:2f:a7:e0:8b:
                    65:81:ce:2a:74:d3:b2:7a:f5:3b:c2:71:01:da:82:b4:
                    6c:5f:17:22:1e:ab:78:b8:04:24:32:91:c1:2c:5a:91:
                    b4:f0:28:72:2a:ce:d6:a1:6f:67:fc:c4:23:9c:17:34:
                    6a:b1:ed:0e:28:e4:33:8a:22:6b:4e:bd:dd:c6:95:df:
                    e5:1e:e8:00:de:81:48:ee:9d:d1:5b:2c:86:66:25:1a:
                    fa:3c:99:d9:d8:81:57:b0:33:bf:cc:ef:da:ec:3b:f8:
                    4b:2a:af:66:79:de:ff:6f:a7:4d:ce:35:2d:a8:dd:6a:
                    26:6a:58:66:5b:00:04:2a:18:9e:d0:63:ef:1c:7e:57:
                    98:67:41:f1:ec:20:52:b9:e0:5c:52:96:40:4b:3a:5f:
                    e8:ff:03:06:40:a1:3b:ec:73:46:c2:70:c4:90:ab:e2:
                    25:0b:33:5c:6c:df:44:54:a3:11:1a:f9:89:b3:f1:7f:
                    51:fd:d7:56:31:33:cf:36:85:99:5d:d0:68:af:02:8d:
                    8b:26:66:f8:f0:c9:e4:12:f4:5b:26:ec:48:95:d3:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:f8:90:41:c0:41:2c:4f:e5:c1:5a:e4:21:c0:fe:e3:
        29:95:c8:5c:48:01:5b:8c:59:dc:67:ce:1a:af:af:90:
        a6:f6:15:5b:06:0d:07:fa:77:1a:3a:4d:fd:48:49:72:
        dd:ca:4c:4e:4f:7b:85:cd:0d:62:e9:dc:ef:11:e2:45:
        a0:37:40:f4:79:40:33:ab:0a:5c:0c:6f:87:d6:19:10:
        ed:44:f1:6f:a5:8f:1a:d4:a5:01:fa:10:71:1c:41:e8:
        dd:0b:8e:6b:58:fb:3e:19:36:a8:ba:83:44:42:b4:ad:
        a3:df:4f:18:6e:fc:6d:00:ed:c1:59:bf:d7:f7:aa:6c:
        7e:f7:7b:a6:b4:f2:10:d7:aa:a5:19:3c:05:7e:84:9c:
        d6:80:11:27:fc:e7:78:ff:4a:6d:1c:bb:a8:80:4a:2b:
        6c:5f:52:54:7e:f6:89:37:6e:76:8b:92:9a:6c:dd:5d:
        97:85:38:f8:c3:06:fe:87:12:03:5d:ab:12:e8:e7:d6:
        74:4e:7e:a2:5c:7f:73:53:2a:03:5c:65:79:ef:3e:18:
        2d:db:5f:53:67:87:76:85:e5:25:2e:cc:88:1f:9b:e6:
        64:a1:14:d8:0c:ac:7a:f6:e7:40:0e:e4:25:0e:1c:87:
        1d:0b:df:67:a2:7d:2d:ac:82:3f:81:40:ca:b5:1c:d1
    Fingerprint (SHA-256):
        A3:34:7F:7D:EF:8D:41:D2:4E:A6:0F:9A:FE:CE:E2:2A:A8:24:7D:31:A2:00:E7:85:12:01:7A:73:3E:72:D6:D7
    Fingerprint (SHA1):
        BC:8C:C5:E6:56:B6:6E:AA:1A:A4:9B:99:43:13:C6:A2:3A:EE:30:6E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8692: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id sdr --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8693: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice                                                        u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-dsa                                                    u,u,u
Alice-ecmixed                                                u,u,u
Dave-dsamixed                                                u,u,u
Dave-dsa                                                     u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-dsa                                         ,,   
clientCA                                                     T,C,C
chain-2-clientCA                                             ,,   
clientCA-ec                                                  T,C,C
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
chain-2-clientCA-dsa                                         ,,   
clientCA-dsa                                                 T,C,C
Alice #1                                                     ,,   
Alice #2                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #100                                                   ,,   
Alice #4                                                     ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v3.7616 -t Test2 -f ../tests.pw
merge.sh: #8694: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v1.7616 -t Test1 -f ../tests.pw
merge.sh: #8695: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #8696: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #8697: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #8698: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 15:16:18 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:15:48 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 15:16:14 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #8699: Verifying TestCA CRL  - PASSED
TEST_MODE=UPGRADE_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Tue May  2 15:38:47 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:38:47 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:38:47 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #8700: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:38:47 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:38:47 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8701: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8702: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8703: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8704: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #8705: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #8706: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:38:48 UTC 2017
TIMESTAMP ec END: Tue May  2 15:38:48 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:38:48 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #8707: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8708: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #8709: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #8710: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #8711: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #8712: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #8713: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #8714: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #8715: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #8716: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #8717: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #8718: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #8719: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #8720: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #8721: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #8722: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #8723: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #8724: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #8725: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:38:48 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:38:48 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #8726: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8727: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8728: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8729: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8730: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8731: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8732: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8733: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8734: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8735: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8736: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8737: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8738: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8739: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8740: create certificate: sign  - PASSED
ssl_gtest.sh: #8741: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:38:51 UTC 2017
ssl_gtests.sh: Testing with shared library ===============================
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:38:51 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #8742: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -f ../tests.pw
cert.sh: #8743: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8744: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8745: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #8746: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -f ../tests.pw
cert.sh: #8747: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8748: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8749: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8750: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8751: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8752: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8753: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8754: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -f ../tests.pw
cert.sh: #8755: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8756: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8757: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8758: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8759: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8760: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8761: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8762: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8763: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8764: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8765: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8766: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8767: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8768: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8769: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8770: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8771: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8772: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8773: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8774: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8775: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8776: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8777: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #8778: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8779: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8780: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8781: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8782: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8783: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8784: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8785: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8786: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8787: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8788: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8789: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8790: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw
cert.sh: #8791: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8792: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8793: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #8794: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8795: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #8796: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8797: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #8798: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8799: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #8800: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8801: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #8802: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8803: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8804: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #8805: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8806: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #8807: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8808: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #8809: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8810: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8811: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #8812: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8813: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8814: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #8815: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8816: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8817: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #8818: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8819: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw
cert.sh: #8820: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8821: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8822: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #8823: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8824: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #8825: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8826: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #8827: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8828: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #8829: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8830: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #8831: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8832: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8833: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #8834: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8835: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #8836: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8837: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #8838: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8839: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8840: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8841: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8842: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8843: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #8844: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8845: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8846: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #8847: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #8848: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw
cert.sh: #8849: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8850: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA.ca.cert
cert.sh: #8851: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8852: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #8853: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8854: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #8855: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8856: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8857: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #8858: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8859: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8860: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #8861: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8862: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8863: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #8864: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8865: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8866: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #8867: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8868: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8869: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8870: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA.ca.cert
cert.sh: #8871: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8872: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #8873: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8874: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #8875: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8876: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8877: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #8878: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8879: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8880: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #8881: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8882: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8883: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #8884: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8885: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8886: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #8887: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8888: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8889: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #8890: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8891: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8892: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #8893: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8894: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8895: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #8896: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8897: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8898: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #8899: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8900: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8901: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #8902: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8903: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8904: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8905: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8906: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw
cert.sh: #8907: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8908: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #8909: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8910: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #8911: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8912: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #8913: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8914: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8915: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #8916: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8917: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8918: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #8919: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8920: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8921: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #8922: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8923: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8924: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #8925: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8926: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw
cert.sh: #8927: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8928: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #8929: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8930: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #8931: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8932: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #8933: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8934: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8935: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #8936: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8937: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8938: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #8939: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8940: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8941: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #8942: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8943: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8944: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #8945: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8946: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw
cert.sh: #8947: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8948: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA.ca.cert
cert.sh: #8949: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8950: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #8951: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8952: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #8953: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8954: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8955: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #8956: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8957: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8958: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #8959: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8960: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8961: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #8962: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8963: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8964: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #8965: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8966: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw
cert.sh: #8967: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8968: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA.ca.cert
cert.sh: #8969: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8970: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #8971: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8972: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8973: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8974: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8975: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8976: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8977: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8978: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8979: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8980: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8981: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8982: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8983: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8984: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8985: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8986: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #8987: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #8988: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #8989: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #8990: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #8991: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #8992: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #8993: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #8994: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw
cert.sh: #8995: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8996: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #8997: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8998: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw
cert.sh: #8999: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9000: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #9001: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9002: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #9003: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9004: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9005: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #9006: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9007: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9008: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #9009: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9010: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw
cert.sh: #9011: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9012: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #9013: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9014: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #9015: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9016: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #9017: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9018: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9019: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #9020: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9021: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9022: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #9023: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9024: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9025: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #9026: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9027: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9028: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #9029: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9030: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:09
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:27 2017
            Not After : Wed Aug 02 15:39:27 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:99:09:73:ed:4a:e3:81:bd:27:51:39:4e:87:12:3f:
                    d1:73:96:52:5f:5c:e5:60:0c:86:c4:f2:66:69:ba:df:
                    88:7c:04:83:f6:a4:5e:71:b6:1e:be:49:f2:f0:bf:59:
                    9d:9b:d9:b2:1d:dd:96:57:a8:a6:ab:a4:e7:93:92:61:
                    af:08:50:2f:95:53:2a:db:f0:19:34:b6:de:f4:17:f3:
                    c6:72:06:25:3b:8a:6b:bf:f0:0e:b5:7a:e5:8d:4d:35:
                    fc:78:07:9d:55:c6:5e:6d:50:60:7c:f6:1f:5b:b2:39:
                    0a:fe:f3:e5:85:d0:1c:c8:7e:4f:79:a0:e4:a8:d7:81:
                    5a:77:af:61:be:39:c3:e0:2b:f9:52:82:f7:2d:53:ec:
                    65:d3:df:66:2c:49:f0:4e:09:80:23:10:97:c1:93:e2:
                    70:27:01:cc:10:d7:77:af:5f:d7:26:c5:6c:c6:63:24:
                    f7:2c:be:b4:2a:81:a8:ef:91:8b:10:16:01:9c:99:b7:
                    fb:b5:f9:4d:2d:29:9c:57:c5:9a:9a:98:a0:72:88:5e:
                    82:61:f0:b4:60:3a:eb:64:24:ab:83:3f:d0:d5:2e:03:
                    fa:1c:50:d6:c1:12:1f:93:01:a7:d0:c6:69:40:9c:fb:
                    79:b0:d9:0b:48:4d:40:e7:25:13:c2:e8:f5:d3:c5:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:17:32:8c:e7:0e:be:81:14:63:9f:ca:39:b2:48:73:
        ad:30:4b:df:69:a4:94:78:a3:e6:66:68:1f:03:df:3a:
        4e:20:fa:da:cd:01:43:e3:dc:33:56:df:4a:69:f4:c1:
        d0:6d:07:bc:8e:cf:c5:e5:80:21:4b:23:e1:08:93:97:
        49:b3:9b:25:48:af:b2:f9:23:d1:68:fd:95:72:5b:4c:
        f7:b6:3d:5f:4a:c7:08:81:34:bc:1f:b4:2c:f1:7a:16:
        43:af:25:5c:98:af:b5:5d:4a:f3:65:70:13:b9:31:fb:
        0a:7f:1f:0c:ae:6c:94:06:37:2b:77:1b:25:45:ff:b7:
        59:b1:60:95:76:3f:3a:5c:bc:5b:22:b1:10:c7:83:92:
        cf:77:5d:18:e6:39:1c:ab:9b:05:c8:cb:bf:b8:3b:36:
        aa:55:2e:45:84:dc:18:7d:ac:16:06:22:7b:87:3e:5e:
        98:5c:cc:0b:e2:46:72:d3:29:92:2b:98:27:da:be:cc:
        46:6a:83:95:94:23:43:18:80:ae:d6:17:65:4c:2d:2e:
        f0:6e:42:70:16:4d:c3:6e:84:04:cf:83:cd:b1:94:b1:
        5a:6f:04:77:8f:40:99:3e:8c:90:a5:f8:d0:4d:dc:0d:
        30:c6:28:77:3b:5d:15:8d:48:00:60:ab:77:15:aa:e4
    Fingerprint (SHA-256):
        9A:44:8D:33:45:18:D3:FC:1D:F4:6F:B0:1B:90:B1:FC:4E:4E:5C:8D:46:79:D4:E3:DB:89:24:DE:35:80:1D:E7
    Fingerprint (SHA1):
        23:21:2D:AC:F8:3A:A5:CE:37:92:F9:2D:93:99:33:5B:95:BC:34:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9031: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:0a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:28 2017
            Not After : Wed Aug 02 15:39:28 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:90:cb:60:32:88:96:b7:67:cb:27:6c:af:09:d8:ad:
                    65:f2:91:14:36:26:b1:f0:64:0a:8f:c6:d9:3a:70:0f:
                    1c:77:a5:22:ab:74:89:b6:e1:6f:af:49:03:5b:af:01:
                    56:53:2b:a3:f2:60:78:48:91:74:80:ce:ef:96:fa:07:
                    df:92:1d:3a:1c:32:e4:c8:5a:12:1e:3b:79:46:83:9d:
                    2a:c0:5b:b2:4a:f2:e0:7f:51:26:6a:64:96:43:10:1c:
                    9c:9a:f2:3e:f6:20:06:77:76:a9:ed:11:78:ea:ee:89:
                    c9:85:87:73:39:f3:3e:d3:00:8f:8d:6d:d6:57:ab:08:
                    07:94:2b:39:3d:23:50:f3:58:ae:27:5b:ab:c4:27:3a:
                    81:45:83:dc:15:9b:0b:fb:ae:7a:6e:8f:89:24:d2:0d:
                    b9:1c:f9:34:ef:f9:fc:d1:6c:dd:f6:11:84:d0:a3:b6:
                    f6:c3:bc:72:11:e7:09:61:53:b3:89:10:0e:26:5d:f3:
                    c0:e2:cf:32:e1:84:23:dc:ef:57:b3:8b:6d:2f:5d:17:
                    1b:39:40:e2:a3:0c:4a:6f:2d:0a:e8:36:f2:49:14:46:
                    6b:f5:ce:74:db:82:ed:bc:18:9c:70:5b:81:95:c4:d9:
                    b9:1a:c8:20:4b:b7:82:b5:d4:af:7b:b9:79:c1:92:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:18:ea:07:83:98:99:be:14:ec:09:0e:96:8d:a7:0b:
        5c:07:98:c9:83:6c:64:a7:22:b5:06:8d:38:53:34:dc:
        57:e1:ae:17:b5:34:f7:06:95:97:8a:30:ea:6f:a7:25:
        e5:b4:b0:76:3e:fc:ae:99:11:ba:13:2f:62:9e:5c:f0:
        39:c0:36:4c:ba:f4:3f:50:42:50:5e:22:dd:ed:6b:b9:
        9d:45:53:01:9f:dd:b7:03:e0:19:56:a7:03:9e:93:79:
        06:26:9a:4a:c5:84:5e:de:50:1b:98:94:57:5b:0b:e2:
        3f:c1:88:10:cb:04:f2:a0:c3:10:94:82:87:eb:a3:4f:
        0f:0b:21:19:8f:d2:ab:b8:64:80:44:ac:09:89:bc:70:
        79:4e:3f:90:35:5f:56:56:92:cc:ef:67:40:4d:7d:0a:
        8e:c7:f4:95:41:e8:bd:03:29:21:23:f0:0f:55:4c:36:
        a3:a4:d9:df:dc:e6:fd:b5:36:3f:96:cb:e2:fd:19:bf:
        4a:89:3d:0d:51:bf:57:30:99:ee:c3:ff:ed:c4:b9:8b:
        a2:f8:f4:98:31:de:4b:fa:45:2b:f0:cc:9e:a0:48:9f:
        3c:5f:4f:27:f4:74:f6:27:6a:73:2c:97:c4:38:93:a6:
        f2:6b:2b:6b:9e:bd:05:e6:54:33:05:bf:88:a3:fb:a5
    Fingerprint (SHA-256):
        AF:22:22:4A:35:35:E6:9A:1F:20:85:82:88:8F:09:3D:FE:E0:3C:EF:C6:40:78:62:C6:CE:21:CB:2F:E7:36:A7
    Fingerprint (SHA1):
        BE:93:89:55:81:C8:AA:1D:94:71:83:B9:CA:04:9E:76:7B:D1:FA:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9032: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:0b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:28 2017
            Not After : Wed Aug 02 15:39:28 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:dc:71:e6:28:58:ac:77:d0:76:e4:1f:33:db:9c:22:
                    0f:47:4d:d2:7a:34:44:ed:10:ec:70:eb:08:3e:cf:08:
                    80:c5:5c:2f:b7:a2:51:68:86:f1:dd:ae:b6:e6:20:22:
                    14:9c:a2:ea:1a:fb:21:05:58:a8:b7:1d:e0:0e:ac:46:
                    49:fe:fe:f1:c5:c5:bc:0d:d6:1c:e7:c3:b1:55:7d:2f:
                    1a:0b:c5:fe:7f:e7:ca:24:d3:c5:24:37:05:f4:a0:d0:
                    d1:a6:b0:26:08:93:b3:31:fb:e3:fe:84:e9:0f:8f:91:
                    78:2c:d3:a9:c6:a7:88:d6:16:8f:39:ea:03:4e:8b:4e:
                    98:70:41:1d:b2:eb:3a:ea:db:20:a7:f0:b1:5d:f3:34:
                    59:ae:e4:4f:4a:ca:ad:25:83:c6:28:0f:0b:cc:5d:51:
                    c2:6b:d2:96:35:68:1a:a3:db:07:1c:95:85:39:af:a8:
                    4c:fb:ec:72:b8:d5:3a:fb:ae:3f:1c:17:0a:7d:af:cf:
                    c7:6c:b4:3d:3e:ab:dc:84:7a:50:40:63:a3:38:3f:62:
                    27:3c:eb:58:b4:d0:4e:e6:e1:5e:aa:9d:34:a4:5b:a3:
                    b8:c1:1b:70:80:7b:60:c2:4b:36:d5:e5:17:2b:1a:dd:
                    6e:e6:4d:8e:7e:a5:3d:fb:19:08:47:62:15:37:3e:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:8c:f9:8e:1f:f9:6d:e4:c7:ba:0e:5a:8d:1b:cf:9c:
        82:00:61:15:95:3e:4b:c3:ec:a7:57:5e:57:e0:c6:ad:
        9c:fb:1a:a5:48:a9:b5:0a:82:20:9e:c8:96:05:0b:11:
        1b:cf:0a:a4:56:ed:28:21:06:da:31:f4:0e:c7:dc:7e:
        0b:c6:4d:d8:12:cf:e8:32:37:06:cf:27:50:45:03:65:
        c9:a6:a7:98:b2:2c:98:c9:e8:dd:30:ad:54:1e:c6:e7:
        3a:49:35:70:ba:c7:ed:c6:a8:f1:81:b2:ac:ff:91:43:
        ac:67:80:d9:db:0b:e8:5c:fe:02:9a:af:1c:b0:29:a3:
        02:b6:97:1d:50:f6:0a:62:5e:24:e3:ec:6b:ef:97:5c:
        72:6d:26:17:f1:01:c7:40:1f:fa:c9:51:88:eb:12:fc:
        27:dd:c6:15:16:5c:d0:63:88:a5:ff:d5:b9:84:51:ef:
        5b:c1:4a:d0:34:97:02:e7:01:85:47:cd:1c:84:2e:12:
        00:8e:f8:96:e0:71:6c:7a:26:f8:8e:cc:06:40:0f:32:
        84:a3:52:2b:ea:2e:80:38:56:4c:c5:3a:73:ca:13:ba:
        c7:2f:78:6f:04:01:fc:19:8c:ee:f6:11:5c:69:7d:04:
        60:04:6b:58:d3:0a:10:75:5b:59:b0:35:28:3f:72:e3
    Fingerprint (SHA-256):
        F7:6F:E2:7B:D2:E8:6A:07:5A:EF:3C:89:05:0D:60:C4:AD:04:E6:98:A6:5B:A9:64:91:F2:42:6F:7E:74:21:63
    Fingerprint (SHA1):
        80:3B:65:BA:44:97:2B:BA:4E:97:80:9B:19:A3:A4:45:4B:8C:98:8F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9033: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:0c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:28 2017
            Not After : Wed Aug 02 15:39:28 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:92:94:a3:74:81:e8:f7:2a:97:b7:95:b3:35:24:34:
                    2a:f7:a8:19:cf:00:54:41:76:2a:41:f6:f2:7b:b5:5b:
                    77:e7:34:59:43:b7:22:3d:ad:c9:98:42:d6:1f:2f:a0:
                    9c:4d:79:09:f2:9c:e0:35:9e:97:7b:37:13:7e:e2:ca:
                    be:dc:a5:15:9e:b9:42:52:85:90:07:b3:2e:a7:91:4b:
                    bc:79:23:be:94:9c:0d:96:d6:a5:80:e9:cf:81:72:02:
                    c1:38:c7:70:1a:66:95:9e:2e:26:87:2a:7b:5c:fc:75:
                    c3:93:40:a6:1e:79:1c:d5:c5:3e:da:0b:9d:cd:0c:2e:
                    f1:38:24:8f:22:85:34:86:a4:f8:55:ce:d8:b8:55:ca:
                    64:dd:57:5a:b0:f1:b3:40:4c:e1:a3:51:bb:af:80:c4:
                    d1:e3:8b:a1:5e:67:49:3a:be:0c:98:9d:3a:e6:4c:1d:
                    5b:96:7a:8d:bf:23:fa:f6:ac:85:d2:3b:25:bf:4a:68:
                    27:b2:a2:50:94:d5:b6:57:e9:f1:22:08:cb:8d:cd:f3:
                    0e:a4:8e:2b:d7:27:6d:5d:38:3b:90:67:d9:30:14:94:
                    a1:bd:32:ef:96:8c:b3:19:4b:ac:cb:c3:ae:46:af:17:
                    1e:12:85:0f:bf:3c:3d:b0:33:f2:9b:c2:81:97:74:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:8b:55:c7:b4:7a:93:95:e7:e5:a2:7c:a4:64:c8:96:
        b8:8b:37:7b:2d:70:4e:ad:25:64:f2:79:e9:06:3d:77:
        f0:01:cb:89:3f:2b:2b:30:7b:80:47:e2:3b:bf:3b:da:
        6a:a1:f0:d5:f0:2f:e2:c8:32:02:74:69:a9:a8:26:97:
        44:ca:e9:c7:3f:b1:4b:37:30:e9:05:72:0c:17:cd:e7:
        26:53:e0:7f:2f:0c:fe:33:14:fd:ee:e9:21:51:8a:77:
        ee:09:08:5a:7e:bf:24:6c:6d:9e:45:df:56:71:58:24:
        74:06:99:5d:1f:c4:6d:60:85:08:88:74:ca:c4:a9:34:
        10:3a:d1:04:86:54:7b:03:7c:35:04:40:b5:e5:a4:52:
        de:90:a9:72:04:42:b8:32:dc:9b:b8:a3:7b:9a:fe:a7:
        26:1b:51:b8:5f:bf:79:88:81:e7:69:b1:b0:6e:22:a0:
        9c:90:8f:cb:1f:6e:93:3d:e1:f5:a5:5a:e6:48:a9:c0:
        03:3b:e4:9f:5e:27:82:a8:51:12:4f:11:2e:0b:75:09:
        6d:e6:41:cd:bc:ab:26:be:ea:8f:dd:c2:7d:c5:c1:9f:
        f1:90:f0:a9:66:a3:de:e5:ac:04:2a:b7:25:2e:35:8e:
        b9:95:1a:e8:6b:92:57:8a:f8:1a:4c:59:8b:7d:3f:cd
    Fingerprint (SHA-256):
        80:2B:93:87:01:01:8D:BD:AD:BE:E6:44:65:DF:26:A0:D6:B5:4C:46:1D:DC:B0:47:02:AF:47:AB:2C:07:58:8E
    Fingerprint (SHA1):
        D7:7D:2D:CD:A7:93:3A:FD:95:69:E3:69:6D:B8:25:72:E8:06:69:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9034: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:0c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:29 2017
            Not After : Wed Aug 02 15:39:29 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:4d:eb:50:55:a8:98:84:b9:9b:fa:7e:62:a3:22:49:
                    cc:c2:ab:65:9f:f9:33:1d:ef:36:f9:77:77:77:1f:fa:
                    00:4f:2b:ba:b3:1b:83:e6:ae:36:05:d2:e2:49:1a:fc:
                    83:99:fb:37:0f:8a:a4:11:a3:48:02:63:29:5c:d4:46:
                    91:5e:97:55:15:d5:16:0f:8b:58:e1:0b:1a:82:9a:cd:
                    04:06:6b:d9:f9:4e:92:ed:00:8c:07:16:f4:ca:7a:b8:
                    c3:33:65:a4:09:45:82:2a:a3:41:8a:af:fd:a6:74:d7:
                    e7:cb:57:ff:db:d8:5a:d2:b1:b9:3c:6f:2a:00:85:1c:
                    fb:3a:32:c4:f3:f1:a1:48:1d:13:58:c1:18:70:31:e8:
                    d8:12:be:e2:ab:4e:c3:4c:9e:05:5e:2b:4c:80:3c:f9:
                    eb:28:b1:b5:72:07:ff:fe:4c:f4:7d:42:85:73:28:7b:
                    31:af:24:ba:33:32:e0:0d:3c:f5:1b:07:35:f0:a2:b8:
                    83:c2:fe:9c:7c:ee:9f:ad:32:a3:5e:87:03:26:fd:8b:
                    fd:1c:d1:b0:2a:4a:8c:bc:17:72:aa:34:81:da:16:e0:
                    4d:05:19:ab:4e:cc:dd:73:75:e9:d1:8b:09:bd:d5:1b:
                    5d:c6:e8:d2:db:b8:f0:c8:a1:83:9a:b9:0b:51:48:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:e1:55:85:2d:0e:25:f1:c8:84:3e:8c:09:a3:a0:64:
        a0:64:43:4a:ae:55:cc:98:af:ff:08:b7:7a:ed:49:22:
        99:c0:76:9f:9d:86:af:4d:6a:bd:59:8a:9a:4b:67:8a:
        16:0f:5d:a9:29:cc:72:9d:79:57:ba:6d:4a:11:1a:02:
        18:23:26:77:35:d8:05:6c:38:2c:97:92:33:57:6e:48:
        db:e5:de:f2:93:b4:13:97:4c:da:65:21:04:ee:84:ea:
        1a:df:08:a1:70:67:20:80:2d:73:1d:30:9c:cd:a2:f8:
        96:4d:54:ee:62:a1:a2:ce:74:db:50:ea:3c:dc:58:05:
        31:37:64:b8:8b:2b:91:29:c0:0b:2f:57:48:43:02:30:
        5b:f7:77:78:8d:a6:f0:a9:75:4b:25:74:d7:f4:bc:45:
        ef:23:1b:e7:66:bb:56:3a:03:03:ac:d9:48:a0:62:81:
        12:6e:a6:38:46:35:61:c2:87:08:4d:e1:10:dd:eb:a1:
        b3:c2:08:e8:99:4a:70:7a:96:46:40:0b:da:bd:4b:50:
        45:cd:c6:e4:5d:5d:a5:f3:92:87:58:27:1b:9d:17:ee:
        66:d8:79:70:99:3d:5e:81:7a:fa:4b:1f:74:16:fe:91:
        b6:01:45:1a:1e:7d:87:db:02:8f:17:44:f1:77:1b:b1
    Fingerprint (SHA-256):
        61:69:B9:89:71:B0:44:99:7D:24:56:7D:15:3C:A4:EB:46:6E:CA:94:8F:E2:99:F6:53:E5:10:30:23:D6:AC:BB
    Fingerprint (SHA1):
        B8:26:4C:DF:04:D0:BE:55:B7:B2:C9:81:B4:73:3B:43:7B:C3:21:D8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9035: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:0d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:29 2017
            Not After : Wed Aug 02 15:39:29 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:63:bc:c7:2b:56:2d:a3:d2:6b:2d:17:c1:77:43:c5:
                    f0:d2:4e:49:57:5b:7c:f0:88:30:62:ed:b4:b7:74:d7:
                    df:a2:20:ab:07:62:c3:fc:e0:9a:9e:ed:a5:6a:48:a4:
                    19:3b:52:39:bd:1a:2a:02:66:2d:96:82:17:cc:2f:6a:
                    af:b5:70:d5:8f:c6:8f:44:10:59:27:a4:b8:5d:0a:b2:
                    07:e8:f3:6d:cf:7b:2f:2f:ae:d5:44:62:64:e0:31:9e:
                    81:c1:68:5f:72:c6:32:7a:03:98:5d:d0:9b:b5:26:e4:
                    7b:f6:60:3d:3e:9f:39:c0:ef:9e:f0:c8:ca:36:1a:f0:
                    48:44:df:fe:bf:33:38:b8:c9:0e:17:4d:84:27:f9:4c:
                    48:0f:30:58:46:1b:05:97:a4:e7:66:bc:30:c5:ec:ce:
                    3b:47:2b:3e:cb:1f:ec:a9:eb:6d:e4:18:fb:e1:b5:e8:
                    1b:ac:9a:fc:d5:d4:b6:6f:0e:5e:d5:65:91:f9:e2:73:
                    b8:3c:2f:6a:06:3e:5c:53:b2:8f:be:0b:63:6e:f0:48:
                    a6:c2:ce:a1:06:c1:ac:7c:df:89:63:80:6d:1c:c2:83:
                    14:71:68:bc:6c:94:2a:9e:61:99:6e:ff:9b:50:2a:a6:
                    a0:15:09:0a:95:eb:db:db:8d:5c:7a:7c:1a:8e:a0:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:5e:ea:1e:3a:dc:c0:9c:12:b4:ea:2f:bd:36:78:bd:
        9b:3e:67:df:93:05:cb:fc:37:41:fc:f1:82:4e:f2:a7:
        99:86:16:b5:11:e5:4f:fa:82:d0:dc:85:e1:47:69:66:
        1d:f3:69:f5:7c:96:e2:ed:d8:13:bf:df:24:13:0a:84:
        7e:dd:16:b8:b0:93:bd:f6:a0:9c:02:8f:bc:9f:ac:cd:
        91:05:9a:d9:49:d0:78:bc:72:2f:7b:53:8b:35:c6:72:
        05:b0:6b:25:a0:c3:99:06:d4:4a:9c:a4:eb:a9:36:12:
        43:bd:23:3a:9c:a8:55:0c:05:95:43:df:86:48:86:4b:
        db:5c:fc:f4:8c:49:fb:4e:6c:ab:cb:7d:05:73:15:6b:
        b9:ff:69:12:0e:b7:8d:a4:38:02:61:f2:32:02:36:e4:
        33:91:d2:99:d6:87:1a:ba:69:7d:e2:ff:39:9a:17:43:
        2e:6e:3d:78:1c:b6:92:6f:34:e4:5a:66:6a:55:5d:5c:
        aa:95:e7:31:fe:61:93:c4:2c:66:46:7c:46:f6:1f:d0:
        94:63:d1:4b:ab:53:39:4a:c1:5a:95:ea:82:d4:d7:12:
        8f:9d:f0:6e:a7:d4:33:fe:22:26:2c:f4:87:32:b5:95:
        a3:67:e1:83:a8:2e:40:87:e4:15:1b:2c:b2:51:89:d4
    Fingerprint (SHA-256):
        E2:FF:4D:21:43:33:52:1F:E4:45:A0:94:C8:AB:A4:41:BA:A9:8F:98:65:E0:34:A2:16:AB:55:65:9B:20:4E:C9
    Fingerprint (SHA1):
        64:44:38:E3:03:97:84:6D:4A:52:C2:1D:8F:93:B4:A7:9C:E3:94:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9036: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:0e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:30 2017
            Not After : Wed Aug 02 15:39:30 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:94:e0:5f:dd:9d:86:c9:7e:06:a1:62:65:9f:65:09:
                    46:90:fc:dc:ac:90:06:9f:2c:8b:10:6b:2f:9e:c2:6e:
                    6a:36:d7:8e:e2:d6:15:d9:3b:ac:88:53:e8:28:5e:15:
                    de:0f:50:f2:51:8d:67:97:6d:a7:11:d5:7f:15:d2:db:
                    a3:41:c8:ec:ca:02:a8:b9:03:3b:9f:b0:41:03:14:40:
                    98:88:ed:63:a9:27:90:65:47:b9:9d:92:c0:6a:d8:e7:
                    70:fb:f1:20:91:03:5f:83:58:59:10:a6:da:d4:56:9b:
                    8b:25:b4:59:a3:04:72:67:7e:99:eb:52:62:ec:45:6c:
                    84:52:f0:83:f5:13:ed:ca:06:89:3a:61:a2:8f:aa:ab:
                    ec:b3:6c:fc:24:c2:5b:d5:e2:ef:94:86:4c:90:44:6d:
                    13:fe:26:d0:b5:0f:87:0e:17:44:ec:7f:f5:37:8c:95:
                    0d:21:c1:cc:29:f9:2f:65:94:6b:67:39:48:aa:87:34:
                    1c:4e:34:d1:81:24:81:8a:7e:e5:6e:cf:59:8b:b0:b9:
                    2c:37:c6:b7:a4:97:d4:2b:0d:e7:29:8b:b1:db:61:81:
                    ac:c3:34:f6:1a:d5:d5:0e:5e:81:c2:da:dd:d2:7f:9b:
                    ec:c4:3d:51:e8:1c:dc:bc:db:8b:b0:69:f3:f1:73:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:95:91:32:a6:0f:44:98:f9:44:4e:7f:80:08:07:62:
        8b:af:5e:2a:ca:0b:3c:77:03:d6:39:0c:af:53:8a:6b:
        93:b1:78:f6:65:f9:b7:34:54:56:69:21:f9:71:6c:3a:
        d7:c3:1a:72:17:66:af:c6:23:48:20:3d:1a:db:b9:1d:
        04:c5:5b:3e:aa:5d:99:13:77:5d:4e:cb:23:bc:c9:1f:
        cd:3c:b1:45:9f:5e:ff:47:a2:55:5c:03:bb:89:58:2d:
        d1:e5:7c:50:7d:8a:4a:ed:4e:88:0f:3a:ff:7d:5c:6e:
        bf:f1:57:ba:1b:d0:5e:bb:c0:00:a3:e6:2d:85:c9:c4:
        37:b1:51:2a:49:57:d2:f5:c0:69:1c:7c:d4:ad:44:0c:
        69:0c:24:84:ed:1f:cb:79:68:62:ac:93:4b:1b:eb:aa:
        c5:43:93:ad:4e:77:88:64:60:1b:18:90:f9:1e:c8:c6:
        08:c9:fe:5a:68:af:8d:f8:7f:75:ca:67:03:42:5c:87:
        8d:85:fa:da:be:62:dd:3d:c5:57:a4:f9:88:f1:16:c2:
        d0:f7:01:8f:73:08:a7:6a:72:dc:ff:45:7e:62:c8:d7:
        a0:49:be:7d:3b:0e:64:8c:f0:b9:92:bc:c4:86:c8:b3:
        13:e3:0e:7b:4b:23:aa:90:98:25:6b:8d:f5:7d:58:4f
    Fingerprint (SHA-256):
        36:82:B5:4A:15:85:03:23:29:49:E2:33:7D:73:E6:B0:95:91:41:F4:8C:09:D8:30:4C:69:0D:85:8A:AE:86:ED
    Fingerprint (SHA1):
        3F:05:91:3A:13:0D:16:57:C9:F6:47:38:26:3A:A3:5F:B7:47:03:FE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9037: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:0f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:30 2017
            Not After : Wed Aug 02 15:39:30 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:8e:74:c8:db:dc:55:d2:82:ef:07:d9:55:84:3c:da:
                    10:97:92:96:c0:bd:ea:41:f8:4d:0f:83:c6:d4:da:39:
                    5c:d9:c4:de:71:2e:30:bd:86:92:8a:22:65:a2:22:99:
                    a2:ab:f7:fc:cf:70:fd:3e:0d:f7:a1:d3:bf:4d:07:22:
                    ce:4d:6c:58:08:d7:39:e5:18:09:36:d0:b9:27:0a:c2:
                    6d:e3:2d:91:a0:50:1e:ae:e8:77:12:b0:4d:fb:a2:a5:
                    f1:ad:c4:1d:d5:f0:7c:8f:c8:b9:91:52:9c:c9:e9:4f:
                    88:c0:60:54:4c:99:cd:e6:0f:92:50:20:38:8a:34:29:
                    b6:83:02:88:52:d3:f4:09:69:62:b2:f5:ba:84:6d:ee:
                    21:39:49:c9:df:f5:f0:61:49:f1:26:5e:c7:68:f8:81:
                    23:5d:ae:7c:8a:3c:ad:ac:f4:9a:dc:56:c0:03:9b:98:
                    92:da:aa:8b:2e:3d:a1:3d:09:8f:08:13:1c:be:92:11:
                    1f:b6:c0:53:ed:d5:d2:c2:7b:b0:27:4c:47:73:0e:ce:
                    16:15:c4:6c:69:5e:cb:a8:c3:5d:ee:90:29:ca:1d:5d:
                    6d:9f:f7:a4:8c:31:ae:29:23:b7:25:47:1c:b9:3f:f0:
                    0e:7e:a8:82:61:a4:1b:44:34:2d:b2:7f:6c:be:c3:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:f9:9d:8b:a4:3e:4c:e4:67:7e:e9:2c:3e:8e:00:e2:
        dc:6b:92:7e:dc:01:ec:64:c4:9c:25:af:7c:55:fd:2b:
        6a:d3:46:0a:66:45:50:30:b0:07:3a:db:70:5b:f4:e4:
        d9:08:20:7a:58:3f:54:19:c5:c8:b1:3f:11:db:e8:f0:
        ea:04:d5:8f:8a:15:f8:7b:51:34:56:9a:19:b9:22:b7:
        0b:53:1b:3b:1b:cf:3b:ce:61:2c:89:ed:3f:4c:ba:ce:
        15:45:c2:ea:5f:18:90:8c:90:34:c2:cf:58:cf:84:11:
        00:4b:81:76:89:74:26:f0:85:44:06:52:ba:94:09:40:
        c6:07:cd:03:79:c9:46:a1:54:42:6a:ab:31:83:95:eb:
        c6:a6:92:24:6b:5d:63:d2:ca:09:0d:c5:fb:41:23:67:
        d5:4f:a8:44:93:2b:b8:0b:99:7d:73:62:55:b7:b6:8a:
        a8:72:02:fe:d1:5f:8a:cc:89:d8:30:80:55:94:8a:63:
        bd:e5:14:5f:32:83:20:b9:95:9b:07:b2:ab:59:5f:dc:
        3c:bf:70:31:92:00:08:af:de:70:f4:51:4d:55:0b:a8:
        85:e1:fe:ee:83:81:7f:9d:1e:c5:71:e0:42:cf:08:47:
        8b:b0:29:b8:dc:64:63:d1:6a:b1:25:fd:e6:f4:9e:10
    Fingerprint (SHA-256):
        68:77:79:6D:9B:B6:E8:26:CB:21:A6:C7:46:F0:54:1C:22:56:57:8D:BA:57:FD:F0:1D:D2:90:C6:96:02:80:05
    Fingerprint (SHA1):
        11:7F:60:CF:29:60:BC:EF:44:20:D6:57:3E:B7:DD:7D:57:53:DF:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9038: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:10
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:31 2017
            Not After : Wed Aug 02 15:39:31 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f6:d9:00:15:a6:cf:b4:b7:e9:9b:bf:69:75:90:37:
                    96:5f:c0:d0:e2:2b:5a:24:62:15:a5:6b:78:f9:2e:af:
                    db:e9:76:ea:e2:b5:70:83:be:e2:ae:ec:68:c6:84:db:
                    4a:e2:9b:2a:7e:a7:55:9d:02:7f:07:2d:22:ab:d1:37:
                    38:00:78:59:89:17:82:08:c6:39:0b:b6:30:30:b2:82:
                    18:6c:b0:45:8f:af:be:2f:19:fa:05:b9:1f:13:9d:a6:
                    39:3a:62:7a:91:e6:3f:9e:17:8a:a3:b9:0b:7a:1c:37:
                    ed:ef:02:62:d8:33:cd:ae:cd:1c:60:7b:f8:b4:a2:f3:
                    8a:05:7c:b5:51:f3:b0:bf:c0:ef:46:28:dd:c6:fc:2b:
                    9a:ed:30:1d:80:a1:c5:79:7e:e0:6f:d3:0a:27:8f:a9:
                    31:5f:9c:78:86:0d:c8:f7:74:00:24:8d:7f:c4:a8:b7:
                    1a:de:77:bd:cc:04:69:a0:c9:1e:b0:16:23:ed:00:da:
                    02:44:ea:2f:1d:d1:34:ee:c4:08:cc:3e:09:f3:75:f2:
                    0f:5e:bf:28:4e:ce:70:42:56:15:fa:f0:20:12:c5:cd:
                    0e:e9:c3:3d:de:db:d8:31:61:ca:ef:67:4e:39:65:f2:
                    c0:31:ab:e2:12:3c:8f:ca:f8:8e:65:b8:8d:ed:67:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:66:dd:da:f3:cd:cb:3c:30:ff:2c:11:2f:19:cc:a5:
        38:46:f1:c3:38:4d:19:db:cb:42:f3:ce:13:bc:3f:d1:
        aa:e1:18:78:4a:c6:05:ee:0f:0f:42:3f:78:b1:5f:98:
        25:51:4b:fb:33:bd:ed:fc:dd:8c:d3:c8:b0:1a:22:0b:
        1d:dd:f2:8e:9d:d7:14:fe:3a:d6:23:5d:c7:20:a0:3d:
        41:20:00:e4:14:38:4f:d7:f5:7f:52:ec:9c:f7:d9:88:
        4c:2c:79:28:f6:d3:6d:fe:c3:1a:ce:16:e8:db:85:01:
        09:d4:07:3b:43:78:98:47:ea:a0:88:4a:53:8e:4e:c5:
        45:94:75:12:18:04:ee:1e:35:53:e1:33:bb:bc:2e:0e:
        12:ca:c7:17:e0:39:f5:72:cb:5e:27:c7:55:e2:a0:a0:
        95:66:63:f6:07:4a:f5:95:f5:ee:55:c7:60:53:e0:fe:
        e6:31:59:d3:75:9e:91:39:be:4a:5c:0b:d3:b3:7a:0c:
        f4:70:0f:70:bd:29:d2:34:64:f5:90:30:dd:0e:af:05:
        60:17:b4:ef:16:17:ae:3a:87:29:d0:f1:6d:d6:de:2c:
        f6:4d:26:1a:44:98:0f:23:ed:06:b9:b5:d1:5a:2d:a0:
        47:44:06:c9:b6:5b:13:6e:1a:a1:52:a0:87:61:d1:67
    Fingerprint (SHA-256):
        57:25:B6:03:F1:10:09:98:8E:FB:FF:5A:FC:C4:BE:F7:D0:C0:A5:23:28:E8:5B:C4:3D:66:99:04:97:B4:D8:C6
    Fingerprint (SHA1):
        8A:D2:B6:60:ED:09:F7:F3:4A:78:D4:DC:0F:00:90:5D:E9:4E:D0:89
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9039: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:11
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:31 2017
            Not After : Wed Aug 02 15:39:31 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:17:a5:07:86:6d:8c:6d:f0:a2:60:45:80:dd:01:8b:
                    8d:6a:fd:82:a9:47:be:6e:3b:ff:71:d4:b9:84:64:93:
                    d1:8a:14:c2:b1:85:92:2e:fd:d2:2a:03:9b:0e:85:cd:
                    49:1a:21:4d:8e:8b:ba:89:dc:f4:46:69:4f:6e:9c:c3:
                    07:45:01:26:a6:80:d8:f5:60:01:f7:4c:ca:a8:09:2e:
                    7a:fe:5f:f8:50:50:cc:d9:a8:b9:97:7a:14:89:77:29:
                    95:37:ae:b4:1b:ae:af:84:26:9f:81:87:8f:ee:b5:d4:
                    5f:13:43:33:35:10:55:e6:3e:99:24:70:87:2c:be:17:
                    53:5f:07:26:95:15:4a:c6:6f:85:ad:86:af:69:8d:7a:
                    03:2b:ee:fd:58:c6:af:8d:6b:13:42:3b:8d:3a:fd:0a:
                    ea:e3:71:d9:58:03:b0:29:11:fa:17:84:16:76:e9:4c:
                    b7:44:d6:16:33:48:9c:f1:bd:a8:69:c2:a2:6b:67:70:
                    d6:74:38:a5:60:d4:13:04:14:e2:84:0d:92:98:ea:0f:
                    98:f0:78:31:b9:82:67:7d:90:85:d2:2f:7c:2f:d6:99:
                    07:cd:d4:ad:f9:e0:23:a2:5e:f8:a7:7d:c1:b2:c3:f3:
                    2f:f5:28:69:5d:bf:a1:80:a0:c4:fe:48:a7:88:24:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:39:b6:cd:22:00:a8:38:fd:48:cd:ea:4d:44:28:9c:
        8b:30:53:4b:d4:ad:09:61:97:0e:21:80:bb:fa:a2:3d:
        0a:9f:fd:1f:af:36:ac:35:88:5d:26:21:b5:34:63:cf:
        74:22:a7:4c:a8:ce:50:2f:93:63:41:04:71:d4:ec:62:
        43:f9:74:17:04:59:63:4a:24:c6:dd:9d:dd:ce:4a:2b:
        43:90:17:28:18:ae:bc:d8:0a:b5:86:0b:c8:79:14:e6:
        f4:e3:09:73:b6:19:8b:49:3f:08:7c:5a:1c:87:9a:36:
        6e:ae:1b:8c:af:5f:bb:d2:f4:0a:b0:8b:d4:ff:18:02:
        a7:73:b2:9a:bd:17:c1:87:53:07:2b:9a:00:87:84:3d:
        42:e3:29:8a:80:1c:4e:3e:95:3f:22:41:99:6b:d1:c9:
        46:64:b6:3a:13:4b:11:11:ef:c8:57:44:96:f1:76:fe:
        4c:6d:22:c2:bd:43:0c:ed:ee:de:de:61:5a:71:f0:5a:
        81:d4:1f:86:7c:5e:4c:ae:9e:94:09:ed:08:47:3a:d1:
        05:9a:f8:24:79:80:a0:d8:2a:d2:d5:31:3a:de:95:25:
        63:72:e6:c5:82:28:e0:90:7a:82:14:8c:5d:3b:23:d7:
        0a:8f:80:e8:98:a4:42:da:96:18:4d:c1:be:2d:25:e8
    Fingerprint (SHA-256):
        4A:D2:5B:A0:62:D8:4B:3E:ED:EA:12:51:39:71:EE:9F:0B:D1:24:FC:49:5C:2D:3B:9F:0B:D4:6F:75:4B:BF:9A
    Fingerprint (SHA1):
        27:E8:4A:C5:6C:09:62:29:7B:3F:E3:EE:94:9E:F2:72:9C:47:EB:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9040: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:12
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:39:32 2017
            Not After : Wed Aug 02 15:39:32 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:4c:a7:0f:9d:00:12:0e:b2:10:52:1b:68:34:d8:9b:
                    cf:5d:12:91:96:b1:da:33:84:12:00:2a:db:1a:f3:79:
                    58:ec:7a:91:01:30:b1:84:56:29:f3:ac:8f:81:f0:f7:
                    18:36:b0:62:fb:3a:ca:23:ac:45:cf:e1:fc:8c:1a:9f:
                    ec:9d:48:25:29:9c:f8:95:f9:ac:6a:80:4d:b3:ad:fb:
                    69:5f:39:44:24:ef:b2:31:e4:03:96:2e:50:48:3c:36:
                    8f:2d:5a:49:cd:29:6b:aa:c4:43:f8:97:7d:ee:3d:9e:
                    8a:cc:8b:93:b6:fb:36:ce:fd:ab:82:a4:dd:a3:ba:fe:
                    04:f3:8a:60:a8:c9:df:bc:8e:ba:e3:fe:01:40:70:90:
                    f3:56:72:bf:e4:59:2a:de:06:6d:66:ce:6e:d3:a8:cf:
                    12:2d:f9:8c:4f:6b:c3:25:55:c1:91:5a:d0:f3:5b:88:
                    2a:d8:59:88:0d:a5:ef:6f:b8:00:06:7e:77:45:60:a5:
                    d4:8d:a8:b7:8e:94:db:c8:18:39:c3:51:32:40:23:1d:
                    06:29:57:31:4e:fa:b0:fa:80:5b:8e:25:20:e7:eb:8d:
                    02:e4:76:b0:f5:84:ea:63:88:c7:fe:57:29:e5:f9:24:
                    0f:95:68:e6:c7:be:16:c6:80:74:2e:5c:b8:66:42:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:62:ba:eb:56:90:5d:e4:b2:8e:17:11:2a:1a:83:52:
        80:3d:6e:36:88:c4:ef:aa:a4:2b:5b:b1:75:39:82:97:
        2d:65:39:7c:0b:1d:f9:d4:7e:22:34:71:58:94:11:94:
        a3:59:49:96:a8:2e:72:bb:b2:c0:6e:fc:1f:0e:47:e6:
        ad:fd:f1:5d:a0:bb:19:df:53:2a:a0:26:37:ec:31:d1:
        45:0c:b0:df:3a:d7:3f:22:5c:40:03:54:72:a2:2c:6a:
        bb:0d:5e:c3:84:4f:8d:86:4d:11:1e:fc:f5:1d:5e:10:
        94:28:ce:7f:2f:f4:3e:46:8d:c2:ee:36:34:d2:ae:44:
        7a:38:81:b3:b5:5b:0b:bc:9d:a8:22:61:a3:d0:46:81:
        b8:bc:c2:f8:c4:4c:b3:5e:e0:c1:c3:77:6b:04:60:fd:
        3a:a2:36:60:77:92:17:b0:8a:dd:5b:33:b8:1f:cf:76:
        20:be:e1:48:4d:14:09:af:d8:7e:9e:62:ed:e4:2a:e3:
        25:89:87:4f:1f:48:ad:b3:e8:ee:1d:78:7c:37:cd:73:
        7c:af:ff:35:ce:2f:17:51:d6:6d:33:ca:ee:2e:d3:15:
        d1:26:b0:a3:d3:0b:cd:e3:2e:f7:f8:6a:3a:10:1f:20:
        7a:d4:7f:df:e4:b7:8f:d1:d3:b9:a3:ef:72:26:72:4d
    Fingerprint (SHA-256):
        D8:90:05:0B:D1:B2:B4:6E:15:25:04:FB:3F:9C:B4:F3:6B:1B:4D:18:09:A3:30:CD:8E:9E:2E:0D:70:17:46:2A
    Fingerprint (SHA1):
        71:27:EE:62:B3:26:A7:A9:0D:6D:49:6E:A4:63:39:16:1F:C9:EC:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9041: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9042: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9043: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #9044: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:13
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:39:32 2017
            Not After : Wed Aug 02 15:39:32 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:eb:9c:76:d0:7b:79:b7:80:b3:bf:7b:3c:b8:b2:c3:
                    65:45:fe:95:ec:13:45:55:6f:46:8c:53:b0:46:c8:d5:
                    b9:c2:53:11:51:f0:1b:c9:99:c2:e2:70:37:e8:25:88:
                    5d:9c:7a:92:6c:3b:9a:a2:80:ee:da:8d:d3:05:57:7e:
                    b4:b7:51:36:d4:11:26:7e:25:d8:30:3d:a0:f8:b5:8e:
                    7b:38:29:3b:1c:10:e9:9c:0e:82:50:25:b7:0d:81:7c:
                    f6:e6:55:e8:7e:4c:54:2f:a7:5b:dd:87:0c:a6:e5:53:
                    80:37:f2:ce:9c:d4:93:75:9a:78:10:6f:57:63:cc:48:
                    15:73:36:8c:3e:9a:5f:8d:07:f4:ef:08:18:21:97:85:
                    d2:bb:2c:9b:e5:4d:93:9f:2d:7e:35:9d:c8:88:00:1a:
                    67:bb:af:17:3c:e9:af:7b:1e:46:95:ad:91:53:d8:ab:
                    94:0c:e1:3a:3f:3b:28:ba:0e:71:55:25:a0:c4:28:22:
                    44:67:1b:18:d7:33:65:cb:20:87:24:0e:4b:cc:81:64:
                    a0:3f:a5:a7:9e:59:ba:8b:1f:79:67:51:65:b1:e9:a9:
                    38:d5:bf:05:be:d4:e9:cb:81:cf:53:ab:d8:e6:58:bd:
                    26:a3:40:9c:20:cc:34:85:90:72:df:ac:b3:0c:a5:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:23:a9:a8:31:3e:06:21:0a:42:a2:30:81:4d:a7:e9:
        fe:4d:f5:6c:47:2a:34:42:6f:fa:40:f5:49:5b:19:b8:
        ee:c6:49:32:27:a9:08:62:df:f2:16:b6:fd:9b:8e:f5:
        c5:1c:72:a0:78:86:66:82:47:de:08:c8:51:f1:25:67:
        e1:1a:d9:b8:26:86:c4:91:85:24:11:7b:44:62:8a:7f:
        96:f8:a7:b2:2a:94:a5:11:74:d9:40:85:c2:da:bd:e5:
        51:2a:6f:8a:40:7a:7c:d7:fd:42:ab:ec:9d:48:2b:16:
        bf:4e:8d:fa:07:ad:9d:33:af:f0:47:01:65:4c:56:91:
        c7:4a:96:71:f0:9a:da:81:35:a3:d1:75:ab:80:83:9f:
        5a:d7:40:7c:97:0d:ae:d4:69:1f:87:88:69:be:4f:6f:
        1a:c6:56:e8:35:79:ff:d0:c0:bf:4b:dd:dd:54:99:d2:
        52:b8:9e:14:64:9c:df:b2:fc:5b:92:4d:c0:2d:bc:76:
        a9:d2:22:35:5c:8f:34:71:ea:c6:07:0d:39:18:cf:0f:
        5b:cb:11:e9:f8:07:ed:49:14:84:33:41:81:3e:20:94:
        fd:20:bc:5b:03:5b:c7:fe:c1:07:3d:4b:db:2b:95:d2:
        f9:1e:0e:18:83:bf:1a:0f:ac:68:1b:a3:73:9a:e4:f2
    Fingerprint (SHA-256):
        6D:B1:41:BD:F1:08:4C:38:23:1F:EB:5A:7C:72:EF:AA:94:B9:32:A2:87:6D:F9:1B:77:32:2B:D2:5C:D1:A4:EA
    Fingerprint (SHA1):
        5B:FB:18:89:43:FB:F7:2C:A7:33:DC:49:B1:A4:7C:62:A6:2A:B0:4D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9045: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
cert.sh: #9046: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9047: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9048: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9049: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9050: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9051: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #9052: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8b:16
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:39:34 2017
            Not After : Wed Aug 02 15:39:34 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:09:39:7f:6d:48:d0:cb:5b:07:36:36:e4:06:c1:76:
                    4e:c8:2f:2e:c1:cb:ce:2f:4c:95:bf:c6:a2:92:ee:45:
                    50:d0:66:20:d3:11:ed:32:e2:64:ca:8c:1f:a5:c0:e3:
                    bb:44:0c:8d:56:e5:c6:31:d7:82:5e:f0:85:e6:bd:b4:
                    54:e2:f0:77:67:00:7d:1f:3c:c8:65:98:62:a5:80:59:
                    49:8c:91:a7:9e:bd:66:87:79:b1:5f:e3:95:cd:de:af:
                    d1:e0:e0:b6:e8:db:43:61:38:8d:45:87:0d:a1:60:46:
                    7a:39:c1:0d:ce:a1:ae:5e:be:0e:28:59:7d:03:68:2c:
                    5b:8e:06:8b:d2:52:fb:f9:89:d8:34:61:72:75:af:56:
                    08:40:57:c0:64:5b:72:2c:40:62:08:c8:bb:aa:0e:88:
                    46:ad:3e:a4:89:d8:39:6c:d5:da:b3:9f:be:95:bc:79:
                    06:02:ac:0f:51:aa:41:e2:59:2a:8e:f2:3e:b2:de:2c:
                    47:e5:53:62:07:c1:8d:af:b2:56:2a:d2:34:80:69:4e:
                    12:71:2f:71:36:69:6f:18:ae:e2:83:51:88:47:ef:24:
                    58:8c:d4:fd:cd:45:33:db:37:2e:23:8f:f2:dd:dd:70:
                    96:cf:e6:9f:a9:4f:66:74:67:fa:30:9a:71:18:ba:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:da:f6:79:fc:06:86:39:5a:79:ba:23:67:af:99:f8:
        0b:f1:19:1a:4d:06:72:a0:de:84:e7:10:2a:85:d9:47:
        b0:17:0d:c7:8e:54:99:63:75:07:8c:bc:89:b6:0e:e6:
        0a:b3:f9:38:f9:41:db:40:56:2d:f4:fa:6f:b6:99:04:
        ed:d7:33:88:44:df:55:4a:40:d9:ef:b7:05:74:ff:00:
        de:d0:54:c9:4e:91:e0:a2:ab:59:be:89:e1:0e:54:53:
        56:bb:bc:42:55:48:4c:d4:2d:36:d0:06:7e:4f:1a:22:
        36:bd:ba:99:69:5f:e0:28:8a:74:ef:6e:5a:a2:02:92:
        57:4e:1f:91:5b:fb:e6:9c:4f:2f:b2:52:0e:cc:10:fc:
        cc:d8:2a:47:20:0e:34:0d:19:6f:ba:3e:c0:96:22:49:
        91:48:7f:92:7f:1d:d5:02:0b:84:fd:9e:d3:dd:80:a1:
        77:5d:40:a9:36:a3:95:ab:bd:8c:98:bf:f6:d4:bc:09:
        27:92:6b:1c:b2:dc:1e:d7:c7:a9:bf:2c:cc:24:c3:31:
        7c:35:ef:d6:b8:8d:18:9f:95:7c:c4:b7:c4:ce:a7:82:
        8d:83:80:68:b7:10:2a:28:63:43:ad:d9:6b:8b:60:9d:
        b2:5f:39:1f:f2:d5:24:94:a9:a7:5b:57:bf:75:7c:20
    Fingerprint (SHA-256):
        73:8B:58:2E:DC:80:40:BB:A7:AC:37:1B:D2:25:4A:B1:A9:9E:87:14:E6:E8:1E:16:9F:DA:A7:DD:86:C9:29:2B
    Fingerprint (SHA1):
        BB:90:7E:EA:74:BD:41:D6:D3:E2:12:64:31:89:DF:99:CE:01:BE:FE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9053: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9054: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9055: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw
cert.sh: #9056: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9057: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9058: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -o root.cert
cert.sh: #9059: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #9060: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9061: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #9062: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9063: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9064: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA.ca.cert
cert.sh: #9065: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9066: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #9067: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9068: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #9069: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9070: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9071: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #9072: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9073: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9074: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #9075: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9076: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9077: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #9078: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9079: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9080: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #9081: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9082: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9083: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #9084: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #9085: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #9086: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9087: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #9088: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9089: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9090: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9091: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9092: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9093: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9094: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9095: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9096: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9097: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9098: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9099: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9100: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9101: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #9102: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9103: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #9104: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9105: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9106: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #9107: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9108: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9109: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #9110: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9111: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9112: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #9113: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9114: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9115: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #9116: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9117: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9118: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #9119: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9120: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9121: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #9122: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9123: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9124: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #9125: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9126: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9127: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #9128: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9129: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9130: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #9131: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9132: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9133: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #9134: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9135: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9136: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #9137: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9138: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9139: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #9140: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9141: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9142: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #9143: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9144: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9145: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #9146: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9147: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9148: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #9149: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9150: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9151: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #9152: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9153: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9154: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #9155: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9156: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9157: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #9158: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9159: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9160: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #9161: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9162: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9163: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #9164: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9165: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9166: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #9167: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9168: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9169: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #9170: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9171: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9172: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #9173: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9174: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9175: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #9176: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9177: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9178: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #9179: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9180: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9181: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #9182: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9183: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9184: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #9185: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9186: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9187: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #9188: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9189: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9190: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #9191: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9192: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9193: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #9194: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9195: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9196: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #9197: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9198: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9199: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #9200: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9201: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9202: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #9203: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9204: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9205: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #9206: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9207: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9208: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #9209: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9210: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9211: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #9212: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9213: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9214: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #9215: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9216: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9217: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #9218: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9219: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9220: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #9221: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9222: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9223: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #9224: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9225: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9226: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #9227: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9228: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9229: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #9230: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9231: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9232: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #9233: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9234: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9235: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #9236: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9237: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9238: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #9239: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9240: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9241: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #9242: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9243: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9244: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #9245: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9246: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9247: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #9248: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9249: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9250: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #9251: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9252: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9253: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #9254: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9255: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9256: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #9257: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9258: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9259: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #9260: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9261: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9262: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #9263: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9264: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9265: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #9266: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9267: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9268: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #9269: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9270: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9271: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #9272: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9273: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9274: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #9275: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9276: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9277: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #9278: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9279: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9280: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #9281: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9282: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9283: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #9284: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9285: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9286: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #9287: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9288: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9289: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #9290: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9291: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9292: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #9293: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9294: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9295: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #9296: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9297: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #9298: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #9299: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #9300: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #9301: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #9302: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #9303: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9304: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9305: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #9306: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #9307: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #9308: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #9309: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #9310: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9311: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #9312: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9313: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #9314: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 15:40:14 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Tue May  2 15:40:14 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9315: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9316: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #9317: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9318: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9319: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9320: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9321: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9322: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtests.sh: #9323: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_READ_ONLY: security library: read-only database.
dbtests.sh: #9324: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9325: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9326: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9327: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
-r--r-----. 1 mockbuild mockbuild   1221 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1424 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    578 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 233472 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert9.db
-r--------. 1 mockbuild mockbuild 131072 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key4.db
-r--------. 1 mockbuild mockbuild    629 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/pkcs11.txt
-r--r-----. 1 mockbuild mockbuild    394 May  2 15:40 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/req
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #9328: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:15 2017
            Not After : Mon May 02 15:39:15 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b9:69:8a:b3:40:a6:78:d9:ed:93:d6:b9:f2:6b:12:
                    0d:98:65:f5:28:98:fe:ba:5c:38:94:cd:e2:a6:97:37:
                    f8:b9:c1:8e:99:25:27:7a:71:23:72:a0:1a:9c:bc:e4:
                    91:81:65:a8:52:53:a4:6d:a6:df:98:28:1a:a2:1c:a7:
                    05:ba:b3:ef:de:38:a3:3e:1a:08:11:2c:e2:1b:fb:4f:
                    3c:b5:ec:66:73:5e:03:93:ba:06:05:35:28:1c:0c:c5:
                    15:38:bf:7b:3f:73:48:b0:cb:b8:f4:cb:0d:4d:44:fe:
                    67:fb:d0:55:b6:47:17:ef:04:82:e1:04:9f:b4:2e:e6:
                    7f:93:cc:c0:fd:f9:4e:c2:5c:d0:ff:da:04:ee:80:1a:
                    70:b3:88:f1:25:9d:0d:d6:9c:64:a4:22:38:5b:76:85:
                    5c:df:4c:84:75:e4:78:bb:d1:64:95:c4:c6:36:1e:a6:
                    f9:eb:91:6c:8d:da:a1:67:18:88:c9:bb:7c:2d:67:84:
                    b2:6e:6a:3a:38:e0:f3:3e:68:14:3c:fb:81:1c:e0:39:
                    b2:aa:64:e3:e7:2d:97:55:2b:fb:b1:37:a3:4b:2b:38:
                    55:ef:ae:29:cd:54:db:a7:15:b4:01:0b:6b:d1:03:a0:
                    61:b7:ba:bc:6f:1f:00:6b:f6:32:62:d6:9a:23:32:59
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:d1:36:72:47:66:86:7c:1f:cb:bc:11:2c:4c:37:12:
        22:d8:9e:40:c0:d6:d2:ef:ac:39:a6:52:b3:c2:c3:7d:
        3b:05:a9:cf:38:dc:9f:e1:3a:e5:d8:42:e2:24:fb:32:
        95:79:7d:e6:b3:73:c1:62:41:48:fe:1e:ca:10:53:a2:
        d9:48:28:bd:0d:37:ae:ca:db:0c:b6:cd:c1:97:0f:1f:
        c3:9b:99:5e:30:88:33:c2:34:55:da:8e:f5:5a:4a:b9:
        01:f4:aa:56:10:48:26:1e:a1:d2:75:2c:21:3b:e5:eb:
        e7:88:38:9c:54:2c:5e:17:6d:8c:4b:ea:33:da:ce:e9:
        da:9e:92:f5:6f:47:60:6e:1e:34:ad:da:19:d4:17:8e:
        6b:cf:ed:fd:3d:fd:11:65:ac:00:3a:0f:c6:f4:7f:bc:
        03:10:f5:3e:12:b6:2c:b0:8c:48:b7:cc:02:92:d5:3c:
        82:00:b5:68:c9:25:7f:e0:7c:56:4a:a1:26:65:fc:c3:
        59:61:96:56:eb:0c:9c:4a:f4:33:7b:77:ae:9e:22:0d:
        e4:68:03:8f:3f:6c:5b:85:8b:bb:e2:b5:44:78:6f:75:
        98:2e:78:54:37:88:19:99:4e:45:ed:9f:56:6c:d5:a1:
        ac:20:92:fd:cd:a7:c5:9f:18:ea:9f:36:92:39:fe:dc
    Fingerprint (SHA-256):
        3A:56:DA:ED:4B:95:01:7B:A6:28:BA:CC:6A:7C:D2:CE:F6:03:E2:C2:B6:57:88:47:A4:2E:45:28:D5:D1:33:5D
    Fingerprint (SHA1):
        9A:D3:22:41:CD:86:92:2C:F2:C7:75:6F:DD:A7:1B:35:4F:B3:F1:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #9329: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Tue May  2 15:40:16 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:40:16 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9330: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                91:38:08:12:a3:9b:ae:f7:d9:52:74:d9:7c:72:71:ed
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9331: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9332: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9333: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9334: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6f:eb:f5:2a:f5:f5:87:40:90:71:28:94:a3:d8:62:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:38:56 2017
            Not After : Mon May 02 15:38:56 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:b0:7d:4e:6f:95:70:08:f3:d1:07:ce:cb:60:06:
                    66:23:a3:8f:58:09:c3:b3:8f:eb:1e:90:5b:9e:33:8e:
                    78:ac:8b:92:e2:1e:98:ab:e3:d5:1a:2d:40:14:82:46:
                    98:44:88:a1:a7:4d:8b:e8:09:34:43:1f:33:d9:25:54:
                    c3:e9:96:00:b4:d5:0c:ad:63:ad:5c:01:f8:db:5b:05:
                    ec:ca:a6:43:a3:6c:80:98:9a:2e:f6:59:fd:ba:eb:f1:
                    44:c2:85:98:9d:9b:5d:ee:7b:3d:a2:d8:46:08:d5:e0:
                    1f:8d:8e:b5:3d:84:82:be:0b:ba:c1:6e:73:3d:25:05:
                    22:91:e7:57:b8
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:46:b0:ec:f2:36:78:6a:c9:5c:d5:88:
        39:bb:3b:7c:9d:27:ce:e1:4b:48:a7:9f:94:7f:92:3d:
        72:e0:bc:ec:47:43:9f:38:da:e1:75:6a:ba:2e:60:6a:
        01:23:4c:52:1b:fe:4e:1c:2c:44:41:76:22:b8:68:87:
        38:40:dc:16:bb:ff:02:42:01:8d:c6:60:ba:ef:13:a9:
        12:f0:58:bb:09:30:f1:26:25:f9:2c:a8:a7:86:d0:04:
        27:67:9a:a5:bc:e5:5c:96:cf:d8:38:93:73:c3:2b:df:
        f5:82:12:16:4e:7a:9e:c3:5d:d0:08:41:dc:eb:c4:4e:
        fd:09:18:8d:92:ba:cb:ca:a6:99
    Fingerprint (SHA-256):
        07:16:58:53:5D:D6:FA:E4:1F:68:E6:61:3E:BD:9F:F4:7B:D6:FF:15:46:6D:53:D5:B1:9E:5B:A3:53:1E:31:5A
    Fingerprint (SHA1):
        67:A7:7D:54:53:E0:2E:DC:17:F2:2D:53:31:E6:BF:D3:AA:20:8D:B0
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:80:30:f8:fd:2d:b1:dd:30:c8:ff:ac:98:48:78:49:
                    3a:75:11:f0:3f:0a:c4:c6:69:5b:7a:c7:e6:db:d7:83:
                    61:bd:ef:dd:20:06:7d:3b:b1:a8:43:bf:8a:e7:18:c3:
                    3e:99:20:aa:29:d8:52:27:67:14:49:1c:54:65:b2:04:
                    36:ea:c1:66:21:24:db:01:0f:74:77:2a:66:c8:c6:23:
                    eb:1c:61:85:44:88:c9:c4:b6:c8:ce:31:41:c6:b8:a3:
                    1f
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:86:02:41:3c:e7:f4:2d:29:a5:e5:e5:42:a9:5d:
        1e:a0:ca:37:e3:ee:9b:9f:33:43:05:27:a9:0b:54:b1:
        2e:39:84:ad:88:d2:85:e7:1c:65:48:14:d8:76:0d:b5:
        bf:a1:f2:a3:aa:be:38:7a:61:3a:73:8e:62:0e:08:71:
        0a:a1:b0:f2:d3:64:02:41:4b:29:ea:29:02:f6:fe:2d:
        4e:a5:19:98:a4:66:2b:b4:6e:b7:34:72:d2:67:97:df:
        a7:32:d6:e7:db:e7:ea:e8:1e:b9:fe:cc:fb:c3:d9:a1:
        e5:35:20:db:c5:5c:e0:42:e8:a4:13:39:34:81:6b:73:
        c9:dd:80:2a:d0:5d:2d:82:29
    Fingerprint (SHA-256):
        C8:0C:1A:B0:6D:84:23:84:E7:8F:D2:05:6D:4D:7B:56:53:12:B5:0A:E0:29:6B:92:DD:58:BE:75:82:22:FE:B9
    Fingerprint (SHA1):
        17:49:8A:1E:B0:71:FA:82:00:00:A3:52:9D:F0:CF:E6:58:9C:35:E6
    Friendly Name: Alice-ec
tools.sh: #9335: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9336: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                41:37:74:ee:d7:f0:f4:f7:e3:f8:72:eb:49:82:08:b8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9337: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9338: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9339: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                ca:6b:cd:4b:a9:ab:c4:13:3d:78:ee:75:ac:da:51:e2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9340: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9341: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9342: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                03:b8:d0:a4:41:6b:e8:64:44:0a:e0:e0:a2:ab:69:69
            Iteration Count: 2000 (0x7d0)
tools.sh: #9343: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9344: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9345: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c8:df:23:46:75:f5:3b:22:59:8e:20:b7:5b:74:06:ef
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9346: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9347: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9348: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1f:aa:91:93:5a:6f:d3:14:30:43:78:24:ce:f9:bf:68
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9349: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9350: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9351: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ca:87:ce:f0:84:b3:d3:72:f0:34:25:13:a0:5e:99:e8
            Iteration Count: 2000 (0x7d0)
tools.sh: #9352: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9353: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9354: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        99:19:c1:18:d8:88:9b:8c:80:b8:9d:6c:89:36:f2:c8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:80:3b:f6:38:97:58:81:1f:20:82:c6:6e:87:54:
                    23:c6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9355: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9356: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9357: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ac:ff:73:71:2d:4c:38:b8:4c:76:1b:8d:36:ff:9c:5c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:8c:b2:75:4c:36:b5:5b:f3:69:a6:be:a2:54:b7:
                    70:d4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9358: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9359: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9360: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7e:ad:c0:2e:3b:f7:dc:b2:22:f8:78:33:6d:47:15:17
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:29:19:3a:88:ae:46:08:c8:72:cf:42:f8:8d:71:
                    55:14
tools.sh: #9361: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9362: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9363: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4f:c7:81:e2:a7:44:24:84:7e:b4:39:bb:16:4e:f6:b0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:ca:55:de:52:64:9a:69:eb:26:42:e7:4b:97:2e:
                    6c:59
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9364: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9365: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9366: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        22:30:cf:70:01:8c:3f:57:7b:90:a1:f1:e7:af:b9:e5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:90:5e:45:44:d5:9a:ff:c5:02:8f:cc:bf:89:df:
                    0b:7d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9367: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9368: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9369: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        03:44:02:04:12:a2:9f:e5:22:3f:ff:4a:31:a4:25:61
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:16:79:1f:1a:be:74:72:5a:8b:e2:ad:b9:36:d7:
                    a2:e9
tools.sh: #9370: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9371: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9372: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        91:5b:82:79:e2:8c:e0:67:e4:fd:83:5c:70:4e:e6:12
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:69:5b:69:e7:bd:a8:21:be:ca:16:60:98:0d:99:
                    1e:d4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9373: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9374: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9375: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        21:82:57:df:c2:fd:5c:3f:c5:93:88:87:55:c7:70:d3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:eb:63:10:6f:46:c5:69:6e:66:ce:60:ee:c4:3e:
                    06:3f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9376: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9377: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9378: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        cc:01:a9:81:01:51:3c:b1:4d:54:bf:3e:b0:06:a0:c6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:60:ac:7b:89:eb:c9:f9:12:24:46:e4:70:5f:20:
                    a0:3c
tools.sh: #9379: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9380: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9381: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e3:18:8b:7d:37:d4:b4:ee:00:f1:be:06:e4:99:e1:24
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:49:0e:6e:68:60:e9:db:c3:77:3e:ab:5c:e8:7a:
                    a7:5b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9382: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9383: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9384: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5f:fa:e0:e3:34:97:45:01:44:e1:34:b4:f9:ae:69:f5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:5a:88:17:9b:31:b8:00:be:38:97:b2:73:f5:fa:
                    ef:c7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9385: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9386: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9387: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        31:f9:0a:18:fb:64:d6:7e:2f:27:75:a0:5b:58:4d:94
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:9a:77:62:92:34:36:04:f6:9f:e5:34:81:67:65:
                    63:6f
tools.sh: #9388: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9389: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9390: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f2:66:c1:9d:45:cd:77:74:27:b9:81:6e:09:54:c8:2f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:75:8b:e6:fe:cd:9c:c0:61:b4:df:25:99:a9:e8:
                    e7:36
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9391: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9392: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9393: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        20:f6:fb:d8:97:2c:2c:ee:36:e9:d8:12:94:c7:15:d8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:3f:c3:8b:c2:65:51:2c:a2:d5:13:1f:71:0d:75:
                    66:cb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9394: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9395: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9396: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ea:cd:aa:86:d2:fb:28:ae:6e:62:f7:bd:f4:5f:a1:00
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:f4:88:d5:1e:98:b3:f7:11:e6:c1:44:10:3a:90:
                    22:d9
tools.sh: #9397: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9398: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9399: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        11:7d:85:81:0b:c0:b0:33:d4:d1:65:c1:54:43:19:aa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:6b:91:81:9f:51:8b:cc:51:9c:e4:8a:47:58:19:
                    c6:c0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9400: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9401: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9402: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1b:62:d8:c1:b5:63:85:61:62:fa:8e:3b:42:74:56:ba
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:9b:27:49:ca:3a:96:c3:31:7f:89:0a:71:c6:33:
                    d3:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9403: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9404: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9405: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        63:31:b1:67:e6:ab:98:78:2e:88:26:76:5e:84:9c:b5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:33:34:22:e4:9d:eb:18:5f:5b:fa:24:08:62:59:
                    e4:63
tools.sh: #9406: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9407: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9408: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                7b:5e:b3:c3:39:ee:fa:bc:5e:31:70:9f:60:55:cc:de
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9409: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9410: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9411: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                40:d6:1b:4d:42:a1:73:7d:f7:ab:31:18:20:05:16:af
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9412: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9413: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9414: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                37:99:a9:a7:b4:63:7a:0d:00:f8:11:69:b1:34:b8:12
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9415: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9416: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9417: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                e7:5f:32:ed:e5:0c:95:12:5e:2b:f6:ee:4a:a1:5c:e5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9418: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9419: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9420: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                fb:ef:52:df:0b:ef:f2:64:db:56:fe:21:2d:52:b5:93
            Iteration Count: 2000 (0x7d0)
tools.sh: #9421: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9422: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9423: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                04:e9:6a:07:a9:68:ab:cf:83:89:01:bb:0c:0a:c4:f3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9424: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9425: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9426: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                7d:ed:00:90:14:a2:7a:03:37:90:75:df:c9:2e:48:a6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9427: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9428: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9429: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                42:99:79:6b:9e:82:27:41:11:e4:9e:27:e4:71:4c:14
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9430: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9431: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9432: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                ec:b6:05:16:35:d4:a4:a0:0c:97:a3:65:86:69:ce:f2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9433: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9434: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9435: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                30:d8:29:75:ce:5a:8d:48:19:ff:a4:36:f0:30:4e:2a
            Iteration Count: 2000 (0x7d0)
tools.sh: #9436: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9437: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9438: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                86:f7:b0:fb:3d:ed:f2:0e:4d:3f:64:5e:e4:4f:38:6f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9439: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9440: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9441: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                87:51:9d:da:22:b4:44:ba:87:ed:68:60:1f:92:c3:24
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9442: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9443: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9444: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                e6:c7:5d:8e:f0:b8:d7:06:e2:0c:68:a4:76:94:18:f5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9445: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9446: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9447: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                77:30:be:ff:f3:27:f7:d0:fd:7e:5f:b7:0f:bb:d0:f9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9448: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9449: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9450: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                40:fe:d9:93:6c:34:2a:a7:88:7e:f1:61:c2:42:88:41
            Iteration Count: 2000 (0x7d0)
tools.sh: #9451: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9452: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9453: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                42:bf:5a:0d:06:13:f5:70:ff:37:42:9f:fc:72:5a:04
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9454: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9455: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9456: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2a:62:62:ce:0e:78:19:2e:ef:48:89:1e:4a:64:25:6b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9457: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9458: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9459: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fd:a8:90:b6:64:dd:51:b0:de:3b:20:35:58:50:34:2f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9460: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9461: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9462: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a5:ad:b4:04:a3:e8:09:15:c9:1f:2e:18:69:33:d2:f1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9463: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9464: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9465: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                be:18:fc:9e:55:28:a3:a9:55:c0:4c:70:77:6c:81:88
            Iteration Count: 2000 (0x7d0)
tools.sh: #9466: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9467: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9468: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                31:7f:68:5a:23:08:7f:ca:8f:88:0f:e6:ba:84:f5:cc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9469: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9470: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9471: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d3:3e:f8:01:a0:d7:0f:12:4c:3d:12:08:45:b9:ad:15
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9472: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9473: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9474: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                df:00:42:56:a2:2c:49:98:1b:b6:69:56:2d:92:dd:ed
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9475: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9476: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9477: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                86:ad:7a:f2:e5:20:ff:c4:d0:c6:1a:40:6d:0d:29:5b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9478: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9479: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9480: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                81:df:5b:44:f1:74:75:b9:ca:33:ef:f5:fe:8e:39:1f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9481: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9482: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9483: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6b:0b:5a:26:81:d5:6f:c1:56:16:80:d2:54:63:cf:ed
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9484: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9485: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9486: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                77:e4:26:f7:db:34:1c:97:45:4a:92:c8:73:b2:56:b5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9487: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9488: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9489: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d3:6f:f3:63:7c:0f:50:83:82:f3:50:17:35:f4:ef:28
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9490: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9491: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9492: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:09:04:7b:89:a4:2d:5a:f8:f8:e3:c1:94:00:08:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9493: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9494: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9495: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7e:da:f0:12:6e:7c:34:70:9a:ff:97:4b:84:5b:ab:e8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:38:51 2017
            Not After : Mon May 02 15:38:51 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:41:a1:61:d3:e7:6a:7b:96:65:a6:fd:80:03:22:15:
                    7a:2d:3a:0c:75:39:6e:d1:3a:3b:f6:28:ce:b6:2c:ae:
                    df:e7:4b:77:a0:1f:34:01:89:dc:e1:22:a0:09:b0:ca:
                    5f:a5:09:7f:c3:d4:05:72:61:d7:5c:58:0f:b3:01:63:
                    61:05:08:6e:79:f0:b7:3c:66:bc:17:18:6d:61:c7:9b:
                    88:37:c4:7b:a6:6d:c2:7d:e8:80:5a:51:c1:c9:ca:b5:
                    9c:dc:2e:3f:a6:3f:af:a1:74:26:0d:86:a4:e8:29:e8:
                    c8:de:42:d6:28:df:da:66:38:5c:b5:b9:5a:7b:c8:a5:
                    ed:71:85:3d:80:32:fb:92:f8:13:08:b0:a3:a5:a7:5a:
                    aa:f8:fd:a1:a0:e1:6c:7f:50:42:8f:88:ce:84:fe:d9:
                    28:26:41:f2:3b:29:20:92:77:c2:c6:81:48:88:68:33:
                    8f:90:75:36:ee:08:b6:e8:9d:60:af:d6:b4:80:19:61:
                    0e:03:c7:7b:7b:17:e7:56:89:08:4e:33:21:98:00:5c:
                    b2:0a:9f:17:fc:97:96:fd:57:1b:20:3e:b9:7b:e4:d6:
                    00:e8:95:82:a4:2e:58:ad:58:55:e5:39:48:0e:63:67:
                    0c:67:8d:88:f2:08:47:17:d1:98:b5:4d:62:44:bf:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:3f:54:af:5b:9d:88:94:ae:88:20:e3:3b:57:33:40:
        e7:b4:d8:92:c2:ea:1d:35:72:35:92:ea:c3:c9:bd:2d:
        c1:11:53:8b:3d:5e:53:08:6b:bc:cd:b5:a0:8a:15:68:
        96:e2:ac:6f:80:64:c9:5b:cc:37:9d:aa:7d:72:ec:44:
        c8:3c:cd:c6:b4:af:21:bb:a2:c5:5a:47:18:43:2e:d3:
        16:71:ad:cc:67:cd:c9:81:8b:9e:d7:bb:fc:ca:92:fa:
        55:73:7a:76:77:66:01:86:80:f2:6e:a8:29:f1:a6:ab:
        e3:52:ce:ac:c6:20:38:7c:6d:2d:8c:2c:ed:37:00:6e:
        53:c7:de:69:0c:ed:c2:84:c3:8e:3a:62:60:44:bf:1b:
        ac:75:87:c2:91:08:44:71:83:83:f2:37:3b:8e:57:a2:
        eb:70:80:6b:2a:e1:ee:4f:37:28:13:64:ff:3f:d8:d2:
        38:ff:e8:9f:b9:b5:98:bc:73:93:b9:94:42:17:77:2b:
        6a:13:f5:3d:51:79:58:f7:30:07:b1:f9:ed:2b:d6:a1:
        0f:16:ef:a8:42:60:b5:46:1d:12:47:32:12:0c:5b:57:
        6f:a6:9a:dc:36:8a:19:64:1d:e4:72:20:44:c2:b0:f0:
        d7:d0:63:b1:bb:1a:c9:da:69:16:8c:09:b5:ca:b0:e8
    Fingerprint (SHA-256):
        E5:C6:ED:D9:4C:B2:79:36:DD:0E:38:72:F5:B2:6B:61:F6:1F:26:F3:FD:81:18:63:01:DA:17:73:87:D4:DC:2D
    Fingerprint (SHA1):
        37:85:16:92:99:E7:A4:D4:1B:53:10:B7:40:EE:78:45:73:70:A6:18
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:13 2017
            Not After : Mon May 02 15:39:13 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:0a:a9:2a:2a:e1:6d:7a:96:c2:af:82:2d:6e:b3:bf:
                    ac:58:55:a4:93:13:0f:23:86:07:7c:98:9f:1c:fe:47:
                    88:20:7b:b5:24:46:3f:14:0e:07:ff:20:69:99:64:39:
                    88:b2:52:5a:9a:0d:eb:be:0a:3e:22:0c:86:d9:00:bf:
                    0e:f2:33:36:67:60:98:a4:3b:2e:03:dd:a5:40:1d:7c:
                    3d:17:af:5d:90:34:4c:9e:c0:c2:11:2b:43:b6:b3:2f:
                    34:65:3e:6b:a0:5b:ce:9b:1c:02:8b:f0:32:25:02:d4:
                    87:5e:5f:70:87:69:be:1b:8d:0c:df:c1:50:0d:55:ce:
                    19:f3:bc:f7:20:6f:44:f0:d3:48:73:03:e5:77:42:6e:
                    99:0b:72:de:b6:76:23:6d:55:b5:c7:a4:69:00:da:26:
                    83:b0:da:06:1d:08:6d:08:dd:a5:23:2f:8f:ac:77:ca:
                    10:db:a4:7d:f9:d5:3b:7c:34:70:d3:bb:ac:a4:c9:4c:
                    ed:60:6e:d6:c9:78:46:b4:0f:e2:11:34:82:42:99:12:
                    13:3d:5e:26:71:e2:26:a5:ac:6e:af:7e:93:2c:23:0b:
                    8f:de:d8:7a:4d:8d:1f:76:40:2b:36:7c:6d:ed:fc:f0:
                    f6:3d:e8:26:51:42:09:b9:13:0f:9d:e9:73:62:54:7b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:aa:f3:7b:e8:a8:63:60:b5:b7:98:1c:21:99:9a:ab:
        aa:af:9c:26:c3:b2:91:36:6b:a5:aa:6f:9b:46:f0:0f:
        c9:69:b7:9b:69:d5:b7:5f:d4:84:86:45:2b:b7:2d:ee:
        55:0a:c5:ab:bf:18:38:49:46:a5:8a:f4:4f:32:a2:45:
        48:52:ea:f4:e1:f8:79:93:e7:8d:a0:19:f2:0f:f0:a6:
        34:f3:6a:b9:d4:c2:1f:de:9f:9b:50:01:4f:b6:77:37:
        cb:75:97:7b:e9:11:6b:97:eb:25:75:85:35:84:29:4d:
        1d:d6:fd:c2:6c:54:8c:94:44:d4:3e:07:64:f9:00:50:
        8e:ae:c9:e1:55:48:1f:5b:32:52:e2:b0:09:69:c8:5c:
        bf:c0:c4:81:08:b3:a5:44:c0:78:84:14:73:f2:13:78:
        eb:1a:bf:8a:b6:85:5f:7d:f7:e9:68:81:47:64:d7:45:
        dd:70:62:da:54:30:70:73:e1:5c:0d:eb:b4:bd:9c:8b:
        07:be:57:e1:e1:3c:17:3d:ff:ff:ad:0a:89:d6:2b:21:
        d9:77:5b:41:b9:33:f3:6e:48:71:42:a9:07:b5:ce:35:
        ba:02:9a:ca:e7:38:66:0e:10:96:74:ef:2c:01:d6:44:
        a1:0b:7c:68:c5:e8:ba:a8:b8:ea:4f:04:ba:cd:a1:a7
    Fingerprint (SHA-256):
        B2:3D:AB:6F:7E:40:E5:AC:C4:E8:AA:14:86:49:48:1D:C7:56:64:13:DE:FE:C4:D9:AE:49:BC:80:EC:FE:CC:E2
    Fingerprint (SHA1):
        0A:7F:5A:8A:E6:ED:90:99:45:09:21:1A:CD:6D:AF:A8:45:4A:C4:0C
    Friendly Name: Alice
tools.sh: #9496: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9497: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #9498: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9499: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #9500: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #9501: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9502: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9503: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #9504: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9505: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9506: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:40:32 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:40:32 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #9507: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9508: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      50c5b6cdf3dd17d417df0d4fc6f8ec99aaecc9b6   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #9509: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #9510: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #9511: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #9512: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #9513: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9514: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #9515: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9516: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #9517: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9518: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9519: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      50c5b6cdf3dd17d417df0d4fc6f8ec99aaecc9b6   FIPS_PUB_140_Test_Certificate
fips.sh: #9520: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #9521: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9522: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9523: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9524: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      50c5b6cdf3dd17d417df0d4fc6f8ec99aaecc9b6   FIPS_PUB_140_Test_Certificate
fips.sh: #9525: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #9526: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #9527: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
Changing byte 0x0003fd48 (261448): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle dbtest -r -d ../fips
fips.sh: #9528: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:40:42 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 15:40:42 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #9529: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #9530: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 15:40:42 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 15:40:42 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #9531: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9532: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #9533: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #9534: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #9535: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #9536: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9537: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #9538: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #9539: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #9540: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #9541: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9542: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #9543: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #9544: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #9545: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #9546: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9547: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #9548: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #9549: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #9550: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #9551: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9552: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #9553: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #9554: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #9555: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #9556: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9557: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #9558: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #9559: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #9560: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #9561: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9562: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #9563: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #9564: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #9565: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #9566: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9567: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #9568: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #9569: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #9570: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #9571: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #9572: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #9573: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #9574: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #9575: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #9576: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #9577: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #9578: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #9579: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #9580: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #9581: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #9582: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #9583: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #9584: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #9585: Decode Encrypted-Data . - PASSED
smime.sh: #9586: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #9587: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #9588: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #9589: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #9590: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #9591: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 15:40:46 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:40:46 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:46 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3509 >/dev/null 2>/dev/null
selfserv_9247 with PID 3509 found at Tue May  2 15:40:46 UTC 2017
selfserv_9247 with PID 3509 started at Tue May  2 15:40:46 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9592: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 3509 at Tue May  2 15:40:47 UTC 2017
kill -USR1 3509
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3509 killed at Tue May  2 15:40:47 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3565 >/dev/null 2>/dev/null
selfserv_9247 with PID 3565 found at Tue May  2 15:40:47 UTC 2017
selfserv_9247 with PID 3565 started at Tue May  2 15:40:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9593: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 3565 at Tue May  2 15:40:47 UTC 2017
kill -USR1 3565
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3565 killed at Tue May  2 15:40:47 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3621 >/dev/null 2>/dev/null
selfserv_9247 with PID 3621 found at Tue May  2 15:40:47 UTC 2017
selfserv_9247 with PID 3621 started at Tue May  2 15:40:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9594: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 3621 at Tue May  2 15:40:47 UTC 2017
kill -USR1 3621
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3621 killed at Tue May  2 15:40:47 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:47 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3689 >/dev/null 2>/dev/null
selfserv_9247 with PID 3689 found at Tue May  2 15:40:47 UTC 2017
selfserv_9247 with PID 3689 started at Tue May  2 15:40:47 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9595: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 3689 at Tue May  2 15:40:48 UTC 2017
kill -USR1 3689
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3689 killed at Tue May  2 15:40:48 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3745 >/dev/null 2>/dev/null
selfserv_9247 with PID 3745 found at Tue May  2 15:40:48 UTC 2017
selfserv_9247 with PID 3745 started at Tue May  2 15:40:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9596: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 3745 at Tue May  2 15:40:48 UTC 2017
kill -USR1 3745
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3745 killed at Tue May  2 15:40:48 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3801 >/dev/null 2>/dev/null
selfserv_9247 with PID 3801 found at Tue May  2 15:40:48 UTC 2017
selfserv_9247 with PID 3801 started at Tue May  2 15:40:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9597: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 3801 at Tue May  2 15:40:48 UTC 2017
kill -USR1 3801
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3801 killed at Tue May  2 15:40:48 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3869 >/dev/null 2>/dev/null
selfserv_9247 with PID 3869 found at Tue May  2 15:40:48 UTC 2017
selfserv_9247 with PID 3869 started at Tue May  2 15:40:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9598: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 3869 at Tue May  2 15:40:48 UTC 2017
kill -USR1 3869
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3869 killed at Tue May  2 15:40:48 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:48 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3925 >/dev/null 2>/dev/null
selfserv_9247 with PID 3925 found at Tue May  2 15:40:48 UTC 2017
selfserv_9247 with PID 3925 started at Tue May  2 15:40:48 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9599: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 3925 at Tue May  2 15:40:49 UTC 2017
kill -USR1 3925
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3925 killed at Tue May  2 15:40:49 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3981 >/dev/null 2>/dev/null
selfserv_9247 with PID 3981 found at Tue May  2 15:40:49 UTC 2017
selfserv_9247 with PID 3981 started at Tue May  2 15:40:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9600: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 3981 at Tue May  2 15:40:49 UTC 2017
kill -USR1 3981
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3981 killed at Tue May  2 15:40:49 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4049 >/dev/null 2>/dev/null
selfserv_9247 with PID 4049 found at Tue May  2 15:40:49 UTC 2017
selfserv_9247 with PID 4049 started at Tue May  2 15:40:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9601: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4049 at Tue May  2 15:40:49 UTC 2017
kill -USR1 4049
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4049 killed at Tue May  2 15:40:49 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:49 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4105 >/dev/null 2>/dev/null
selfserv_9247 with PID 4105 found at Tue May  2 15:40:49 UTC 2017
selfserv_9247 with PID 4105 started at Tue May  2 15:40:49 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9602: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4105 at Tue May  2 15:40:50 UTC 2017
kill -USR1 4105
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4105 killed at Tue May  2 15:40:50 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4161 >/dev/null 2>/dev/null
selfserv_9247 with PID 4161 found at Tue May  2 15:40:50 UTC 2017
selfserv_9247 with PID 4161 started at Tue May  2 15:40:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9603: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4161 at Tue May  2 15:40:50 UTC 2017
kill -USR1 4161
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4161 killed at Tue May  2 15:40:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4229 >/dev/null 2>/dev/null
selfserv_9247 with PID 4229 found at Tue May  2 15:40:50 UTC 2017
selfserv_9247 with PID 4229 started at Tue May  2 15:40:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9604: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4229 at Tue May  2 15:40:50 UTC 2017
kill -USR1 4229
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4229 killed at Tue May  2 15:40:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4285 >/dev/null 2>/dev/null
selfserv_9247 with PID 4285 found at Tue May  2 15:40:50 UTC 2017
selfserv_9247 with PID 4285 started at Tue May  2 15:40:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9605: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4285 at Tue May  2 15:40:50 UTC 2017
kill -USR1 4285
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4285 killed at Tue May  2 15:40:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:50 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4341 >/dev/null 2>/dev/null
selfserv_9247 with PID 4341 found at Tue May  2 15:40:50 UTC 2017
selfserv_9247 with PID 4341 started at Tue May  2 15:40:50 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9606: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4341 at Tue May  2 15:40:51 UTC 2017
kill -USR1 4341
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4341 killed at Tue May  2 15:40:51 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4409 >/dev/null 2>/dev/null
selfserv_9247 with PID 4409 found at Tue May  2 15:40:51 UTC 2017
selfserv_9247 with PID 4409 started at Tue May  2 15:40:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9607: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4409 at Tue May  2 15:40:51 UTC 2017
kill -USR1 4409
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4409 killed at Tue May  2 15:40:51 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4465 >/dev/null 2>/dev/null
selfserv_9247 with PID 4465 found at Tue May  2 15:40:51 UTC 2017
selfserv_9247 with PID 4465 started at Tue May  2 15:40:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9608: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4465 at Tue May  2 15:40:51 UTC 2017
kill -USR1 4465
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4465 killed at Tue May  2 15:40:51 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4521 >/dev/null 2>/dev/null
selfserv_9247 with PID 4521 found at Tue May  2 15:40:51 UTC 2017
selfserv_9247 with PID 4521 started at Tue May  2 15:40:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9609: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4521 at Tue May  2 15:40:52 UTC 2017
kill -USR1 4521
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4521 killed at Tue May  2 15:40:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4589 >/dev/null 2>/dev/null
selfserv_9247 with PID 4589 found at Tue May  2 15:40:52 UTC 2017
selfserv_9247 with PID 4589 started at Tue May  2 15:40:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9610: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4589 at Tue May  2 15:40:52 UTC 2017
kill -USR1 4589
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4589 killed at Tue May  2 15:40:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4645 >/dev/null 2>/dev/null
selfserv_9247 with PID 4645 found at Tue May  2 15:40:52 UTC 2017
selfserv_9247 with PID 4645 started at Tue May  2 15:40:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9611: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4645 at Tue May  2 15:40:52 UTC 2017
kill -USR1 4645
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4645 killed at Tue May  2 15:40:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:52 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4701 >/dev/null 2>/dev/null
selfserv_9247 with PID 4701 found at Tue May  2 15:40:52 UTC 2017
selfserv_9247 with PID 4701 started at Tue May  2 15:40:52 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9612: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4701 at Tue May  2 15:40:52 UTC 2017
kill -USR1 4701
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4701 killed at Tue May  2 15:40:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4769 >/dev/null 2>/dev/null
selfserv_9247 with PID 4769 found at Tue May  2 15:40:53 UTC 2017
selfserv_9247 with PID 4769 started at Tue May  2 15:40:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9613: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4769 at Tue May  2 15:40:53 UTC 2017
kill -USR1 4769
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4769 killed at Tue May  2 15:40:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4825 >/dev/null 2>/dev/null
selfserv_9247 with PID 4825 found at Tue May  2 15:40:53 UTC 2017
selfserv_9247 with PID 4825 started at Tue May  2 15:40:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9614: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4825 at Tue May  2 15:40:53 UTC 2017
kill -USR1 4825
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4825 killed at Tue May  2 15:40:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4881 >/dev/null 2>/dev/null
selfserv_9247 with PID 4881 found at Tue May  2 15:40:53 UTC 2017
selfserv_9247 with PID 4881 started at Tue May  2 15:40:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9615: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 4881 at Tue May  2 15:40:53 UTC 2017
kill -USR1 4881
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4881 killed at Tue May  2 15:40:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4949 >/dev/null 2>/dev/null
selfserv_9247 with PID 4949 found at Tue May  2 15:40:53 UTC 2017
selfserv_9247 with PID 4949 started at Tue May  2 15:40:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9616: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 4949 at Tue May  2 15:40:54 UTC 2017
kill -USR1 4949
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 4949 killed at Tue May  2 15:40:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5005 >/dev/null 2>/dev/null
selfserv_9247 with PID 5005 found at Tue May  2 15:40:54 UTC 2017
selfserv_9247 with PID 5005 started at Tue May  2 15:40:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9617: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5005 at Tue May  2 15:40:54 UTC 2017
kill -USR1 5005
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5005 killed at Tue May  2 15:40:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5061 >/dev/null 2>/dev/null
selfserv_9247 with PID 5061 found at Tue May  2 15:40:54 UTC 2017
selfserv_9247 with PID 5061 started at Tue May  2 15:40:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9618: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5061 at Tue May  2 15:40:54 UTC 2017
kill -USR1 5061
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5061 killed at Tue May  2 15:40:54 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5129 >/dev/null 2>/dev/null
selfserv_9247 with PID 5129 found at Tue May  2 15:40:54 UTC 2017
selfserv_9247 with PID 5129 started at Tue May  2 15:40:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9619: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5129 at Tue May  2 15:40:54 UTC 2017
kill -USR1 5129
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5129 killed at Tue May  2 15:40:54 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:54 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5185 >/dev/null 2>/dev/null
selfserv_9247 with PID 5185 found at Tue May  2 15:40:54 UTC 2017
selfserv_9247 with PID 5185 started at Tue May  2 15:40:54 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9620: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5185 at Tue May  2 15:40:55 UTC 2017
kill -USR1 5185
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5185 killed at Tue May  2 15:40:55 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5241 >/dev/null 2>/dev/null
selfserv_9247 with PID 5241 found at Tue May  2 15:40:55 UTC 2017
selfserv_9247 with PID 5241 started at Tue May  2 15:40:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9621: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5241 at Tue May  2 15:40:55 UTC 2017
kill -USR1 5241
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5241 killed at Tue May  2 15:40:55 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5309 >/dev/null 2>/dev/null
selfserv_9247 with PID 5309 found at Tue May  2 15:40:55 UTC 2017
selfserv_9247 with PID 5309 started at Tue May  2 15:40:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9622: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5309 at Tue May  2 15:40:55 UTC 2017
kill -USR1 5309
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5309 killed at Tue May  2 15:40:55 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:55 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5365 >/dev/null 2>/dev/null
selfserv_9247 with PID 5365 found at Tue May  2 15:40:55 UTC 2017
selfserv_9247 with PID 5365 started at Tue May  2 15:40:55 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9623: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5365 at Tue May  2 15:40:56 UTC 2017
kill -USR1 5365
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5365 killed at Tue May  2 15:40:56 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5422 >/dev/null 2>/dev/null
selfserv_9247 with PID 5422 found at Tue May  2 15:40:56 UTC 2017
selfserv_9247 with PID 5422 started at Tue May  2 15:40:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9624: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5422 at Tue May  2 15:40:56 UTC 2017
kill -USR1 5422
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5422 killed at Tue May  2 15:40:56 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5491 >/dev/null 2>/dev/null
selfserv_9247 with PID 5491 found at Tue May  2 15:40:56 UTC 2017
selfserv_9247 with PID 5491 started at Tue May  2 15:40:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9625: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5491 at Tue May  2 15:40:56 UTC 2017
kill -USR1 5491
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5491 killed at Tue May  2 15:40:56 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5547 >/dev/null 2>/dev/null
selfserv_9247 with PID 5547 found at Tue May  2 15:40:56 UTC 2017
selfserv_9247 with PID 5547 started at Tue May  2 15:40:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9626: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5547 at Tue May  2 15:40:56 UTC 2017
kill -USR1 5547
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5547 killed at Tue May  2 15:40:56 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:56 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:56 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5603 >/dev/null 2>/dev/null
selfserv_9247 with PID 5603 found at Tue May  2 15:40:57 UTC 2017
selfserv_9247 with PID 5603 started at Tue May  2 15:40:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9627: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 5603 at Tue May  2 15:40:57 UTC 2017
kill -USR1 5603
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5603 killed at Tue May  2 15:40:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5671 >/dev/null 2>/dev/null
selfserv_9247 with PID 5671 found at Tue May  2 15:40:57 UTC 2017
selfserv_9247 with PID 5671 started at Tue May  2 15:40:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9628: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5671 at Tue May  2 15:40:57 UTC 2017
kill -USR1 5671
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5671 killed at Tue May  2 15:40:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5727 >/dev/null 2>/dev/null
selfserv_9247 with PID 5727 found at Tue May  2 15:40:57 UTC 2017
selfserv_9247 with PID 5727 started at Tue May  2 15:40:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9629: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5727 at Tue May  2 15:40:57 UTC 2017
kill -USR1 5727
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5727 killed at Tue May  2 15:40:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:40:57 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5783 >/dev/null 2>/dev/null
selfserv_9247 with PID 5783 found at Tue May  2 15:40:57 UTC 2017
selfserv_9247 with PID 5783 started at Tue May  2 15:40:57 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9630: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5783 at Tue May  2 15:40:58 UTC 2017
kill -USR1 5783
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5783 killed at Tue May  2 15:40:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5851 >/dev/null 2>/dev/null
selfserv_9247 with PID 5851 found at Tue May  2 15:40:58 UTC 2017
selfserv_9247 with PID 5851 started at Tue May  2 15:40:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9631: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5851 at Tue May  2 15:40:58 UTC 2017
kill -USR1 5851
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5851 killed at Tue May  2 15:40:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5907 >/dev/null 2>/dev/null
selfserv_9247 with PID 5907 found at Tue May  2 15:40:58 UTC 2017
selfserv_9247 with PID 5907 started at Tue May  2 15:40:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9632: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5907 at Tue May  2 15:40:58 UTC 2017
kill -USR1 5907
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5907 killed at Tue May  2 15:40:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:40:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5963 >/dev/null 2>/dev/null
selfserv_9247 with PID 5963 found at Tue May  2 15:40:58 UTC 2017
selfserv_9247 with PID 5963 started at Tue May  2 15:40:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9633: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 5963 at Tue May  2 15:40:59 UTC 2017
kill -USR1 5963
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 5963 killed at Tue May  2 15:40:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6031 >/dev/null 2>/dev/null
selfserv_9247 with PID 6031 found at Tue May  2 15:40:59 UTC 2017
selfserv_9247 with PID 6031 started at Tue May  2 15:40:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9634: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6031 at Tue May  2 15:40:59 UTC 2017
kill -USR1 6031
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6031 killed at Tue May  2 15:40:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6087 >/dev/null 2>/dev/null
selfserv_9247 with PID 6087 found at Tue May  2 15:40:59 UTC 2017
selfserv_9247 with PID 6087 started at Tue May  2 15:40:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9635: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6087 at Tue May  2 15:40:59 UTC 2017
kill -USR1 6087
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6087 killed at Tue May  2 15:40:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:40:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:40:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6143 >/dev/null 2>/dev/null
selfserv_9247 with PID 6143 found at Tue May  2 15:40:59 UTC 2017
selfserv_9247 with PID 6143 started at Tue May  2 15:40:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9636: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6143 at Tue May  2 15:41:00 UTC 2017
kill -USR1 6143
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6143 killed at Tue May  2 15:41:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6211 >/dev/null 2>/dev/null
selfserv_9247 with PID 6211 found at Tue May  2 15:41:00 UTC 2017
selfserv_9247 with PID 6211 started at Tue May  2 15:41:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9637: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6211 at Tue May  2 15:41:00 UTC 2017
kill -USR1 6211
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6211 killed at Tue May  2 15:41:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6267 >/dev/null 2>/dev/null
selfserv_9247 with PID 6267 found at Tue May  2 15:41:00 UTC 2017
selfserv_9247 with PID 6267 started at Tue May  2 15:41:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9638: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6267 at Tue May  2 15:41:00 UTC 2017
kill -USR1 6267
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6267 killed at Tue May  2 15:41:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:00 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6323 >/dev/null 2>/dev/null
selfserv_9247 with PID 6323 found at Tue May  2 15:41:00 UTC 2017
selfserv_9247 with PID 6323 started at Tue May  2 15:41:00 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9639: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6323 at Tue May  2 15:41:01 UTC 2017
kill -USR1 6323
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6323 killed at Tue May  2 15:41:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6391 >/dev/null 2>/dev/null
selfserv_9247 with PID 6391 found at Tue May  2 15:41:01 UTC 2017
selfserv_9247 with PID 6391 started at Tue May  2 15:41:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9640: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6391 at Tue May  2 15:41:01 UTC 2017
kill -USR1 6391
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6391 killed at Tue May  2 15:41:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6447 >/dev/null 2>/dev/null
selfserv_9247 with PID 6447 found at Tue May  2 15:41:01 UTC 2017
selfserv_9247 with PID 6447 started at Tue May  2 15:41:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9641: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6447 at Tue May  2 15:41:01 UTC 2017
kill -USR1 6447
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6447 killed at Tue May  2 15:41:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:01 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6503 >/dev/null 2>/dev/null
selfserv_9247 with PID 6503 found at Tue May  2 15:41:01 UTC 2017
selfserv_9247 with PID 6503 started at Tue May  2 15:41:01 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9642: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6503 at Tue May  2 15:41:01 UTC 2017
kill -USR1 6503
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6503 killed at Tue May  2 15:41:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6571 >/dev/null 2>/dev/null
selfserv_9247 with PID 6571 found at Tue May  2 15:41:02 UTC 2017
selfserv_9247 with PID 6571 started at Tue May  2 15:41:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9643: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6571 at Tue May  2 15:41:02 UTC 2017
kill -USR1 6571
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6571 killed at Tue May  2 15:41:02 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6627 >/dev/null 2>/dev/null
selfserv_9247 with PID 6627 found at Tue May  2 15:41:02 UTC 2017
selfserv_9247 with PID 6627 started at Tue May  2 15:41:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9644: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6627 at Tue May  2 15:41:02 UTC 2017
kill -USR1 6627
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6627 killed at Tue May  2 15:41:02 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:02 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6683 >/dev/null 2>/dev/null
selfserv_9247 with PID 6683 found at Tue May  2 15:41:02 UTC 2017
selfserv_9247 with PID 6683 started at Tue May  2 15:41:02 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9645: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 6683 at Tue May  2 15:41:02 UTC 2017
kill -USR1 6683
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6683 killed at Tue May  2 15:41:02 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6751 >/dev/null 2>/dev/null
selfserv_9247 with PID 6751 found at Tue May  2 15:41:03 UTC 2017
selfserv_9247 with PID 6751 started at Tue May  2 15:41:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9646: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6751 at Tue May  2 15:41:03 UTC 2017
kill -USR1 6751
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6751 killed at Tue May  2 15:41:03 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:03 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6807 >/dev/null 2>/dev/null
selfserv_9247 with PID 6807 found at Tue May  2 15:41:03 UTC 2017
selfserv_9247 with PID 6807 started at Tue May  2 15:41:03 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9647: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6807 at Tue May  2 15:41:04 UTC 2017
kill -USR1 6807
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6807 killed at Tue May  2 15:41:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6863 >/dev/null 2>/dev/null
selfserv_9247 with PID 6863 found at Tue May  2 15:41:04 UTC 2017
selfserv_9247 with PID 6863 started at Tue May  2 15:41:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9648: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6863 at Tue May  2 15:41:04 UTC 2017
kill -USR1 6863
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6863 killed at Tue May  2 15:41:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6931 >/dev/null 2>/dev/null
selfserv_9247 with PID 6931 found at Tue May  2 15:41:04 UTC 2017
selfserv_9247 with PID 6931 started at Tue May  2 15:41:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9649: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6931 at Tue May  2 15:41:05 UTC 2017
kill -USR1 6931
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6931 killed at Tue May  2 15:41:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:05 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:05 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6987 >/dev/null 2>/dev/null
selfserv_9247 with PID 6987 found at Tue May  2 15:41:05 UTC 2017
selfserv_9247 with PID 6987 started at Tue May  2 15:41:05 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9650: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 6987 at Tue May  2 15:41:05 UTC 2017
kill -USR1 6987
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 6987 killed at Tue May  2 15:41:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:05 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:05 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7043 >/dev/null 2>/dev/null
selfserv_9247 with PID 7043 found at Tue May  2 15:41:05 UTC 2017
selfserv_9247 with PID 7043 started at Tue May  2 15:41:05 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9651: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 7043 at Tue May  2 15:41:05 UTC 2017
kill -USR1 7043
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7043 killed at Tue May  2 15:41:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:05 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:05 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7111 >/dev/null 2>/dev/null
selfserv_9247 with PID 7111 found at Tue May  2 15:41:05 UTC 2017
selfserv_9247 with PID 7111 started at Tue May  2 15:41:05 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9652: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7111 at Tue May  2 15:41:06 UTC 2017
kill -USR1 7111
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7111 killed at Tue May  2 15:41:06 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7167 >/dev/null 2>/dev/null
selfserv_9247 with PID 7167 found at Tue May  2 15:41:06 UTC 2017
selfserv_9247 with PID 7167 started at Tue May  2 15:41:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9653: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 7167 at Tue May  2 15:41:06 UTC 2017
kill -USR1 7167
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7167 killed at Tue May  2 15:41:06 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7223 >/dev/null 2>/dev/null
selfserv_9247 with PID 7223 found at Tue May  2 15:41:06 UTC 2017
selfserv_9247 with PID 7223 started at Tue May  2 15:41:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9654: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7223 at Tue May  2 15:41:07 UTC 2017
kill -USR1 7223
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7223 killed at Tue May  2 15:41:07 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:07 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7291 >/dev/null 2>/dev/null
selfserv_9247 with PID 7291 found at Tue May  2 15:41:07 UTC 2017
selfserv_9247 with PID 7291 started at Tue May  2 15:41:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9655: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7291 at Tue May  2 15:41:07 UTC 2017
kill -USR1 7291
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7291 killed at Tue May  2 15:41:07 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:07 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7347 >/dev/null 2>/dev/null
selfserv_9247 with PID 7347 found at Tue May  2 15:41:07 UTC 2017
selfserv_9247 with PID 7347 started at Tue May  2 15:41:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9656: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7347 at Tue May  2 15:41:07 UTC 2017
kill -USR1 7347
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7347 killed at Tue May  2 15:41:07 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:07 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7403 >/dev/null 2>/dev/null
selfserv_9247 with PID 7403 found at Tue May  2 15:41:07 UTC 2017
selfserv_9247 with PID 7403 started at Tue May  2 15:41:07 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9657: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7403 at Tue May  2 15:41:08 UTC 2017
kill -USR1 7403
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7403 killed at Tue May  2 15:41:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7471 >/dev/null 2>/dev/null
selfserv_9247 with PID 7471 found at Tue May  2 15:41:08 UTC 2017
selfserv_9247 with PID 7471 started at Tue May  2 15:41:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9658: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7471 at Tue May  2 15:41:08 UTC 2017
kill -USR1 7471
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7471 killed at Tue May  2 15:41:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:08 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7527 >/dev/null 2>/dev/null
selfserv_9247 with PID 7527 found at Tue May  2 15:41:08 UTC 2017
selfserv_9247 with PID 7527 started at Tue May  2 15:41:08 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9659: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7527 at Tue May  2 15:41:09 UTC 2017
kill -USR1 7527
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7527 killed at Tue May  2 15:41:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7583 >/dev/null 2>/dev/null
selfserv_9247 with PID 7583 found at Tue May  2 15:41:09 UTC 2017
selfserv_9247 with PID 7583 started at Tue May  2 15:41:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9660: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7583 at Tue May  2 15:41:09 UTC 2017
kill -USR1 7583
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7583 killed at Tue May  2 15:41:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:09 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7653 >/dev/null 2>/dev/null
selfserv_9247 with PID 7653 found at Tue May  2 15:41:09 UTC 2017
selfserv_9247 with PID 7653 started at Tue May  2 15:41:09 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9661: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7653 at Tue May  2 15:41:10 UTC 2017
kill -USR1 7653
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7653 killed at Tue May  2 15:41:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7709 >/dev/null 2>/dev/null
selfserv_9247 with PID 7709 found at Tue May  2 15:41:10 UTC 2017
selfserv_9247 with PID 7709 started at Tue May  2 15:41:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9662: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 7709 at Tue May  2 15:41:10 UTC 2017
kill -USR1 7709
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7709 killed at Tue May  2 15:41:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7767 >/dev/null 2>/dev/null
selfserv_9247 with PID 7767 found at Tue May  2 15:41:10 UTC 2017
selfserv_9247 with PID 7767 started at Tue May  2 15:41:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9663: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 7767 at Tue May  2 15:41:10 UTC 2017
kill -USR1 7767
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7767 killed at Tue May  2 15:41:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7835 >/dev/null 2>/dev/null
selfserv_9247 with PID 7835 found at Tue May  2 15:41:10 UTC 2017
selfserv_9247 with PID 7835 started at Tue May  2 15:41:10 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9664: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 7835 at Tue May  2 15:41:10 UTC 2017
kill -USR1 7835
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7835 killed at Tue May  2 15:41:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:10 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7891 >/dev/null 2>/dev/null
selfserv_9247 with PID 7891 found at Tue May  2 15:41:11 UTC 2017
selfserv_9247 with PID 7891 started at Tue May  2 15:41:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9665: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 7891 at Tue May  2 15:41:11 UTC 2017
kill -USR1 7891
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7891 killed at Tue May  2 15:41:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7947 >/dev/null 2>/dev/null
selfserv_9247 with PID 7947 found at Tue May  2 15:41:11 UTC 2017
selfserv_9247 with PID 7947 started at Tue May  2 15:41:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9666: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 7947 at Tue May  2 15:41:11 UTC 2017
kill -USR1 7947
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 7947 killed at Tue May  2 15:41:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8015 >/dev/null 2>/dev/null
selfserv_9247 with PID 8015 found at Tue May  2 15:41:11 UTC 2017
selfserv_9247 with PID 8015 started at Tue May  2 15:41:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9667: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 8015 at Tue May  2 15:41:11 UTC 2017
kill -USR1 8015
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8015 killed at Tue May  2 15:41:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:11 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8071 >/dev/null 2>/dev/null
selfserv_9247 with PID 8071 found at Tue May  2 15:41:11 UTC 2017
selfserv_9247 with PID 8071 started at Tue May  2 15:41:11 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9668: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 8071 at Tue May  2 15:41:12 UTC 2017
kill -USR1 8071
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8071 killed at Tue May  2 15:41:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8127 >/dev/null 2>/dev/null
selfserv_9247 with PID 8127 found at Tue May  2 15:41:12 UTC 2017
selfserv_9247 with PID 8127 started at Tue May  2 15:41:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9669: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 8127 at Tue May  2 15:41:12 UTC 2017
kill -USR1 8127
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8127 killed at Tue May  2 15:41:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8195 >/dev/null 2>/dev/null
selfserv_9247 with PID 8195 found at Tue May  2 15:41:12 UTC 2017
selfserv_9247 with PID 8195 started at Tue May  2 15:41:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9670: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8195 at Tue May  2 15:41:12 UTC 2017
kill -USR1 8195
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8195 killed at Tue May  2 15:41:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8251 >/dev/null 2>/dev/null
selfserv_9247 with PID 8251 found at Tue May  2 15:41:12 UTC 2017
selfserv_9247 with PID 8251 started at Tue May  2 15:41:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9671: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 8251 at Tue May  2 15:41:12 UTC 2017
kill -USR1 8251
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8251 killed at Tue May  2 15:41:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8307 >/dev/null 2>/dev/null
selfserv_9247 with PID 8307 found at Tue May  2 15:41:12 UTC 2017
selfserv_9247 with PID 8307 started at Tue May  2 15:41:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9672: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8307 at Tue May  2 15:41:13 UTC 2017
kill -USR1 8307
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8307 killed at Tue May  2 15:41:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8375 >/dev/null 2>/dev/null
selfserv_9247 with PID 8375 found at Tue May  2 15:41:13 UTC 2017
selfserv_9247 with PID 8375 started at Tue May  2 15:41:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9673: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8375 at Tue May  2 15:41:13 UTC 2017
kill -USR1 8375
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8375 killed at Tue May  2 15:41:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8431 >/dev/null 2>/dev/null
selfserv_9247 with PID 8431 found at Tue May  2 15:41:13 UTC 2017
selfserv_9247 with PID 8431 started at Tue May  2 15:41:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9674: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8431 at Tue May  2 15:41:13 UTC 2017
kill -USR1 8431
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8431 killed at Tue May  2 15:41:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9247 starting at Tue May  2 15:41:13 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8487 >/dev/null 2>/dev/null
selfserv_9247 with PID 8487 found at Tue May  2 15:41:13 UTC 2017
selfserv_9247 with PID 8487 started at Tue May  2 15:41:13 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9675: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8487 at Tue May  2 15:41:13 UTC 2017
kill -USR1 8487
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8487 killed at Tue May  2 15:41:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8555 >/dev/null 2>/dev/null
selfserv_9247 with PID 8555 found at Tue May  2 15:41:14 UTC 2017
selfserv_9247 with PID 8555 started at Tue May  2 15:41:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9676: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8555 at Tue May  2 15:41:14 UTC 2017
kill -USR1 8555
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8555 killed at Tue May  2 15:41:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8611 >/dev/null 2>/dev/null
selfserv_9247 with PID 8611 found at Tue May  2 15:41:14 UTC 2017
selfserv_9247 with PID 8611 started at Tue May  2 15:41:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9677: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8611 at Tue May  2 15:41:14 UTC 2017
kill -USR1 8611
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8611 killed at Tue May  2 15:41:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8667 >/dev/null 2>/dev/null
selfserv_9247 with PID 8667 found at Tue May  2 15:41:14 UTC 2017
selfserv_9247 with PID 8667 started at Tue May  2 15:41:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9678: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8667 at Tue May  2 15:41:14 UTC 2017
kill -USR1 8667
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8667 killed at Tue May  2 15:41:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8738 >/dev/null 2>/dev/null
selfserv_9247 with PID 8738 found at Tue May  2 15:41:14 UTC 2017
selfserv_9247 with PID 8738 started at Tue May  2 15:41:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9679: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8738 at Tue May  2 15:41:15 UTC 2017
kill -USR1 8738
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8738 killed at Tue May  2 15:41:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:15 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8796 >/dev/null 2>/dev/null
selfserv_9247 with PID 8796 found at Tue May  2 15:41:15 UTC 2017
selfserv_9247 with PID 8796 started at Tue May  2 15:41:15 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9680: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 8796 at Tue May  2 15:41:16 UTC 2017
kill -USR1 8796
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8796 killed at Tue May  2 15:41:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8852 >/dev/null 2>/dev/null
selfserv_9247 with PID 8852 found at Tue May  2 15:41:16 UTC 2017
selfserv_9247 with PID 8852 started at Tue May  2 15:41:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9681: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 8852 at Tue May  2 15:41:16 UTC 2017
kill -USR1 8852
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8852 killed at Tue May  2 15:41:16 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:16 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8929 >/dev/null 2>/dev/null
selfserv_9247 with PID 8929 found at Tue May  2 15:41:16 UTC 2017
selfserv_9247 with PID 8929 started at Tue May  2 15:41:16 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9682: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 8929 at Tue May  2 15:41:16 UTC 2017
kill -USR1 8929
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8929 killed at Tue May  2 15:41:16 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8985 >/dev/null 2>/dev/null
selfserv_9247 with PID 8985 found at Tue May  2 15:41:17 UTC 2017
selfserv_9247 with PID 8985 started at Tue May  2 15:41:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9683: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 8985 at Tue May  2 15:41:17 UTC 2017
kill -USR1 8985
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 8985 killed at Tue May  2 15:41:17 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9041 >/dev/null 2>/dev/null
selfserv_9247 with PID 9041 found at Tue May  2 15:41:17 UTC 2017
selfserv_9247 with PID 9041 started at Tue May  2 15:41:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9684: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 9041 at Tue May  2 15:41:17 UTC 2017
kill -USR1 9041
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9041 killed at Tue May  2 15:41:17 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9109 >/dev/null 2>/dev/null
selfserv_9247 with PID 9109 found at Tue May  2 15:41:17 UTC 2017
selfserv_9247 with PID 9109 started at Tue May  2 15:41:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9685: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9109 at Tue May  2 15:41:17 UTC 2017
kill -USR1 9109
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9109 killed at Tue May  2 15:41:17 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:17 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9165 >/dev/null 2>/dev/null
selfserv_9247 with PID 9165 found at Tue May  2 15:41:17 UTC 2017
selfserv_9247 with PID 9165 started at Tue May  2 15:41:17 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9686: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 9165 at Tue May  2 15:41:18 UTC 2017
kill -USR1 9165
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9165 killed at Tue May  2 15:41:18 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9221 >/dev/null 2>/dev/null
selfserv_9247 with PID 9221 found at Tue May  2 15:41:18 UTC 2017
selfserv_9247 with PID 9221 started at Tue May  2 15:41:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9687: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9221 at Tue May  2 15:41:18 UTC 2017
kill -USR1 9221
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9221 killed at Tue May  2 15:41:18 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:18 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9289 >/dev/null 2>/dev/null
selfserv_9247 with PID 9289 found at Tue May  2 15:41:18 UTC 2017
selfserv_9247 with PID 9289 started at Tue May  2 15:41:18 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9688: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9289 at Tue May  2 15:41:18 UTC 2017
kill -USR1 9289
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9289 killed at Tue May  2 15:41:18 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9345 >/dev/null 2>/dev/null
selfserv_9247 with PID 9345 found at Tue May  2 15:41:19 UTC 2017
selfserv_9247 with PID 9345 started at Tue May  2 15:41:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9689: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9345 at Tue May  2 15:41:19 UTC 2017
kill -USR1 9345
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9345 killed at Tue May  2 15:41:19 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9402 >/dev/null 2>/dev/null
selfserv_9247 with PID 9402 found at Tue May  2 15:41:19 UTC 2017
selfserv_9247 with PID 9402 started at Tue May  2 15:41:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9690: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9402 at Tue May  2 15:41:19 UTC 2017
kill -USR1 9402
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9402 killed at Tue May  2 15:41:19 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9470 >/dev/null 2>/dev/null
selfserv_9247 with PID 9470 found at Tue May  2 15:41:19 UTC 2017
selfserv_9247 with PID 9470 started at Tue May  2 15:41:19 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9691: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9470 at Tue May  2 15:41:19 UTC 2017
kill -USR1 9470
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9470 killed at Tue May  2 15:41:19 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:19 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9526 >/dev/null 2>/dev/null
selfserv_9247 with PID 9526 found at Tue May  2 15:41:20 UTC 2017
selfserv_9247 with PID 9526 started at Tue May  2 15:41:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9692: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 9526 at Tue May  2 15:41:20 UTC 2017
kill -USR1 9526
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9526 killed at Tue May  2 15:41:20 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9582 >/dev/null 2>/dev/null
selfserv_9247 with PID 9582 found at Tue May  2 15:41:20 UTC 2017
selfserv_9247 with PID 9582 started at Tue May  2 15:41:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9693: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9582 at Tue May  2 15:41:20 UTC 2017
kill -USR1 9582
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9582 killed at Tue May  2 15:41:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9651 >/dev/null 2>/dev/null
selfserv_9247 with PID 9651 found at Tue May  2 15:41:20 UTC 2017
selfserv_9247 with PID 9651 started at Tue May  2 15:41:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9694: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 9651 at Tue May  2 15:41:20 UTC 2017
kill -USR1 9651
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9651 killed at Tue May  2 15:41:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9707 >/dev/null 2>/dev/null
selfserv_9247 with PID 9707 found at Tue May  2 15:41:20 UTC 2017
selfserv_9247 with PID 9707 started at Tue May  2 15:41:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9695: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 9707 at Tue May  2 15:41:21 UTC 2017
kill -USR1 9707
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9707 killed at Tue May  2 15:41:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9763 >/dev/null 2>/dev/null
selfserv_9247 with PID 9763 found at Tue May  2 15:41:21 UTC 2017
selfserv_9247 with PID 9763 started at Tue May  2 15:41:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9696: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 9763 at Tue May  2 15:41:21 UTC 2017
kill -USR1 9763
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9763 killed at Tue May  2 15:41:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9831 >/dev/null 2>/dev/null
selfserv_9247 with PID 9831 found at Tue May  2 15:41:21 UTC 2017
selfserv_9247 with PID 9831 started at Tue May  2 15:41:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9697: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9831 at Tue May  2 15:41:21 UTC 2017
kill -USR1 9831
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9831 killed at Tue May  2 15:41:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9887 >/dev/null 2>/dev/null
selfserv_9247 with PID 9887 found at Tue May  2 15:41:21 UTC 2017
selfserv_9247 with PID 9887 started at Tue May  2 15:41:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9698: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 9887 at Tue May  2 15:41:21 UTC 2017
kill -USR1 9887
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9887 killed at Tue May  2 15:41:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:21 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9943 >/dev/null 2>/dev/null
selfserv_9247 with PID 9943 found at Tue May  2 15:41:21 UTC 2017
selfserv_9247 with PID 9943 started at Tue May  2 15:41:21 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9699: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 9943 at Tue May  2 15:41:22 UTC 2017
kill -USR1 9943
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 9943 killed at Tue May  2 15:41:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10011 >/dev/null 2>/dev/null
selfserv_9247 with PID 10011 found at Tue May  2 15:41:22 UTC 2017
selfserv_9247 with PID 10011 started at Tue May  2 15:41:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9700: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 10011 at Tue May  2 15:41:22 UTC 2017
kill -USR1 10011
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10011 killed at Tue May  2 15:41:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10067 >/dev/null 2>/dev/null
selfserv_9247 with PID 10067 found at Tue May  2 15:41:22 UTC 2017
selfserv_9247 with PID 10067 started at Tue May  2 15:41:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9701: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 10067 at Tue May  2 15:41:22 UTC 2017
kill -USR1 10067
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10067 killed at Tue May  2 15:41:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10123 >/dev/null 2>/dev/null
selfserv_9247 with PID 10123 found at Tue May  2 15:41:22 UTC 2017
selfserv_9247 with PID 10123 started at Tue May  2 15:41:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9702: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 10123 at Tue May  2 15:41:22 UTC 2017
kill -USR1 10123
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10123 killed at Tue May  2 15:41:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:22 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:22 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10191 >/dev/null 2>/dev/null
selfserv_9247 with PID 10191 found at Tue May  2 15:41:22 UTC 2017
selfserv_9247 with PID 10191 started at Tue May  2 15:41:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9703: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 10191 at Tue May  2 15:41:23 UTC 2017
kill -USR1 10191
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10191 killed at Tue May  2 15:41:23 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10250 >/dev/null 2>/dev/null
selfserv_9247 with PID 10250 found at Tue May  2 15:41:23 UTC 2017
selfserv_9247 with PID 10250 started at Tue May  2 15:41:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9704: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 10250 at Tue May  2 15:41:23 UTC 2017
kill -USR1 10250
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10250 killed at Tue May  2 15:41:23 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10306 >/dev/null 2>/dev/null
selfserv_9247 with PID 10306 found at Tue May  2 15:41:23 UTC 2017
selfserv_9247 with PID 10306 started at Tue May  2 15:41:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9705: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 10306 at Tue May  2 15:41:23 UTC 2017
kill -USR1 10306
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10306 killed at Tue May  2 15:41:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:23 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10375 >/dev/null 2>/dev/null
selfserv_9247 with PID 10375 found at Tue May  2 15:41:23 UTC 2017
selfserv_9247 with PID 10375 started at Tue May  2 15:41:23 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9706: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 10375 at Tue May  2 15:41:24 UTC 2017
kill -USR1 10375
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10375 killed at Tue May  2 15:41:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10431 >/dev/null 2>/dev/null
selfserv_9247 with PID 10431 found at Tue May  2 15:41:24 UTC 2017
selfserv_9247 with PID 10431 started at Tue May  2 15:41:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9707: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 10431 at Tue May  2 15:41:24 UTC 2017
kill -USR1 10431
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10431 killed at Tue May  2 15:41:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10487 >/dev/null 2>/dev/null
selfserv_9247 with PID 10487 found at Tue May  2 15:41:24 UTC 2017
selfserv_9247 with PID 10487 started at Tue May  2 15:41:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9708: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 10487 at Tue May  2 15:41:24 UTC 2017
kill -USR1 10487
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10487 killed at Tue May  2 15:41:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:24 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10555 >/dev/null 2>/dev/null
selfserv_9247 with PID 10555 found at Tue May  2 15:41:24 UTC 2017
selfserv_9247 with PID 10555 started at Tue May  2 15:41:24 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9709: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10555 at Tue May  2 15:41:25 UTC 2017
kill -USR1 10555
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10555 killed at Tue May  2 15:41:25 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10611 >/dev/null 2>/dev/null
selfserv_9247 with PID 10611 found at Tue May  2 15:41:25 UTC 2017
selfserv_9247 with PID 10611 started at Tue May  2 15:41:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9710: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 10611 at Tue May  2 15:41:25 UTC 2017
kill -USR1 10611
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10611 killed at Tue May  2 15:41:25 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10667 >/dev/null 2>/dev/null
selfserv_9247 with PID 10667 found at Tue May  2 15:41:25 UTC 2017
selfserv_9247 with PID 10667 started at Tue May  2 15:41:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9711: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10667 at Tue May  2 15:41:25 UTC 2017
kill -USR1 10667
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10667 killed at Tue May  2 15:41:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:25 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10735 >/dev/null 2>/dev/null
selfserv_9247 with PID 10735 found at Tue May  2 15:41:25 UTC 2017
selfserv_9247 with PID 10735 started at Tue May  2 15:41:25 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9712: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10735 at Tue May  2 15:41:26 UTC 2017
kill -USR1 10735
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10735 killed at Tue May  2 15:41:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10791 >/dev/null 2>/dev/null
selfserv_9247 with PID 10791 found at Tue May  2 15:41:26 UTC 2017
selfserv_9247 with PID 10791 started at Tue May  2 15:41:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9713: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10791 at Tue May  2 15:41:26 UTC 2017
kill -USR1 10791
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10791 killed at Tue May  2 15:41:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10847 >/dev/null 2>/dev/null
selfserv_9247 with PID 10847 found at Tue May  2 15:41:26 UTC 2017
selfserv_9247 with PID 10847 started at Tue May  2 15:41:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9714: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10847 at Tue May  2 15:41:26 UTC 2017
kill -USR1 10847
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10847 killed at Tue May  2 15:41:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10915 >/dev/null 2>/dev/null
selfserv_9247 with PID 10915 found at Tue May  2 15:41:26 UTC 2017
selfserv_9247 with PID 10915 started at Tue May  2 15:41:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9715: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 10915 at Tue May  2 15:41:26 UTC 2017
kill -USR1 10915
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10915 killed at Tue May  2 15:41:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:26 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10971 >/dev/null 2>/dev/null
selfserv_9247 with PID 10971 found at Tue May  2 15:41:26 UTC 2017
selfserv_9247 with PID 10971 started at Tue May  2 15:41:26 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9716: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 10971 at Tue May  2 15:41:27 UTC 2017
kill -USR1 10971
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 10971 killed at Tue May  2 15:41:27 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11027 >/dev/null 2>/dev/null
selfserv_9247 with PID 11027 found at Tue May  2 15:41:27 UTC 2017
selfserv_9247 with PID 11027 started at Tue May  2 15:41:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9717: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11027 at Tue May  2 15:41:27 UTC 2017
kill -USR1 11027
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11027 killed at Tue May  2 15:41:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11096 >/dev/null 2>/dev/null
selfserv_9247 with PID 11096 found at Tue May  2 15:41:27 UTC 2017
selfserv_9247 with PID 11096 started at Tue May  2 15:41:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9718: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11096 at Tue May  2 15:41:27 UTC 2017
kill -USR1 11096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11096 killed at Tue May  2 15:41:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:27 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11152 >/dev/null 2>/dev/null
selfserv_9247 with PID 11152 found at Tue May  2 15:41:27 UTC 2017
selfserv_9247 with PID 11152 started at Tue May  2 15:41:27 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9719: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11152 at Tue May  2 15:41:28 UTC 2017
kill -USR1 11152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11152 killed at Tue May  2 15:41:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11208 >/dev/null 2>/dev/null
selfserv_9247 with PID 11208 found at Tue May  2 15:41:28 UTC 2017
selfserv_9247 with PID 11208 started at Tue May  2 15:41:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9720: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11208 at Tue May  2 15:41:28 UTC 2017
kill -USR1 11208
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11208 killed at Tue May  2 15:41:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11276 >/dev/null 2>/dev/null
selfserv_9247 with PID 11276 found at Tue May  2 15:41:28 UTC 2017
selfserv_9247 with PID 11276 started at Tue May  2 15:41:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9721: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11276 at Tue May  2 15:41:28 UTC 2017
kill -USR1 11276
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11276 killed at Tue May  2 15:41:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:28 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11332 >/dev/null 2>/dev/null
selfserv_9247 with PID 11332 found at Tue May  2 15:41:28 UTC 2017
selfserv_9247 with PID 11332 started at Tue May  2 15:41:28 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9722: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11332 at Tue May  2 15:41:29 UTC 2017
kill -USR1 11332
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11332 killed at Tue May  2 15:41:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11388 >/dev/null 2>/dev/null
selfserv_9247 with PID 11388 found at Tue May  2 15:41:29 UTC 2017
selfserv_9247 with PID 11388 started at Tue May  2 15:41:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9723: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11388 at Tue May  2 15:41:29 UTC 2017
kill -USR1 11388
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11388 killed at Tue May  2 15:41:29 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:29 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11456 >/dev/null 2>/dev/null
selfserv_9247 with PID 11456 found at Tue May  2 15:41:29 UTC 2017
selfserv_9247 with PID 11456 started at Tue May  2 15:41:29 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9724: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11456 at Tue May  2 15:41:29 UTC 2017
kill -USR1 11456
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11456 killed at Tue May  2 15:41:29 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11512 >/dev/null 2>/dev/null
selfserv_9247 with PID 11512 found at Tue May  2 15:41:30 UTC 2017
selfserv_9247 with PID 11512 started at Tue May  2 15:41:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9725: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11512 at Tue May  2 15:41:30 UTC 2017
kill -USR1 11512
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11512 killed at Tue May  2 15:41:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11568 >/dev/null 2>/dev/null
selfserv_9247 with PID 11568 found at Tue May  2 15:41:30 UTC 2017
selfserv_9247 with PID 11568 started at Tue May  2 15:41:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9726: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11568 at Tue May  2 15:41:30 UTC 2017
kill -USR1 11568
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11568 killed at Tue May  2 15:41:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:30 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11636 >/dev/null 2>/dev/null
selfserv_9247 with PID 11636 found at Tue May  2 15:41:30 UTC 2017
selfserv_9247 with PID 11636 started at Tue May  2 15:41:30 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9727: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11636 at Tue May  2 15:41:31 UTC 2017
kill -USR1 11636
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11636 killed at Tue May  2 15:41:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11692 >/dev/null 2>/dev/null
selfserv_9247 with PID 11692 found at Tue May  2 15:41:31 UTC 2017
selfserv_9247 with PID 11692 started at Tue May  2 15:41:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9728: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11692 at Tue May  2 15:41:31 UTC 2017
kill -USR1 11692
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11692 killed at Tue May  2 15:41:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11748 >/dev/null 2>/dev/null
selfserv_9247 with PID 11748 found at Tue May  2 15:41:31 UTC 2017
selfserv_9247 with PID 11748 started at Tue May  2 15:41:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9729: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11748 at Tue May  2 15:41:31 UTC 2017
kill -USR1 11748
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11748 killed at Tue May  2 15:41:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:31 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11817 >/dev/null 2>/dev/null
selfserv_9247 with PID 11817 found at Tue May  2 15:41:31 UTC 2017
selfserv_9247 with PID 11817 started at Tue May  2 15:41:31 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9730: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11817 at Tue May  2 15:41:31 UTC 2017
kill -USR1 11817
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11817 killed at Tue May  2 15:41:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11873 >/dev/null 2>/dev/null
selfserv_9247 with PID 11873 found at Tue May  2 15:41:32 UTC 2017
selfserv_9247 with PID 11873 started at Tue May  2 15:41:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9731: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11873 at Tue May  2 15:41:32 UTC 2017
kill -USR1 11873
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11873 killed at Tue May  2 15:41:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11929 >/dev/null 2>/dev/null
selfserv_9247 with PID 11929 found at Tue May  2 15:41:32 UTC 2017
selfserv_9247 with PID 11929 started at Tue May  2 15:41:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9732: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 11929 at Tue May  2 15:41:32 UTC 2017
kill -USR1 11929
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11929 killed at Tue May  2 15:41:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11997 >/dev/null 2>/dev/null
selfserv_9247 with PID 11997 found at Tue May  2 15:41:32 UTC 2017
selfserv_9247 with PID 11997 started at Tue May  2 15:41:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9733: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 11997 at Tue May  2 15:41:32 UTC 2017
kill -USR1 11997
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 11997 killed at Tue May  2 15:41:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:32 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12053 >/dev/null 2>/dev/null
selfserv_9247 with PID 12053 found at Tue May  2 15:41:32 UTC 2017
selfserv_9247 with PID 12053 started at Tue May  2 15:41:32 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9734: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 12053 at Tue May  2 15:41:33 UTC 2017
kill -USR1 12053
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12053 killed at Tue May  2 15:41:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12109 >/dev/null 2>/dev/null
selfserv_9247 with PID 12109 found at Tue May  2 15:41:33 UTC 2017
selfserv_9247 with PID 12109 started at Tue May  2 15:41:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9735: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12109 at Tue May  2 15:41:33 UTC 2017
kill -USR1 12109
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12109 killed at Tue May  2 15:41:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12177 >/dev/null 2>/dev/null
selfserv_9247 with PID 12177 found at Tue May  2 15:41:33 UTC 2017
selfserv_9247 with PID 12177 started at Tue May  2 15:41:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9736: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12177 at Tue May  2 15:41:33 UTC 2017
kill -USR1 12177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12177 killed at Tue May  2 15:41:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12233 >/dev/null 2>/dev/null
selfserv_9247 with PID 12233 found at Tue May  2 15:41:33 UTC 2017
selfserv_9247 with PID 12233 started at Tue May  2 15:41:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9737: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12233 at Tue May  2 15:41:33 UTC 2017
kill -USR1 12233
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12233 killed at Tue May  2 15:41:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9247 starting at Tue May  2 15:41:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12289 >/dev/null 2>/dev/null
selfserv_9247 with PID 12289 found at Tue May  2 15:41:33 UTC 2017
selfserv_9247 with PID 12289 started at Tue May  2 15:41:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9738: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12289 at Tue May  2 15:41:34 UTC 2017
kill -USR1 12289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12289 killed at Tue May  2 15:41:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12357 >/dev/null 2>/dev/null
selfserv_9247 with PID 12357 found at Tue May  2 15:41:34 UTC 2017
selfserv_9247 with PID 12357 started at Tue May  2 15:41:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9739: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12357 at Tue May  2 15:41:34 UTC 2017
kill -USR1 12357
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12357 killed at Tue May  2 15:41:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12413 >/dev/null 2>/dev/null
selfserv_9247 with PID 12413 found at Tue May  2 15:41:34 UTC 2017
selfserv_9247 with PID 12413 started at Tue May  2 15:41:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9740: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9247 with PID 12413 at Tue May  2 15:41:34 UTC 2017
kill -USR1 12413
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12413 killed at Tue May  2 15:41:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:34 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12469 >/dev/null 2>/dev/null
selfserv_9247 with PID 12469 found at Tue May  2 15:41:34 UTC 2017
selfserv_9247 with PID 12469 started at Tue May  2 15:41:34 UTC 2017
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9741: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 12469 at Tue May  2 15:41:34 UTC 2017
kill -USR1 12469
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12469 killed at Tue May  2 15:41:34 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/authin.tl.tmp
0
selfserv_9247 starting at Tue May  2 15:41:35 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:35 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:35 UTC 2017
selfserv_9247 with PID 12532 started at Tue May  2 15:41:35 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:35 UTC 2017
ssl.sh: #9742: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:35 UTC 2017
ssl.sh: #9743: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:35 UTC 2017
ssl.sh: #9744: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:35 UTC 2017
ssl.sh: #9745: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:35 UTC 2017
ssl.sh: #9746: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:36 UTC 2017
ssl.sh: #9747: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:36 UTC 2017
ssl.sh: #9748: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:36 UTC 2017
ssl.sh: #9749: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:36 UTC 2017
ssl.sh: #9750: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:36 UTC 2017
ssl.sh: #9751: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:36 UTC 2017
ssl.sh: #9752: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:36 UTC 2017
ssl.sh: #9753: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:37 UTC 2017
ssl.sh: #9754: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9755: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:37 UTC 2017
ssl.sh: #9756: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:37 UTC 2017
ssl.sh: #9757: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:37 UTC 2017
ssl.sh: #9758: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:37 UTC 2017
ssl.sh: #9759: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:37 UTC 2017
ssl.sh: #9760: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:37 UTC 2017
ssl.sh: #9761: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:38 UTC 2017
ssl.sh: #9762: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:38 UTC 2017
ssl.sh: #9763: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:38 UTC 2017
ssl.sh: #9764: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:38 UTC 2017
ssl.sh: #9765: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:38 UTC 2017
ssl.sh: #9766: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:38 UTC 2017
ssl.sh: #9767: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:38 UTC 2017
ssl.sh: #9768: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9769: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:39 UTC 2017
ssl.sh: #9770: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:39 UTC 2017
ssl.sh: #9771: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:39 UTC 2017
ssl.sh: #9772: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:39 UTC 2017
ssl.sh: #9773: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:39 UTC 2017
ssl.sh: #9774: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:39 UTC 2017
ssl.sh: #9775: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:39 UTC 2017
ssl.sh: #9776: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:40 UTC 2017
ssl.sh: #9777: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:40 UTC 2017
ssl.sh: #9778: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:40 UTC 2017
ssl.sh: #9779: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:40 UTC 2017
ssl.sh: #9780: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:40 UTC 2017
ssl.sh: #9781: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12532 >/dev/null 2>/dev/null
selfserv_9247 with PID 12532 found at Tue May  2 15:41:40 UTC 2017
ssl.sh: #9782: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 12532 at Tue May  2 15:41:40 UTC 2017
kill -USR1 12532
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 12532 killed at Tue May  2 15:41:40 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:40 UTC 2017
selfserv_9247 with PID 13965 started at Tue May  2 15:41:40 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:41 UTC 2017
ssl.sh: #9783: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:41 UTC 2017
ssl.sh: #9784: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:41 UTC 2017
ssl.sh: #9785: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:41 UTC 2017
ssl.sh: #9786: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:41 UTC 2017
ssl.sh: #9787: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:41 UTC 2017
ssl.sh: #9788: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:41 UTC 2017
ssl.sh: #9789: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:41 UTC 2017
ssl.sh: #9790: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:42 UTC 2017
ssl.sh: #9791: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:42 UTC 2017
ssl.sh: #9792: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:42 UTC 2017
ssl.sh: #9793: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:42 UTC 2017
ssl.sh: #9794: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:42 UTC 2017
ssl.sh: #9795: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9796: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:42 UTC 2017
ssl.sh: #9797: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:42 UTC 2017
ssl.sh: #9798: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9799: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9800: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9801: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9802: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9803: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9804: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9805: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9806: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:43 UTC 2017
ssl.sh: #9807: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9808: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9809: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9810: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9811: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9812: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9813: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9814: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9815: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9816: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:44 UTC 2017
ssl.sh: #9817: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:45 UTC 2017
ssl.sh: #9818: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:45 UTC 2017
ssl.sh: #9819: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:45 UTC 2017
ssl.sh: #9820: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:45 UTC 2017
ssl.sh: #9821: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:45 UTC 2017
ssl.sh: #9822: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13965 >/dev/null 2>/dev/null
selfserv_9247 with PID 13965 found at Tue May  2 15:41:45 UTC 2017
ssl.sh: #9823: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 13965 at Tue May  2 15:41:45 UTC 2017
kill -USR1 13965
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 13965 killed at Tue May  2 15:41:45 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:45 UTC 2017
selfserv_9247 with PID 15387 started at Tue May  2 15:41:45 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:46 UTC 2017
ssl.sh: #9824: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:46 UTC 2017
ssl.sh: #9825: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:46 UTC 2017
ssl.sh: #9826: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:46 UTC 2017
ssl.sh: #9827: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:46 UTC 2017
ssl.sh: #9828: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:46 UTC 2017
ssl.sh: #9829: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:46 UTC 2017
ssl.sh: #9830: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:47 UTC 2017
ssl.sh: #9831: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:47 UTC 2017
ssl.sh: #9832: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:47 UTC 2017
ssl.sh: #9833: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:47 UTC 2017
ssl.sh: #9834: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:47 UTC 2017
ssl.sh: #9835: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:47 UTC 2017
ssl.sh: #9836: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9837: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:48 UTC 2017
ssl.sh: #9838: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:48 UTC 2017
ssl.sh: #9839: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:48 UTC 2017
ssl.sh: #9840: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:48 UTC 2017
ssl.sh: #9841: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:48 UTC 2017
ssl.sh: #9842: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:48 UTC 2017
ssl.sh: #9843: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:48 UTC 2017
ssl.sh: #9844: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:49 UTC 2017
ssl.sh: #9845: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:49 UTC 2017
ssl.sh: #9846: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:49 UTC 2017
ssl.sh: #9847: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:49 UTC 2017
ssl.sh: #9848: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:49 UTC 2017
ssl.sh: #9849: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:49 UTC 2017
ssl.sh: #9850: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9851: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:50 UTC 2017
ssl.sh: #9852: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:50 UTC 2017
ssl.sh: #9853: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:50 UTC 2017
ssl.sh: #9854: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:50 UTC 2017
ssl.sh: #9855: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:50 UTC 2017
ssl.sh: #9856: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:50 UTC 2017
ssl.sh: #9857: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:50 UTC 2017
ssl.sh: #9858: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:51 UTC 2017
ssl.sh: #9859: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:51 UTC 2017
ssl.sh: #9860: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:51 UTC 2017
ssl.sh: #9861: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:51 UTC 2017
ssl.sh: #9862: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:51 UTC 2017
ssl.sh: #9863: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9247 with PID 15387 found at Tue May  2 15:41:51 UTC 2017
ssl.sh: #9864: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 15387 at Tue May  2 15:41:51 UTC 2017
kill -USR1 15387
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 15387 killed at Tue May  2 15:41:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:51 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:51 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:51 UTC 2017
selfserv_9247 with PID 16812 started at Tue May  2 15:41:51 UTC 2017
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:52 UTC 2017
ssl.sh: #9865: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:52 UTC 2017
ssl.sh: #9866: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:52 UTC 2017
ssl.sh: #9867: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:52 UTC 2017
ssl.sh: #9868: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:52 UTC 2017
ssl.sh: #9869: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:52 UTC 2017
ssl.sh: #9870: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:52 UTC 2017
ssl.sh: #9871: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:53 UTC 2017
ssl.sh: #9872: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:53 UTC 2017
ssl.sh: #9873: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:53 UTC 2017
ssl.sh: #9874: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:53 UTC 2017
ssl.sh: #9875: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:53 UTC 2017
ssl.sh: #9876: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:53 UTC 2017
ssl.sh: #9877: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9878: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:54 UTC 2017
ssl.sh: #9879: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:54 UTC 2017
ssl.sh: #9880: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:54 UTC 2017
ssl.sh: #9881: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:54 UTC 2017
ssl.sh: #9882: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:55 UTC 2017
ssl.sh: #9883: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:55 UTC 2017
ssl.sh: #9884: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:55 UTC 2017
ssl.sh: #9885: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:55 UTC 2017
ssl.sh: #9886: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:55 UTC 2017
ssl.sh: #9887: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:55 UTC 2017
ssl.sh: #9888: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:55 UTC 2017
ssl.sh: #9889: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:56 UTC 2017
ssl.sh: #9890: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:56 UTC 2017
ssl.sh: #9891: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9892: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:56 UTC 2017
ssl.sh: #9893: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:56 UTC 2017
ssl.sh: #9894: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:56 UTC 2017
ssl.sh: #9895: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:56 UTC 2017
ssl.sh: #9896: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:57 UTC 2017
ssl.sh: #9897: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:57 UTC 2017
ssl.sh: #9898: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:57 UTC 2017
ssl.sh: #9899: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:57 UTC 2017
ssl.sh: #9900: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:57 UTC 2017
ssl.sh: #9901: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:57 UTC 2017
ssl.sh: #9902: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:57 UTC 2017
ssl.sh: #9903: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:58 UTC 2017
ssl.sh: #9904: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16812 >/dev/null 2>/dev/null
selfserv_9247 with PID 16812 found at Tue May  2 15:41:58 UTC 2017
ssl.sh: #9905: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9247 with PID 16812 at Tue May  2 15:41:58 UTC 2017
kill -USR1 16812
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 16812 killed at Tue May  2 15:41:58 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:41:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18239 >/dev/null 2>/dev/null
selfserv_9247 with PID 18239 found at Tue May  2 15:41:58 UTC 2017
selfserv_9247 with PID 18239 started at Tue May  2 15:41:58 UTC 2017
trying to kill selfserv_9247 with PID 18239 at Tue May  2 15:41:58 UTC 2017
kill -USR1 18239
./ssl.sh: line 183: 18239 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18239 killed at Tue May  2 15:41:58 UTC 2017
selfserv_9247 starting at Tue May  2 15:41:58 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:41:58 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:58 UTC 2017
selfserv_9247 with PID 18273 started at Tue May  2 15:41:58 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:58 UTC 2017
ssl.sh: #9906: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:58 UTC 2017
ssl.sh: #9907: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:58 UTC 2017
ssl.sh: #9908: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:58 UTC 2017
ssl.sh: #9909: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:59 UTC 2017
ssl.sh: #9910: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:59 UTC 2017
ssl.sh: #9911: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:59 UTC 2017
ssl.sh: #9912: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:59 UTC 2017
ssl.sh: #9913: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:59 UTC 2017
ssl.sh: #9914: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:59 UTC 2017
ssl.sh: #9915: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:41:59 UTC 2017
ssl.sh: #9916: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:00 UTC 2017
ssl.sh: #9917: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:00 UTC 2017
ssl.sh: #9918: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9919: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:00 UTC 2017
ssl.sh: #9920: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:00 UTC 2017
ssl.sh: #9921: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:00 UTC 2017
ssl.sh: #9922: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:01 UTC 2017
ssl.sh: #9923: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:01 UTC 2017
ssl.sh: #9924: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:01 UTC 2017
ssl.sh: #9925: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:01 UTC 2017
ssl.sh: #9926: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:01 UTC 2017
ssl.sh: #9927: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:01 UTC 2017
ssl.sh: #9928: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:01 UTC 2017
ssl.sh: #9929: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:02 UTC 2017
ssl.sh: #9930: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:02 UTC 2017
ssl.sh: #9931: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:02 UTC 2017
ssl.sh: #9932: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9933: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:02 UTC 2017
ssl.sh: #9934: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:02 UTC 2017
ssl.sh: #9935: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:02 UTC 2017
ssl.sh: #9936: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:03 UTC 2017
ssl.sh: #9937: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:03 UTC 2017
ssl.sh: #9938: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:03 UTC 2017
ssl.sh: #9939: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:03 UTC 2017
ssl.sh: #9940: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:03 UTC 2017
ssl.sh: #9941: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:03 UTC 2017
ssl.sh: #9942: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:03 UTC 2017
ssl.sh: #9943: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:04 UTC 2017
ssl.sh: #9944: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:04 UTC 2017
ssl.sh: #9945: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18273 >/dev/null 2>/dev/null
selfserv_9247 with PID 18273 found at Tue May  2 15:42:04 UTC 2017
ssl.sh: #9946: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 18273 at Tue May  2 15:42:04 UTC 2017
kill -USR1 18273
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 18273 killed at Tue May  2 15:42:04 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:42:04 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:42:04 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:04 UTC 2017
selfserv_9247 with PID 19697 started at Tue May  2 15:42:04 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:04 UTC 2017
ssl.sh: #9947: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:04 UTC 2017
ssl.sh: #9948: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:05 UTC 2017
ssl.sh: #9949: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:05 UTC 2017
ssl.sh: #9950: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:05 UTC 2017
ssl.sh: #9951: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:05 UTC 2017
ssl.sh: #9952: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:05 UTC 2017
ssl.sh: #9953: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:05 UTC 2017
ssl.sh: #9954: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:06 UTC 2017
ssl.sh: #9955: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:06 UTC 2017
ssl.sh: #9956: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:06 UTC 2017
ssl.sh: #9957: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:06 UTC 2017
ssl.sh: #9958: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:06 UTC 2017
ssl.sh: #9959: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9960: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:08 UTC 2017
ssl.sh: #9961: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:09 UTC 2017
ssl.sh: #9962: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:11 UTC 2017
ssl.sh: #9963: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:11 UTC 2017
ssl.sh: #9964: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:11 UTC 2017
ssl.sh: #9965: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:12 UTC 2017
ssl.sh: #9966: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:15 UTC 2017
ssl.sh: #9967: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:18 UTC 2017
ssl.sh: #9968: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:21 UTC 2017
ssl.sh: #9969: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:22 UTC 2017
ssl.sh: #9970: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:23 UTC 2017
ssl.sh: #9971: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:25 UTC 2017
ssl.sh: #9972: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:27 UTC 2017
ssl.sh: #9973: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9974: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:32 UTC 2017
ssl.sh: #9975: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:32 UTC 2017
ssl.sh: #9976: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:33 UTC 2017
ssl.sh: #9977: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:33 UTC 2017
ssl.sh: #9978: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:33 UTC 2017
ssl.sh: #9979: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:35 UTC 2017
ssl.sh: #9980: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:36 UTC 2017
ssl.sh: #9981: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:36 UTC 2017
ssl.sh: #9982: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:36 UTC 2017
ssl.sh: #9983: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:37 UTC 2017
ssl.sh: #9984: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:38 UTC 2017
ssl.sh: #9985: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:39 UTC 2017
ssl.sh: #9986: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19697 >/dev/null 2>/dev/null
selfserv_9247 with PID 19697 found at Tue May  2 15:42:40 UTC 2017
ssl.sh: #9987: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 19697 at Tue May  2 15:42:40 UTC 2017
kill -USR1 19697
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 19697 killed at Tue May  2 15:42:40 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:42:40 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:42:40 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:40 UTC 2017
selfserv_9247 with PID 21120 started at Tue May  2 15:42:40 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:40 UTC 2017
ssl.sh: #9988: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:40 UTC 2017
ssl.sh: #9989: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:42 UTC 2017
ssl.sh: #9990: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:42 UTC 2017
ssl.sh: #9991: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:43 UTC 2017
ssl.sh: #9992: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:43 UTC 2017
ssl.sh: #9993: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:43 UTC 2017
ssl.sh: #9994: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:43 UTC 2017
ssl.sh: #9995: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:43 UTC 2017
ssl.sh: #9996: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:43 UTC 2017
ssl.sh: #9997: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:44 UTC 2017
ssl.sh: #9998: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:44 UTC 2017
ssl.sh: #9999: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:44 UTC 2017
ssl.sh: #10000: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10001: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:45 UTC 2017
ssl.sh: #10002: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:45 UTC 2017
ssl.sh: #10003: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:48 UTC 2017
ssl.sh: #10004: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:49 UTC 2017
ssl.sh: #10005: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:49 UTC 2017
ssl.sh: #10006: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:49 UTC 2017
ssl.sh: #10007: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:54 UTC 2017
ssl.sh: #10008: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:54 UTC 2017
ssl.sh: #10009: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:58 UTC 2017
ssl.sh: #10010: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:59 UTC 2017
ssl.sh: #10011: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:59 UTC 2017
ssl.sh: #10012: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:42:59 UTC 2017
ssl.sh: #10013: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:01 UTC 2017
ssl.sh: #10014: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10015: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:03 UTC 2017
ssl.sh: #10016: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:05 UTC 2017
ssl.sh: #10017: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:07 UTC 2017
ssl.sh: #10018: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #10019: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #10020: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #10021: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #10022: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:10 UTC 2017
ssl.sh: #10023: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:11 UTC 2017
ssl.sh: #10024: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:11 UTC 2017
ssl.sh: #10025: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:11 UTC 2017
ssl.sh: #10026: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #10027: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21120 >/dev/null 2>/dev/null
selfserv_9247 with PID 21120 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #10028: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 21120 at Tue May  2 15:43:12 UTC 2017
kill -USR1 21120
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 21120 killed at Tue May  2 15:43:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:43:12 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:43:12 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:12 UTC 2017
selfserv_9247 with PID 22544 started at Tue May  2 15:43:12 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #10029: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #10030: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #10031: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:13 UTC 2017
ssl.sh: #10032: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:13 UTC 2017
ssl.sh: #10033: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:13 UTC 2017
ssl.sh: #10034: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:13 UTC 2017
ssl.sh: #10035: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #10036: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #10037: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #10038: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #10039: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:15 UTC 2017
ssl.sh: #10040: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:15 UTC 2017
ssl.sh: #10041: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10042: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #10043: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #10044: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #10045: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #10046: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #10047: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #10048: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #10049: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #10050: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #10051: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #10052: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #10053: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #10054: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #10055: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10056: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #10057: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #10058: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #10059: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #10060: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #10061: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #10062: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #10063: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #10064: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #10065: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #10066: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #10067: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #10068: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22544 >/dev/null 2>/dev/null
selfserv_9247 with PID 22544 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #10069: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 22544 at Tue May  2 15:43:20 UTC 2017
kill -USR1 22544
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 22544 killed at Tue May  2 15:43:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:43:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:43:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:20 UTC 2017
selfserv_9247 with PID 23966 started at Tue May  2 15:43:20 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #10070: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #10071: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #10072: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #10073: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #10074: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #10075: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #10076: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #10077: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #10078: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #10079: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #10080: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #10081: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #10082: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10083: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #10084: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #10085: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #10086: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #10087: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #10088: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #10089: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:26 UTC 2017
ssl.sh: #10090: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:26 UTC 2017
ssl.sh: #10091: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:26 UTC 2017
ssl.sh: #10092: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #10093: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #10094: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #10095: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:28 UTC 2017
ssl.sh: #10096: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10097: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:29 UTC 2017
ssl.sh: #10098: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:30 UTC 2017
ssl.sh: #10099: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:30 UTC 2017
ssl.sh: #10100: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:31 UTC 2017
ssl.sh: #10101: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:31 UTC 2017
ssl.sh: #10102: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:31 UTC 2017
ssl.sh: #10103: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #10104: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #10105: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #10106: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #10107: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #10108: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #10109: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23966 >/dev/null 2>/dev/null
selfserv_9247 with PID 23966 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #10110: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 23966 at Tue May  2 15:43:33 UTC 2017
kill -USR1 23966
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 23966 killed at Tue May  2 15:43:33 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:43:33 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:43:33 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:33 UTC 2017
selfserv_9247 with PID 25388 started at Tue May  2 15:43:33 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #10111: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #10112: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #10113: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #10114: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #10115: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #10116: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #10117: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #10118: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #10119: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #10120: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #10121: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #10122: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #10123: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10124: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #10125: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #10126: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #10127: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #10128: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #10129: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #10130: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #10131: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #10132: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #10133: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #10134: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #10135: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #10136: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #10137: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10138: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #10139: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #10140: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #10141: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #10142: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #10143: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #10144: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #10145: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #10146: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #10147: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #10148: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #10149: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:39 UTC 2017
ssl.sh: #10150: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25388 >/dev/null 2>/dev/null
selfserv_9247 with PID 25388 found at Tue May  2 15:43:39 UTC 2017
ssl.sh: #10151: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 25388 at Tue May  2 15:43:39 UTC 2017
kill -USR1 25388
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 25388 killed at Tue May  2 15:43:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:43:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:43:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26810 >/dev/null 2>/dev/null
selfserv_9247 with PID 26810 found at Tue May  2 15:43:39 UTC 2017
selfserv_9247 with PID 26810 started at Tue May  2 15:43:39 UTC 2017
trying to kill selfserv_9247 with PID 26810 at Tue May  2 15:43:39 UTC 2017
kill -USR1 26810
./ssl.sh: line 183: 26810 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26810 killed at Tue May  2 15:43:39 UTC 2017
selfserv_9247 starting at Tue May  2 15:43:39 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:43:39 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:39 UTC 2017
selfserv_9247 with PID 26844 started at Tue May  2 15:43:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:39 UTC 2017
ssl.sh: #10152: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:39 UTC 2017
ssl.sh: #10153: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #10154: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #10155: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #10156: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #10157: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #10158: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #10159: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #10160: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #10161: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #10162: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #10163: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #10164: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10165: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #10166: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #10167: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #10168: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #10169: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #10170: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #10171: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #10172: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #10173: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #10174: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #10175: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #10176: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #10177: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #10178: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10179: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #10180: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #10181: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #10182: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #10183: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #10184: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #10185: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #10186: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #10187: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #10188: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #10189: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #10190: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #10191: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26844 >/dev/null 2>/dev/null
selfserv_9247 with PID 26844 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #10192: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 26844 at Tue May  2 15:43:45 UTC 2017
kill -USR1 26844
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 26844 killed at Tue May  2 15:43:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:43:45 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:43:45 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:45 UTC 2017
selfserv_9247 with PID 28266 started at Tue May  2 15:43:45 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #10193: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #10194: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #10195: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #10196: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #10197: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #10198: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #10199: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #10200: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #10201: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #10202: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #10203: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #10204: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #10205: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10206: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #10207: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #10208: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #10209: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #10210: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #10211: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #10212: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #10213: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #10214: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #10215: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #10216: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #10217: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #10218: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #10219: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10220: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #10221: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #10222: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #10223: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #10224: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #10225: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #10226: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #10227: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #10228: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #10229: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #10230: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #10231: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #10232: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28266 >/dev/null 2>/dev/null
selfserv_9247 with PID 28266 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #10233: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 28266 at Tue May  2 15:43:53 UTC 2017
kill -USR1 28266
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 28266 killed at Tue May  2 15:43:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:43:53 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:43:53 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:53 UTC 2017
selfserv_9247 with PID 29688 started at Tue May  2 15:43:53 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #10234: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #10235: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #10236: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #10237: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #10238: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:54 UTC 2017
ssl.sh: #10239: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:54 UTC 2017
ssl.sh: #10240: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:54 UTC 2017
ssl.sh: #10241: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:54 UTC 2017
ssl.sh: #10242: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:54 UTC 2017
ssl.sh: #10243: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:54 UTC 2017
ssl.sh: #10244: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #10245: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #10246: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10247: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #10248: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #10249: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #10250: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #10251: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #10252: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #10253: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #10254: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #10255: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #10256: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #10257: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:57 UTC 2017
ssl.sh: #10258: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:57 UTC 2017
ssl.sh: #10259: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:57 UTC 2017
ssl.sh: #10260: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10261: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:57 UTC 2017
ssl.sh: #10262: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:57 UTC 2017
ssl.sh: #10263: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #10264: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #10265: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #10266: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #10267: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #10268: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #10269: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #10270: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #10271: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #10272: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #10273: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29688 >/dev/null 2>/dev/null
selfserv_9247 with PID 29688 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #10274: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 29688 at Tue May  2 15:43:59 UTC 2017
kill -USR1 29688
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 29688 killed at Tue May  2 15:43:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9247 starting at Tue May  2 15:43:59 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:43:59 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:43:59 UTC 2017
selfserv_9247 with PID 31110 started at Tue May  2 15:43:59 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #10275: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #10276: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #10277: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:00 UTC 2017
ssl.sh: #10278: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:00 UTC 2017
ssl.sh: #10279: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:00 UTC 2017
ssl.sh: #10280: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:00 UTC 2017
ssl.sh: #10281: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:00 UTC 2017
ssl.sh: #10282: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:01 UTC 2017
ssl.sh: #10283: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:01 UTC 2017
ssl.sh: #10284: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:01 UTC 2017
ssl.sh: #10285: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:01 UTC 2017
ssl.sh: #10286: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:01 UTC 2017
ssl.sh: #10287: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10288: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:02 UTC 2017
ssl.sh: #10289: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:02 UTC 2017
ssl.sh: #10290: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:02 UTC 2017
ssl.sh: #10291: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:02 UTC 2017
ssl.sh: #10292: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #10293: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #10294: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #10295: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #10296: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #10297: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #10298: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #10299: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #10300: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #10301: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10302: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #10303: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #10304: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #10305: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #10306: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #10307: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #10308: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #10309: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #10310: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:06 UTC 2017
ssl.sh: #10311: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:06 UTC 2017
ssl.sh: #10312: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:06 UTC 2017
ssl.sh: #10313: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:06 UTC 2017
ssl.sh: #10314: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31110 >/dev/null 2>/dev/null
selfserv_9247 with PID 31110 found at Tue May  2 15:44:06 UTC 2017
ssl.sh: #10315: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 31110 at Tue May  2 15:44:06 UTC 2017
kill -USR1 31110
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 31110 killed at Tue May  2 15:44:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:44:06 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:44:06 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:06 UTC 2017
selfserv_9247 with PID 32534 started at Tue May  2 15:44:06 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #10316: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #10317: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #10318: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #10319: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #10320: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:08 UTC 2017
ssl.sh: #10321: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:08 UTC 2017
ssl.sh: #10322: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:08 UTC 2017
ssl.sh: #10323: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:08 UTC 2017
ssl.sh: #10324: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:08 UTC 2017
ssl.sh: #10325: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #10326: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #10327: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #10328: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10329: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #10330: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #10331: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #10332: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #10333: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #10334: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #10335: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #10336: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #10337: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #10338: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:11 UTC 2017
ssl.sh: #10339: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:11 UTC 2017
ssl.sh: #10340: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:11 UTC 2017
ssl.sh: #10341: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:11 UTC 2017
ssl.sh: #10342: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10343: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:11 UTC 2017
ssl.sh: #10344: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #10345: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #10346: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #10347: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #10348: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #10349: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #10350: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:13 UTC 2017
ssl.sh: #10351: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:13 UTC 2017
ssl.sh: #10352: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:13 UTC 2017
ssl.sh: #10353: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:13 UTC 2017
ssl.sh: #10354: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:13 UTC 2017
ssl.sh: #10355: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9247 with PID 32534 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #10356: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 32534 at Tue May  2 15:44:14 UTC 2017
kill -USR1 32534
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 32534 killed at Tue May  2 15:44:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:44:14 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:44:14 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:14 UTC 2017
selfserv_9247 with PID 1581 started at Tue May  2 15:44:14 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #10357: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #10358: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #10359: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #10360: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #10361: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #10362: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #10363: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #10364: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #10365: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #10366: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #10367: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #10368: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #10369: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10370: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #10371: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #10372: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #10373: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #10374: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #10375: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #10376: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #10377: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #10378: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #10379: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #10380: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #10381: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #10382: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #10383: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10384: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #10385: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #10386: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #10387: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #10388: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #10389: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #10390: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #10391: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #10392: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #10393: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #10394: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #10395: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #10396: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9247 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9247 with PID 1581 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #10397: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 1581 at Tue May  2 15:44:20 UTC 2017
kill -USR1 1581
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 1581 killed at Tue May  2 15:44:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9247 starting at Tue May  2 15:44:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:44:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3004 >/dev/null 2>/dev/null
selfserv_9247 with PID 3004 found at Tue May  2 15:44:20 UTC 2017
selfserv_9247 with PID 3004 started at Tue May  2 15:44:20 UTC 2017
trying to kill selfserv_9247 with PID 3004 at Tue May  2 15:44:20 UTC 2017
kill -USR1 3004
./ssl.sh: line 183:  3004 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9247 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3004 killed at Tue May  2 15:44:20 UTC 2017
ssl.sh: SSL POLICY  - server /client   - with ECC ===============================
Saving pkcs11.txt
selfserv_9247 starting at Tue May  2 15:44:20 UTC 2017
selfserv_9247 -D -p 9247 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.7616\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9247 at Tue May  2 15:44:20 UTC 2017
tstclnt -p 9247 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3039 >/dev/null 2>/dev/null
selfserv_9247 with PID 3039 found at Tue May  2 15:44:20 UTC 2017
selfserv_9247 with PID 3039 started at Tue May  2 15:44:20 UTC 2017
ssl.sh: running Allowed by Narrow Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10398: Allowed by Narrow Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allowed by Strict Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1/ssl,ssl-key-exchange:sha256/cert-signature:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10399: Allowed by Strict Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allow All Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10400: Allow All Explicitly produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Disallow All Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10401: Disallow All Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=sha256
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
ssl.sh: #10402: Disallow SHA256 Signatures Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #10403: Disallow SHA256 Signatures Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
ssl.sh: #10404: Disallow SHA256 Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=des-ede3-cbc
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10405: Disallow Cipher Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10406: Disallow Cipher Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-verion-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10407: Disallow Cipher Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=hmac-sha1
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10408: Disallow HMAC Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md5:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10409: Disallow HMAC Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10410: Disallow HMAC Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=rsa/ssl-key-exchange
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10411: Disallow Key Exchange Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:dh-dss:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10412: Disallow Key Exchange Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchnage Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10413: Disallow Key Exchnage Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Exlicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=allow=tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10414: Disallow Version Exlicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10415: Disallow Version Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9247 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10416: Disallow Version Implicitly. produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9247 with PID 3039 at Tue May  2 15:44:23 UTC 2017
kill -USR1 3039
selfserv: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9247 -b -p 9247 2>/dev/null;
selfserv_9247 with PID 3039 killed at Tue May  2 15:44:23 UTC 2017
TIMESTAMP ssl END: Tue May  2 15:44:23 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 15:44:23 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.7616 -t "Test1"
sdr.sh: #10417: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v2.7616 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10418: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.7616 -t "1234567"
sdr.sh: #10419: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.7616 -t "Test1"
sdr.sh: #10420: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v2.7616 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10421: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.7616 -t "1234567"
sdr.sh: #10422: Decrypt - Value 3  - PASSED
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.7616 -t Test2 -f ../tests.pw
merge.sh: #10423: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10424: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10425: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10426: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10427: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10428: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:49 2017
            Not After : Mon May 02 15:39:49 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:18:eb:b3:57:94:66:3f:4c:5d:c9:87:14:18:12:00:
                    f0:48:20:89:d7:4f:69:c2:94:95:c1:d3:c9:5d:1f:dd:
                    92:4a:fb:c1:53:31:61:8c:9c:7b:dc:bb:32:c3:81:6e:
                    00:1c:2c:34:a4:e7:db:15:26:88:a3:1e:27:4c:72:3c:
                    8a:d2:5d:f3:91:11:50:46:e3:a6:d6:ee:f2:f9:44:5f:
                    cb:78:17:ef:7e:8a:9a:32:a0:98:79:44:7a:ff:84:83:
                    59:f3:e0:a0:0b:ff:e0:26:f0:f6:60:a6:a7:06:1c:e1:
                    5d:4b:e5:dc:f7:04:0e:54:c3:36:87:b4:d7:d3:26:39:
                    94:8e:44:d6:ef:38:18:38:fa:df:37:9e:ee:e8:ea:d1:
                    c1:c3:a0:f6:9f:b8:c1:be:ae:84:33:07:19:0f:73:a4:
                    e8:26:20:14:b0:44:e0:2e:b5:7b:13:33:3c:c8:c8:f4:
                    b8:18:a2:0d:6e:16:b9:51:db:5f:a2:dc:33:d3:57:51:
                    91:b5:5d:71:0e:9f:64:d8:05:c4:8f:50:2d:4f:71:32:
                    fd:70:68:52:ea:fc:84:64:90:55:ea:90:0d:55:76:5c:
                    df:71:60:25:20:39:9a:da:4d:f8:77:03:3c:78:2c:c0:
                    95:2d:6d:8a:0e:c9:7c:49:71:1b:69:30:43:fc:ae:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:b4:70:03:ba:ff:79:25:af:d8:f8:51:73:c9:55:fa:
        ec:31:7f:33:db:ee:8f:51:d2:20:f4:04:6f:28:d7:46:
        83:fb:a9:f3:4f:ce:bd:84:35:84:d5:56:d7:8a:34:fc:
        88:b5:a4:36:6e:d3:be:2e:31:13:46:80:6a:a0:7f:b7:
        80:43:f3:13:cb:8f:40:ac:a1:f1:c9:e8:d2:84:c4:d2:
        ca:b3:18:4a:fc:9b:38:11:0f:6a:b2:cc:e6:0a:b1:82:
        02:29:cf:a3:5e:53:d4:09:e0:71:ec:ec:8b:78:8c:25:
        cd:5a:3c:29:ce:44:a6:14:80:ff:de:46:aa:13:00:27:
        33:c0:88:3a:00:e5:ba:53:4c:4e:df:df:36:b7:63:c8:
        eb:7e:9b:89:57:f8:58:fb:15:52:66:72:bd:db:3c:1f:
        09:2a:c4:e7:8e:ed:3e:9b:61:48:c5:6b:32:94:4b:a9:
        a4:19:85:07:c5:0b:0d:af:9e:d6:be:b7:ba:9c:85:77:
        13:b2:d7:0b:f4:a3:6a:9f:74:a2:e0:c3:8c:28:20:9d:
        88:16:e7:39:d8:3e:a3:8f:e9:d6:26:03:47:47:a6:cb:
        a8:ce:b4:05:12:17:ef:92:28:f3:22:58:25:12:45:f0:
        ee:a6:da:65:f5:df:ff:2c:f2:f2:35:fa:04:85:55:45
    Fingerprint (SHA-256):
        7B:1C:3F:61:A3:30:87:A2:80:E2:52:4D:88:8D:1B:85:4A:0A:11:1B:D2:30:5E:3C:E5:5D:85:9E:A4:BA:BF:C1
    Fingerprint (SHA1):
        9D:E6:50:2B:65:AC:79:14:2E:30:31:88:B9:D8:FA:EB:1A:49:CC:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10429: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:39:51 2017
            Not After : Mon May 02 15:39:51 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:aa:fa:1d:04:4c:ee:94:95:af:0a:f1:fb:ca:6c:50:
                    3f:1c:19:15:3f:20:b2:40:f3:92:ec:1d:7f:a8:90:bd:
                    1b:93:97:0a:88:22:d4:1a:91:a5:5a:a5:4c:3a:16:92:
                    8b:66:2b:29:35:51:67:19:d0:56:14:70:39:66:e0:cc:
                    b4:2c:f0:3b:99:fa:24:72:3e:88:10:7a:3b:2d:c7:64:
                    86:bf:02:2d:aa:85:4e:ca:05:d5:44:78:18:93:a8:4c:
                    b0:b8:c8:22:d1:aa:4e:76:5a:ae:ba:04:5e:d0:dd:19:
                    6d:ea:7f:6f:f5:9e:e6:4d:eb:da:13:fb:18:6c:a7:8f:
                    fd:5a:02:36:e4:4d:50:0a:35:43:f4:5e:bb:cf:57:b1:
                    0d:55:2d:40:15:4f:a5:1f:78:66:bd:c4:af:21:55:ab:
                    47:cf:d9:4d:27:58:fe:9b:b6:90:69:a7:51:57:f5:32:
                    2f:13:06:17:49:4c:43:19:f0:32:b6:cc:b3:18:45:06:
                    81:4c:d4:19:7c:80:e0:e3:7a:d4:ee:04:e1:52:ff:46:
                    db:08:81:12:32:89:95:15:5a:d7:ac:8e:6b:a6:4a:f6:
                    4a:4b:4d:c2:53:cf:fb:41:62:83:ea:52:d7:95:2c:6d:
                    16:df:49:fb:93:6b:31:f1:25:65:ac:fb:5d:b3:67:ed
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:e9:5b:56:21:c0:30:fa:9c:30:c1:b7:61:26:92:1a:
        47:c7:a6:41:46:00:7b:dc:40:ba:c3:b3:af:55:94:96:
        bb:06:35:bc:74:4d:3f:ee:93:b1:e4:f4:4e:f8:5d:5f:
        eb:39:3a:71:77:a5:3c:42:47:27:03:73:73:b5:0c:7d:
        c6:9f:12:21:2c:9b:95:4a:e4:fa:df:0d:fe:96:21:94:
        cd:4e:05:fa:a8:7d:a4:7d:52:49:24:3c:b6:68:28:f4:
        4b:c1:10:f9:fb:01:99:2e:9d:4a:92:1b:82:52:e3:f3:
        14:e2:01:82:1c:d0:ce:a7:6f:22:84:73:8e:9b:6e:47:
        e2:e7:fc:32:46:7a:4d:da:8e:77:f5:c4:a9:31:95:ff:
        a7:27:b7:b6:86:a3:83:78:bd:c3:41:9f:7b:bc:7c:05:
        f5:fe:15:be:0a:e7:aa:d2:c0:ae:ee:c9:29:5c:3b:6a:
        d8:73:70:16:b9:bf:48:20:14:87:7f:a1:2c:cb:62:e3:
        70:b9:e6:97:f7:26:55:6f:14:a6:7f:26:ad:74:1e:40:
        d7:26:40:69:a7:74:8c:ba:be:62:71:b8:16:e8:6f:10:
        13:b1:80:f2:2d:5f:0b:2c:c5:0e:54:2e:e3:dc:1e:73:
        34:91:fb:09:75:fc:b9:6e:bd:1b:3c:7e:06:d7:9a:2c
    Fingerprint (SHA-256):
        19:24:CE:A0:24:16:D4:D3:F4:35:23:45:E9:AD:16:73:A3:CE:27:5F:96:EB:D8:5B:A5:32:5E:88:C2:92:42:D3
    Fingerprint (SHA1):
        6D:F3:D3:D1:B9:28:A8:A1:92:55:EC:75:6D:B8:BB:7B:DF:B0:6D:1C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10430: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10431: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA                                                       CT,C,C
TestCA-dsa                                                   CT,C,C
TestCA-ec                                                    CT,C,C
Alice                                                        u,u,u
Alice-dsa                                                    u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
Alice-ecmixed                                                u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
Dave-dsa                                                     u,u,u
Dave-dsamixed                                                u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-dsa                                         ,,   
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
clientCA                                                     T,C,C
chain-2-clientCA                                             ,,   
chain-2-clientCA-dsa                                         ,,   
clientCA-ec                                                  T,C,C
clientCA-dsa                                                 T,C,C
Alice #2                                                     ,,   
Alice #1                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #4                                                     ,,   
Alice #100                                                   ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.7616 -t Test2 -f ../tests.pw
merge.sh: #10432: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.7616 -t Test1 -f ../tests.pw
merge.sh: #10433: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #10434: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #10435: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #10436: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 15:40:09 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:38:51 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 15:40:04 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #10437: Verifying TestCA CRL  - PASSED
TEST_MODE=SHARED_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Tue May  2 15:44:29 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 15:44:29 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #10438: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154430 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10439: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #10440: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10441: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #10442: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10443: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10444: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10445: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10446: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #10447: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10448: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10449: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10450: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10451: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #10452: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10453: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10454: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10455: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10456: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #10457: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10458: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10459: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10460: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #10461: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10462: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10463: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10464: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #10465: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10466: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10467: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10468: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #10469: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10470: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10471: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10472: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #10473: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10474: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10475: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10476: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #10477: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10478: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10479: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10480: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #10481: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10482: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10483: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10484: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #10485: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10486: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10487: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10488: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #10489: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10490: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10491: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10492: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #10493: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10494: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9257/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10495: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10496: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #10497: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10498: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9258
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10499: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10500: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502154442Z
nextupdate=20180502154442Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:44:42 2017
    Next Update: Wed May 02 15:44:42 2018
    CRL Extensions:
chains.sh: #10501: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502154443Z
addcert 2 20170502154443Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:44:43 2017
    Next Update: Wed May 02 15:44:42 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:44:43 2017
    CRL Extensions:
chains.sh: #10502: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154443Z
nextupdate=20180502154443Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:44:43 2017
    Next Update: Wed May 02 15:44:43 2018
    CRL Extensions:
chains.sh: #10503: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154444Z
addcert 2 20170502154444Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:44:44 2017
    Next Update: Wed May 02 15:44:43 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:44:44 2017
    CRL Extensions:
chains.sh: #10504: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154445Z
addcert 4 20170502154445Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:44:45 2017
    Next Update: Wed May 02 15:44:43 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:44:44 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 15:44:45 2017
    CRL Extensions:
chains.sh: #10505: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154446Z
nextupdate=20180502154446Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:44:46 2017
    Next Update: Wed May 02 15:44:46 2018
    CRL Extensions:
chains.sh: #10506: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154447Z
addcert 2 20170502154447Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:44:47 2017
    Next Update: Wed May 02 15:44:46 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:44:47 2017
    CRL Extensions:
chains.sh: #10507: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154448Z
addcert 3 20170502154448Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:44:48 2017
    Next Update: Wed May 02 15:44:46 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:44:47 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:44:48 2017
    CRL Extensions:
chains.sh: #10508: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154449Z
nextupdate=20180502154449Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:44:49 2017
    Next Update: Wed May 02 15:44:49 2018
    CRL Extensions:
chains.sh: #10509: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154450Z
addcert 2 20170502154450Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:44:50 2017
    Next Update: Wed May 02 15:44:49 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:44:50 2017
    CRL Extensions:
chains.sh: #10510: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154451Z
addcert 3 20170502154451Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:44:51 2017
    Next Update: Wed May 02 15:44:49 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:44:50 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:44:51 2017
    CRL Extensions:
chains.sh: #10511: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #10512: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #10513: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10514: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10515: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10516: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10517: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10518: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #10519: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #10520: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10521: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #10522: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #10523: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #10524: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #10525: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #10526: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #10527: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #10528: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #10529: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #10530: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #10531: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #10532: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #10533: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #10534: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #10535: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 15:44:55 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:44:55 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 5555 >/dev/null 2>/dev/null
httpserv with PID 5555 found at Tue May  2 15:44:55 UTC 2017
httpserv with PID 5555 started at Tue May  2 15:44:55 UTC 2017
tstclnt -h localhost.localdomain -p 9257 -q -t 20
chains.sh: #10536: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154430 (0x1dee44be)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:44:30 2017
            Not After : Mon May 02 15:44:30 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:1c:c3:52:6e:78:fc:59:53:1a:2e:ee:47:25:48:f1:
                    27:63:05:0c:6d:54:2b:fa:f1:fe:61:bf:32:2c:f7:08:
                    c7:34:17:a4:29:75:4b:37:b4:ab:c4:fb:fe:16:2a:c6:
                    e0:e5:df:fa:5b:2f:f3:f2:a5:03:2f:3e:06:93:49:d7:
                    e9:f0:92:d0:41:1a:c7:a2:7b:50:f6:bf:36:04:28:ad:
                    13:66:c0:0d:c6:ed:00:98:72:4e:b2:3e:d6:00:a3:ed:
                    bb:94:72:77:62:57:10:6c:d8:4f:0c:f8:d3:17:a9:51:
                    9b:70:29:c3:9e:2f:26:1f:fb:da:1b:86:86:4e:0e:70:
                    fc:3a:14:26:24:57:77:2d:96:49:c6:9b:fe:c9:ba:4b:
                    3d:7f:da:8b:e7:07:bf:d5:52:41:9b:1d:e8:d8:14:1e:
                    2d:e6:94:aa:06:28:72:64:37:7a:6d:26:7b:87:07:f1:
                    0a:a8:03:c5:18:dd:b2:e6:86:a8:8c:34:37:5f:38:fe:
                    76:e0:db:e3:a1:47:cb:b7:00:98:e2:00:bf:4e:54:27:
                    93:40:07:f7:8d:ff:e3:cc:28:77:4c:ad:6f:d6:f5:00:
                    89:8d:18:02:3d:c5:1c:34:b6:1b:cd:1e:04:05:9d:0e:
                    44:a2:2c:bc:ea:da:52:90:37:ea:99:55:e4:fa:b8:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:cb:e5:e4:37:e3:80:fc:5c:78:b7:6a:f6:9f:7b:5a:
        46:a0:6d:ad:ec:4b:1c:75:06:ef:71:1e:a3:f9:dc:4b:
        b0:ba:ba:47:c3:70:97:d9:1a:68:1f:e9:d9:c9:1c:29:
        14:64:f6:fe:72:b9:f9:70:ec:ae:3f:be:e9:a7:0b:a9:
        75:81:62:3d:94:32:73:47:7a:0d:76:e5:fb:3b:2d:64:
        36:57:1a:a6:8c:ac:18:5f:4f:cd:ee:0f:2c:7d:69:48:
        f4:fb:e7:ab:97:f4:09:b6:78:3b:e3:02:ba:a7:da:eb:
        62:0f:2a:4d:4e:c5:35:39:7e:27:17:41:99:25:b4:a0:
        7f:09:98:78:54:2d:f7:c7:0a:32:77:b9:18:fc:a9:2c:
        ea:50:a1:d7:95:fa:69:90:63:81:ed:92:7c:e7:9f:a7:
        9c:cf:4b:c4:82:d3:6c:61:6e:fa:2d:18:a2:b0:e3:ff:
        7e:51:f8:c0:68:5c:3a:ff:bf:c3:9c:8f:c3:c1:ec:99:
        a5:30:34:78:90:f5:91:1a:5f:29:92:dd:75:bc:78:a6:
        f1:91:bb:9f:c2:36:8a:98:b2:de:fb:c9:e2:84:f7:72:
        4c:8f:f9:07:59:d0:be:3e:fb:c4:b6:a7:f6:02:75:50:
        20:44:40:51:87:ea:95:3d:3d:f2:ff:72:6b:39:46:ef
    Fingerprint (SHA-256):
        80:30:24:9D:5E:0A:FE:B4:6F:C4:2D:98:87:2A:9F:E8:1E:34:18:10:27:20:98:D6:48:09:7D:C8:B8:A0:B5:86
    Fingerprint (SHA1):
        AF:C6:20:3D:5D:BE:13:8E:3E:E9:BA:89:5F:9A:65:A3:9B:87:AC:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10537: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10538: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10539: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 5555 at Tue May  2 15:44:56 UTC 2017
kill -USR1 5555
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 5555 killed at Tue May  2 15:44:56 UTC 2017
httpserv starting at Tue May  2 15:44:56 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:44:56 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 5724 >/dev/null 2>/dev/null
httpserv with PID 5724 found at Tue May  2 15:44:56 UTC 2017
httpserv with PID 5724 started at Tue May  2 15:44:56 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10540: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10541: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10542: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9257 -q -t 20
chains.sh: #10543: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154430 (0x1dee44be)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:44:30 2017
            Not After : Mon May 02 15:44:30 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:1c:c3:52:6e:78:fc:59:53:1a:2e:ee:47:25:48:f1:
                    27:63:05:0c:6d:54:2b:fa:f1:fe:61:bf:32:2c:f7:08:
                    c7:34:17:a4:29:75:4b:37:b4:ab:c4:fb:fe:16:2a:c6:
                    e0:e5:df:fa:5b:2f:f3:f2:a5:03:2f:3e:06:93:49:d7:
                    e9:f0:92:d0:41:1a:c7:a2:7b:50:f6:bf:36:04:28:ad:
                    13:66:c0:0d:c6:ed:00:98:72:4e:b2:3e:d6:00:a3:ed:
                    bb:94:72:77:62:57:10:6c:d8:4f:0c:f8:d3:17:a9:51:
                    9b:70:29:c3:9e:2f:26:1f:fb:da:1b:86:86:4e:0e:70:
                    fc:3a:14:26:24:57:77:2d:96:49:c6:9b:fe:c9:ba:4b:
                    3d:7f:da:8b:e7:07:bf:d5:52:41:9b:1d:e8:d8:14:1e:
                    2d:e6:94:aa:06:28:72:64:37:7a:6d:26:7b:87:07:f1:
                    0a:a8:03:c5:18:dd:b2:e6:86:a8:8c:34:37:5f:38:fe:
                    76:e0:db:e3:a1:47:cb:b7:00:98:e2:00:bf:4e:54:27:
                    93:40:07:f7:8d:ff:e3:cc:28:77:4c:ad:6f:d6:f5:00:
                    89:8d:18:02:3d:c5:1c:34:b6:1b:cd:1e:04:05:9d:0e:
                    44:a2:2c:bc:ea:da:52:90:37:ea:99:55:e4:fa:b8:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:cb:e5:e4:37:e3:80:fc:5c:78:b7:6a:f6:9f:7b:5a:
        46:a0:6d:ad:ec:4b:1c:75:06:ef:71:1e:a3:f9:dc:4b:
        b0:ba:ba:47:c3:70:97:d9:1a:68:1f:e9:d9:c9:1c:29:
        14:64:f6:fe:72:b9:f9:70:ec:ae:3f:be:e9:a7:0b:a9:
        75:81:62:3d:94:32:73:47:7a:0d:76:e5:fb:3b:2d:64:
        36:57:1a:a6:8c:ac:18:5f:4f:cd:ee:0f:2c:7d:69:48:
        f4:fb:e7:ab:97:f4:09:b6:78:3b:e3:02:ba:a7:da:eb:
        62:0f:2a:4d:4e:c5:35:39:7e:27:17:41:99:25:b4:a0:
        7f:09:98:78:54:2d:f7:c7:0a:32:77:b9:18:fc:a9:2c:
        ea:50:a1:d7:95:fa:69:90:63:81:ed:92:7c:e7:9f:a7:
        9c:cf:4b:c4:82:d3:6c:61:6e:fa:2d:18:a2:b0:e3:ff:
        7e:51:f8:c0:68:5c:3a:ff:bf:c3:9c:8f:c3:c1:ec:99:
        a5:30:34:78:90:f5:91:1a:5f:29:92:dd:75:bc:78:a6:
        f1:91:bb:9f:c2:36:8a:98:b2:de:fb:c9:e2:84:f7:72:
        4c:8f:f9:07:59:d0:be:3e:fb:c4:b6:a7:f6:02:75:50:
        20:44:40:51:87:ea:95:3d:3d:f2:ff:72:6b:39:46:ef
    Fingerprint (SHA-256):
        80:30:24:9D:5E:0A:FE:B4:6F:C4:2D:98:87:2A:9F:E8:1E:34:18:10:27:20:98:D6:48:09:7D:C8:B8:A0:B5:86
    Fingerprint (SHA1):
        AF:C6:20:3D:5D:BE:13:8E:3E:E9:BA:89:5F:9A:65:A3:9B:87:AC:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10544: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10545: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10546: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 5724 at Tue May  2 15:44:57 UTC 2017
kill -USR1 5724
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 5724 killed at Tue May  2 15:44:57 UTC 2017
httpserv starting at Tue May  2 15:44:57 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:44:57 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 5971 >/dev/null 2>/dev/null
httpserv with PID 5971 found at Tue May  2 15:44:57 UTC 2017
httpserv with PID 5971 started at Tue May  2 15:44:57 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10547: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #10548: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154431 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10549: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #10550: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #10551: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154432 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10552: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #10553: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #10554: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10555: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154433 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10556: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10557: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154434 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10558: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10559: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #10560: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10561: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10562: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502154435   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10563: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10564: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10565: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #10566: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #10567: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154432 (0x1dee44c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:58 2017
            Not After : Mon May 02 15:44:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:51:11:42:86:85:24:5c:20:b9:6c:7b:49:8d:46:15:
                    96:86:ea:61:ba:53:cf:5d:24:f1:80:97:56:92:ca:84:
                    bc:80:da:7c:d1:91:45:75:5d:af:62:38:43:1b:fb:3c:
                    43:46:8a:68:6b:f0:6b:69:68:d5:c6:50:42:b0:05:a2:
                    ab:ec:1e:26:c2:73:8d:e6:ed:e6:17:a4:57:c6:81:f6:
                    98:cf:d7:0f:e4:61:5c:f4:48:51:37:2a:dc:b7:d5:ed:
                    73:d1:f4:50:e8:b6:15:8a:04:e3:f1:6c:38:d0:72:36:
                    8d:b5:ed:cc:ac:7b:99:ab:58:45:8d:d1:71:35:2b:aa:
                    2e:54:49:f7:99:ee:11:8c:25:a3:55:51:69:52:d3:45:
                    0d:d6:51:9b:b8:85:82:63:b1:85:51:94:80:03:ad:13:
                    db:72:6f:a9:7e:16:ec:ae:75:24:22:e0:c8:06:40:f7:
                    f3:2f:e5:a2:d8:0c:36:4e:42:d6:29:ac:9f:ae:62:80:
                    35:d5:a8:21:ac:19:7e:2a:02:e2:5d:21:dd:90:65:fe:
                    ec:94:4d:af:1a:9b:e8:60:6f:0b:31:fa:4e:0e:ee:0a:
                    3a:6e:2f:ef:c0:f0:96:48:e8:86:53:a4:33:9b:23:24:
                    8f:6d:29:13:bb:b3:5a:ea:10:69:e2:11:8c:59:c0:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:fc:39:73:75:5e:4b:7f:2a:b8:c5:9a:54:59:db:ba:
        d1:65:50:a7:96:bc:69:fe:d9:b9:7c:64:d3:67:5f:8d:
        af:21:1a:88:93:ee:5f:e5:ec:dd:00:3b:8c:65:d2:c8:
        41:95:d7:6f:9a:51:cb:0c:3a:ec:ed:21:c0:57:cd:28:
        a6:fe:8c:45:58:1d:82:f0:28:c0:0a:d2:00:55:73:32:
        58:01:b5:fc:c2:9d:1e:f1:32:68:1f:45:5d:2d:61:38:
        08:35:4c:aa:6f:0d:e6:cd:75:a2:91:94:c3:67:35:63:
        4a:54:91:09:e4:c3:1d:e8:d8:4c:71:89:f5:5f:3c:ab:
        d2:cb:23:f9:cc:47:96:5c:a7:71:12:99:a5:11:c0:92:
        73:a1:e1:20:22:43:c8:e9:63:04:eb:fc:ce:cf:a7:1c:
        4f:e4:27:87:36:ce:ad:8f:ab:fc:e8:bc:88:d8:3e:f3:
        4e:ce:52:3c:82:58:fe:19:60:7e:1c:31:4b:19:8d:75:
        ba:3e:ac:dc:81:8a:1a:c8:da:08:39:c4:a8:80:12:19:
        40:9c:85:d8:e6:fa:60:ea:5e:b6:36:b1:65:08:a3:e8:
        42:2d:1b:3a:c8:3b:48:8a:f6:2f:ce:56:1b:ba:1d:f5:
        72:bc:c3:6c:5d:42:48:de:b2:6e:c4:bb:6e:6a:28:7e
    Fingerprint (SHA-256):
        12:69:85:3E:CF:68:FA:F1:44:BB:93:1C:B7:74:00:43:BD:64:86:A7:CE:84:20:FF:DB:8E:F7:25:BB:73:4F:D8
    Fingerprint (SHA1):
        C2:30:66:F6:D5:A9:B3:3C:7C:04:42:FE:C3:AB:FE:21:9F:DC:A5:13
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10568: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154431 (0x1dee44bf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:44:57 2017
            Not After : Mon May 02 15:44:57 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:71:ba:0b:34:60:9c:c7:6a:1c:45:5b:69:ab:76:86:
                    c7:56:f4:96:6c:40:4f:6b:4e:4d:fa:66:fd:92:f7:67:
                    72:d9:6a:56:eb:a1:4e:79:f6:c8:b7:b6:14:be:b0:9f:
                    dc:49:0c:30:19:ee:17:33:62:6e:11:ec:f7:93:08:04:
                    b9:f3:b1:16:26:61:ed:d5:73:81:9d:78:05:18:63:f8:
                    1d:9c:82:f8:ed:c3:ff:1d:ba:f4:59:2b:57:1d:4c:12:
                    66:3a:74:16:e3:db:ed:e1:4a:5b:b4:32:df:f2:ce:62:
                    0b:a1:30:64:a9:02:64:28:77:b1:c1:9f:06:4c:95:c5:
                    ab:48:63:29:9c:d8:6a:f3:2c:73:07:19:28:55:a3:ea:
                    b1:0f:0a:3b:ed:b1:66:cd:80:77:0d:a4:a1:9a:80:32:
                    57:dd:02:a5:72:73:cf:e8:3d:6e:f3:31:b2:81:de:1c:
                    9e:d4:34:d5:91:da:da:6b:33:27:ed:1b:55:ba:1d:79:
                    b2:49:60:85:eb:d7:fd:a5:ac:de:d5:a6:66:c0:54:5f:
                    e1:18:73:3c:20:8d:01:db:62:29:a1:1b:35:6c:c6:87:
                    18:6a:28:72:6d:8c:1b:d4:90:f9:30:53:22:0d:6f:5e:
                    06:51:88:b4:af:85:94:58:d0:e4:3a:2c:44:12:3e:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:b9:b5:5d:d9:bd:9a:38:5e:f5:0c:cf:fd:85:a0:83:
        7c:6b:d1:0c:3f:52:4e:e0:f7:71:24:d9:1f:15:b2:9f:
        4b:cf:57:c0:37:d6:69:07:6d:17:c6:67:db:1a:b8:83:
        c4:18:67:b3:07:a4:2d:8b:09:8d:df:f6:20:e9:a5:5d:
        2b:8e:91:dd:7c:58:98:5d:53:05:67:99:4f:64:27:5d:
        e0:3b:54:b2:1f:a3:57:cb:c9:15:b1:36:2b:fd:99:f1:
        d8:1d:db:08:33:5e:7b:8d:8b:00:3b:2f:47:cc:11:5c:
        8e:63:cf:ad:39:28:47:1a:16:a6:cf:8c:03:01:be:49:
        88:c1:3f:06:a8:5d:e3:ba:b4:77:ce:ad:b0:ae:34:6f:
        8e:14:da:17:6c:56:60:79:e4:d8:a3:66:9d:5e:e7:c2:
        50:97:10:bf:58:79:5b:75:68:d4:c5:4d:1d:cf:06:15:
        1f:dc:bf:6a:9d:49:f1:d5:bd:10:57:35:7d:c2:88:78:
        03:81:6d:6a:e9:8d:31:de:a6:4a:db:c2:60:48:29:b4:
        a2:9f:ca:88:74:e0:b3:68:57:3a:c3:3f:19:c7:a8:0a:
        b2:d8:65:98:c3:21:1d:d2:fe:05:0d:f4:3a:1a:19:84:
        24:ec:17:6c:55:28:aa:09:7b:1b:ca:8b:9c:3a:18:3e
    Fingerprint (SHA-256):
        FF:38:51:CE:2C:75:19:37:ED:82:65:3D:FF:FF:D6:4A:99:AC:81:79:42:FE:99:27:25:B6:05:27:07:F8:7E:BF
    Fingerprint (SHA1):
        2C:16:C0:F8:DA:B1:D6:C5:11:BB:60:3B:B6:FD:D1:67:D8:25:5A:5B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10569: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10570: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #10571: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #10572: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154431 (0x1dee44bf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:44:57 2017
            Not After : Mon May 02 15:44:57 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:71:ba:0b:34:60:9c:c7:6a:1c:45:5b:69:ab:76:86:
                    c7:56:f4:96:6c:40:4f:6b:4e:4d:fa:66:fd:92:f7:67:
                    72:d9:6a:56:eb:a1:4e:79:f6:c8:b7:b6:14:be:b0:9f:
                    dc:49:0c:30:19:ee:17:33:62:6e:11:ec:f7:93:08:04:
                    b9:f3:b1:16:26:61:ed:d5:73:81:9d:78:05:18:63:f8:
                    1d:9c:82:f8:ed:c3:ff:1d:ba:f4:59:2b:57:1d:4c:12:
                    66:3a:74:16:e3:db:ed:e1:4a:5b:b4:32:df:f2:ce:62:
                    0b:a1:30:64:a9:02:64:28:77:b1:c1:9f:06:4c:95:c5:
                    ab:48:63:29:9c:d8:6a:f3:2c:73:07:19:28:55:a3:ea:
                    b1:0f:0a:3b:ed:b1:66:cd:80:77:0d:a4:a1:9a:80:32:
                    57:dd:02:a5:72:73:cf:e8:3d:6e:f3:31:b2:81:de:1c:
                    9e:d4:34:d5:91:da:da:6b:33:27:ed:1b:55:ba:1d:79:
                    b2:49:60:85:eb:d7:fd:a5:ac:de:d5:a6:66:c0:54:5f:
                    e1:18:73:3c:20:8d:01:db:62:29:a1:1b:35:6c:c6:87:
                    18:6a:28:72:6d:8c:1b:d4:90:f9:30:53:22:0d:6f:5e:
                    06:51:88:b4:af:85:94:58:d0:e4:3a:2c:44:12:3e:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:b9:b5:5d:d9:bd:9a:38:5e:f5:0c:cf:fd:85:a0:83:
        7c:6b:d1:0c:3f:52:4e:e0:f7:71:24:d9:1f:15:b2:9f:
        4b:cf:57:c0:37:d6:69:07:6d:17:c6:67:db:1a:b8:83:
        c4:18:67:b3:07:a4:2d:8b:09:8d:df:f6:20:e9:a5:5d:
        2b:8e:91:dd:7c:58:98:5d:53:05:67:99:4f:64:27:5d:
        e0:3b:54:b2:1f:a3:57:cb:c9:15:b1:36:2b:fd:99:f1:
        d8:1d:db:08:33:5e:7b:8d:8b:00:3b:2f:47:cc:11:5c:
        8e:63:cf:ad:39:28:47:1a:16:a6:cf:8c:03:01:be:49:
        88:c1:3f:06:a8:5d:e3:ba:b4:77:ce:ad:b0:ae:34:6f:
        8e:14:da:17:6c:56:60:79:e4:d8:a3:66:9d:5e:e7:c2:
        50:97:10:bf:58:79:5b:75:68:d4:c5:4d:1d:cf:06:15:
        1f:dc:bf:6a:9d:49:f1:d5:bd:10:57:35:7d:c2:88:78:
        03:81:6d:6a:e9:8d:31:de:a6:4a:db:c2:60:48:29:b4:
        a2:9f:ca:88:74:e0:b3:68:57:3a:c3:3f:19:c7:a8:0a:
        b2:d8:65:98:c3:21:1d:d2:fe:05:0d:f4:3a:1a:19:84:
        24:ec:17:6c:55:28:aa:09:7b:1b:ca:8b:9c:3a:18:3e
    Fingerprint (SHA-256):
        FF:38:51:CE:2C:75:19:37:ED:82:65:3D:FF:FF:D6:4A:99:AC:81:79:42:FE:99:27:25:B6:05:27:07:F8:7E:BF
    Fingerprint (SHA1):
        2C:16:C0:F8:DA:B1:D6:C5:11:BB:60:3B:B6:FD:D1:67:D8:25:5A:5B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10573: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154432 (0x1dee44c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:58 2017
            Not After : Mon May 02 15:44:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:51:11:42:86:85:24:5c:20:b9:6c:7b:49:8d:46:15:
                    96:86:ea:61:ba:53:cf:5d:24:f1:80:97:56:92:ca:84:
                    bc:80:da:7c:d1:91:45:75:5d:af:62:38:43:1b:fb:3c:
                    43:46:8a:68:6b:f0:6b:69:68:d5:c6:50:42:b0:05:a2:
                    ab:ec:1e:26:c2:73:8d:e6:ed:e6:17:a4:57:c6:81:f6:
                    98:cf:d7:0f:e4:61:5c:f4:48:51:37:2a:dc:b7:d5:ed:
                    73:d1:f4:50:e8:b6:15:8a:04:e3:f1:6c:38:d0:72:36:
                    8d:b5:ed:cc:ac:7b:99:ab:58:45:8d:d1:71:35:2b:aa:
                    2e:54:49:f7:99:ee:11:8c:25:a3:55:51:69:52:d3:45:
                    0d:d6:51:9b:b8:85:82:63:b1:85:51:94:80:03:ad:13:
                    db:72:6f:a9:7e:16:ec:ae:75:24:22:e0:c8:06:40:f7:
                    f3:2f:e5:a2:d8:0c:36:4e:42:d6:29:ac:9f:ae:62:80:
                    35:d5:a8:21:ac:19:7e:2a:02:e2:5d:21:dd:90:65:fe:
                    ec:94:4d:af:1a:9b:e8:60:6f:0b:31:fa:4e:0e:ee:0a:
                    3a:6e:2f:ef:c0:f0:96:48:e8:86:53:a4:33:9b:23:24:
                    8f:6d:29:13:bb:b3:5a:ea:10:69:e2:11:8c:59:c0:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:fc:39:73:75:5e:4b:7f:2a:b8:c5:9a:54:59:db:ba:
        d1:65:50:a7:96:bc:69:fe:d9:b9:7c:64:d3:67:5f:8d:
        af:21:1a:88:93:ee:5f:e5:ec:dd:00:3b:8c:65:d2:c8:
        41:95:d7:6f:9a:51:cb:0c:3a:ec:ed:21:c0:57:cd:28:
        a6:fe:8c:45:58:1d:82:f0:28:c0:0a:d2:00:55:73:32:
        58:01:b5:fc:c2:9d:1e:f1:32:68:1f:45:5d:2d:61:38:
        08:35:4c:aa:6f:0d:e6:cd:75:a2:91:94:c3:67:35:63:
        4a:54:91:09:e4:c3:1d:e8:d8:4c:71:89:f5:5f:3c:ab:
        d2:cb:23:f9:cc:47:96:5c:a7:71:12:99:a5:11:c0:92:
        73:a1:e1:20:22:43:c8:e9:63:04:eb:fc:ce:cf:a7:1c:
        4f:e4:27:87:36:ce:ad:8f:ab:fc:e8:bc:88:d8:3e:f3:
        4e:ce:52:3c:82:58:fe:19:60:7e:1c:31:4b:19:8d:75:
        ba:3e:ac:dc:81:8a:1a:c8:da:08:39:c4:a8:80:12:19:
        40:9c:85:d8:e6:fa:60:ea:5e:b6:36:b1:65:08:a3:e8:
        42:2d:1b:3a:c8:3b:48:8a:f6:2f:ce:56:1b:ba:1d:f5:
        72:bc:c3:6c:5d:42:48:de:b2:6e:c4:bb:6e:6a:28:7e
    Fingerprint (SHA-256):
        12:69:85:3E:CF:68:FA:F1:44:BB:93:1C:B7:74:00:43:BD:64:86:A7:CE:84:20:FF:DB:8E:F7:25:BB:73:4F:D8
    Fingerprint (SHA1):
        C2:30:66:F6:D5:A9:B3:3C:7C:04:42:FE:C3:AB:FE:21:9F:DC:A5:13
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10574: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #10575: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #10576: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10577: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10578: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10579: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154432 (0x1dee44c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:58 2017
            Not After : Mon May 02 15:44:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:51:11:42:86:85:24:5c:20:b9:6c:7b:49:8d:46:15:
                    96:86:ea:61:ba:53:cf:5d:24:f1:80:97:56:92:ca:84:
                    bc:80:da:7c:d1:91:45:75:5d:af:62:38:43:1b:fb:3c:
                    43:46:8a:68:6b:f0:6b:69:68:d5:c6:50:42:b0:05:a2:
                    ab:ec:1e:26:c2:73:8d:e6:ed:e6:17:a4:57:c6:81:f6:
                    98:cf:d7:0f:e4:61:5c:f4:48:51:37:2a:dc:b7:d5:ed:
                    73:d1:f4:50:e8:b6:15:8a:04:e3:f1:6c:38:d0:72:36:
                    8d:b5:ed:cc:ac:7b:99:ab:58:45:8d:d1:71:35:2b:aa:
                    2e:54:49:f7:99:ee:11:8c:25:a3:55:51:69:52:d3:45:
                    0d:d6:51:9b:b8:85:82:63:b1:85:51:94:80:03:ad:13:
                    db:72:6f:a9:7e:16:ec:ae:75:24:22:e0:c8:06:40:f7:
                    f3:2f:e5:a2:d8:0c:36:4e:42:d6:29:ac:9f:ae:62:80:
                    35:d5:a8:21:ac:19:7e:2a:02:e2:5d:21:dd:90:65:fe:
                    ec:94:4d:af:1a:9b:e8:60:6f:0b:31:fa:4e:0e:ee:0a:
                    3a:6e:2f:ef:c0:f0:96:48:e8:86:53:a4:33:9b:23:24:
                    8f:6d:29:13:bb:b3:5a:ea:10:69:e2:11:8c:59:c0:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:fc:39:73:75:5e:4b:7f:2a:b8:c5:9a:54:59:db:ba:
        d1:65:50:a7:96:bc:69:fe:d9:b9:7c:64:d3:67:5f:8d:
        af:21:1a:88:93:ee:5f:e5:ec:dd:00:3b:8c:65:d2:c8:
        41:95:d7:6f:9a:51:cb:0c:3a:ec:ed:21:c0:57:cd:28:
        a6:fe:8c:45:58:1d:82:f0:28:c0:0a:d2:00:55:73:32:
        58:01:b5:fc:c2:9d:1e:f1:32:68:1f:45:5d:2d:61:38:
        08:35:4c:aa:6f:0d:e6:cd:75:a2:91:94:c3:67:35:63:
        4a:54:91:09:e4:c3:1d:e8:d8:4c:71:89:f5:5f:3c:ab:
        d2:cb:23:f9:cc:47:96:5c:a7:71:12:99:a5:11:c0:92:
        73:a1:e1:20:22:43:c8:e9:63:04:eb:fc:ce:cf:a7:1c:
        4f:e4:27:87:36:ce:ad:8f:ab:fc:e8:bc:88:d8:3e:f3:
        4e:ce:52:3c:82:58:fe:19:60:7e:1c:31:4b:19:8d:75:
        ba:3e:ac:dc:81:8a:1a:c8:da:08:39:c4:a8:80:12:19:
        40:9c:85:d8:e6:fa:60:ea:5e:b6:36:b1:65:08:a3:e8:
        42:2d:1b:3a:c8:3b:48:8a:f6:2f:ce:56:1b:ba:1d:f5:
        72:bc:c3:6c:5d:42:48:de:b2:6e:c4:bb:6e:6a:28:7e
    Fingerprint (SHA-256):
        12:69:85:3E:CF:68:FA:F1:44:BB:93:1C:B7:74:00:43:BD:64:86:A7:CE:84:20:FF:DB:8E:F7:25:BB:73:4F:D8
    Fingerprint (SHA1):
        C2:30:66:F6:D5:A9:B3:3C:7C:04:42:FE:C3:AB:FE:21:9F:DC:A5:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10580: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154432 (0x1dee44c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:58 2017
            Not After : Mon May 02 15:44:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:51:11:42:86:85:24:5c:20:b9:6c:7b:49:8d:46:15:
                    96:86:ea:61:ba:53:cf:5d:24:f1:80:97:56:92:ca:84:
                    bc:80:da:7c:d1:91:45:75:5d:af:62:38:43:1b:fb:3c:
                    43:46:8a:68:6b:f0:6b:69:68:d5:c6:50:42:b0:05:a2:
                    ab:ec:1e:26:c2:73:8d:e6:ed:e6:17:a4:57:c6:81:f6:
                    98:cf:d7:0f:e4:61:5c:f4:48:51:37:2a:dc:b7:d5:ed:
                    73:d1:f4:50:e8:b6:15:8a:04:e3:f1:6c:38:d0:72:36:
                    8d:b5:ed:cc:ac:7b:99:ab:58:45:8d:d1:71:35:2b:aa:
                    2e:54:49:f7:99:ee:11:8c:25:a3:55:51:69:52:d3:45:
                    0d:d6:51:9b:b8:85:82:63:b1:85:51:94:80:03:ad:13:
                    db:72:6f:a9:7e:16:ec:ae:75:24:22:e0:c8:06:40:f7:
                    f3:2f:e5:a2:d8:0c:36:4e:42:d6:29:ac:9f:ae:62:80:
                    35:d5:a8:21:ac:19:7e:2a:02:e2:5d:21:dd:90:65:fe:
                    ec:94:4d:af:1a:9b:e8:60:6f:0b:31:fa:4e:0e:ee:0a:
                    3a:6e:2f:ef:c0:f0:96:48:e8:86:53:a4:33:9b:23:24:
                    8f:6d:29:13:bb:b3:5a:ea:10:69:e2:11:8c:59:c0:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:fc:39:73:75:5e:4b:7f:2a:b8:c5:9a:54:59:db:ba:
        d1:65:50:a7:96:bc:69:fe:d9:b9:7c:64:d3:67:5f:8d:
        af:21:1a:88:93:ee:5f:e5:ec:dd:00:3b:8c:65:d2:c8:
        41:95:d7:6f:9a:51:cb:0c:3a:ec:ed:21:c0:57:cd:28:
        a6:fe:8c:45:58:1d:82:f0:28:c0:0a:d2:00:55:73:32:
        58:01:b5:fc:c2:9d:1e:f1:32:68:1f:45:5d:2d:61:38:
        08:35:4c:aa:6f:0d:e6:cd:75:a2:91:94:c3:67:35:63:
        4a:54:91:09:e4:c3:1d:e8:d8:4c:71:89:f5:5f:3c:ab:
        d2:cb:23:f9:cc:47:96:5c:a7:71:12:99:a5:11:c0:92:
        73:a1:e1:20:22:43:c8:e9:63:04:eb:fc:ce:cf:a7:1c:
        4f:e4:27:87:36:ce:ad:8f:ab:fc:e8:bc:88:d8:3e:f3:
        4e:ce:52:3c:82:58:fe:19:60:7e:1c:31:4b:19:8d:75:
        ba:3e:ac:dc:81:8a:1a:c8:da:08:39:c4:a8:80:12:19:
        40:9c:85:d8:e6:fa:60:ea:5e:b6:36:b1:65:08:a3:e8:
        42:2d:1b:3a:c8:3b:48:8a:f6:2f:ce:56:1b:ba:1d:f5:
        72:bc:c3:6c:5d:42:48:de:b2:6e:c4:bb:6e:6a:28:7e
    Fingerprint (SHA-256):
        12:69:85:3E:CF:68:FA:F1:44:BB:93:1C:B7:74:00:43:BD:64:86:A7:CE:84:20:FF:DB:8E:F7:25:BB:73:4F:D8
    Fingerprint (SHA1):
        C2:30:66:F6:D5:A9:B3:3C:7C:04:42:FE:C3:AB:FE:21:9F:DC:A5:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10581: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #10582: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #10583: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10584: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10585: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10586: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154431 (0x1dee44bf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:44:57 2017
            Not After : Mon May 02 15:44:57 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:71:ba:0b:34:60:9c:c7:6a:1c:45:5b:69:ab:76:86:
                    c7:56:f4:96:6c:40:4f:6b:4e:4d:fa:66:fd:92:f7:67:
                    72:d9:6a:56:eb:a1:4e:79:f6:c8:b7:b6:14:be:b0:9f:
                    dc:49:0c:30:19:ee:17:33:62:6e:11:ec:f7:93:08:04:
                    b9:f3:b1:16:26:61:ed:d5:73:81:9d:78:05:18:63:f8:
                    1d:9c:82:f8:ed:c3:ff:1d:ba:f4:59:2b:57:1d:4c:12:
                    66:3a:74:16:e3:db:ed:e1:4a:5b:b4:32:df:f2:ce:62:
                    0b:a1:30:64:a9:02:64:28:77:b1:c1:9f:06:4c:95:c5:
                    ab:48:63:29:9c:d8:6a:f3:2c:73:07:19:28:55:a3:ea:
                    b1:0f:0a:3b:ed:b1:66:cd:80:77:0d:a4:a1:9a:80:32:
                    57:dd:02:a5:72:73:cf:e8:3d:6e:f3:31:b2:81:de:1c:
                    9e:d4:34:d5:91:da:da:6b:33:27:ed:1b:55:ba:1d:79:
                    b2:49:60:85:eb:d7:fd:a5:ac:de:d5:a6:66:c0:54:5f:
                    e1:18:73:3c:20:8d:01:db:62:29:a1:1b:35:6c:c6:87:
                    18:6a:28:72:6d:8c:1b:d4:90:f9:30:53:22:0d:6f:5e:
                    06:51:88:b4:af:85:94:58:d0:e4:3a:2c:44:12:3e:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:b9:b5:5d:d9:bd:9a:38:5e:f5:0c:cf:fd:85:a0:83:
        7c:6b:d1:0c:3f:52:4e:e0:f7:71:24:d9:1f:15:b2:9f:
        4b:cf:57:c0:37:d6:69:07:6d:17:c6:67:db:1a:b8:83:
        c4:18:67:b3:07:a4:2d:8b:09:8d:df:f6:20:e9:a5:5d:
        2b:8e:91:dd:7c:58:98:5d:53:05:67:99:4f:64:27:5d:
        e0:3b:54:b2:1f:a3:57:cb:c9:15:b1:36:2b:fd:99:f1:
        d8:1d:db:08:33:5e:7b:8d:8b:00:3b:2f:47:cc:11:5c:
        8e:63:cf:ad:39:28:47:1a:16:a6:cf:8c:03:01:be:49:
        88:c1:3f:06:a8:5d:e3:ba:b4:77:ce:ad:b0:ae:34:6f:
        8e:14:da:17:6c:56:60:79:e4:d8:a3:66:9d:5e:e7:c2:
        50:97:10:bf:58:79:5b:75:68:d4:c5:4d:1d:cf:06:15:
        1f:dc:bf:6a:9d:49:f1:d5:bd:10:57:35:7d:c2:88:78:
        03:81:6d:6a:e9:8d:31:de:a6:4a:db:c2:60:48:29:b4:
        a2:9f:ca:88:74:e0:b3:68:57:3a:c3:3f:19:c7:a8:0a:
        b2:d8:65:98:c3:21:1d:d2:fe:05:0d:f4:3a:1a:19:84:
        24:ec:17:6c:55:28:aa:09:7b:1b:ca:8b:9c:3a:18:3e
    Fingerprint (SHA-256):
        FF:38:51:CE:2C:75:19:37:ED:82:65:3D:FF:FF:D6:4A:99:AC:81:79:42:FE:99:27:25:B6:05:27:07:F8:7E:BF
    Fingerprint (SHA1):
        2C:16:C0:F8:DA:B1:D6:C5:11:BB:60:3B:B6:FD:D1:67:D8:25:5A:5B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10587: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154431 (0x1dee44bf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:44:57 2017
            Not After : Mon May 02 15:44:57 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:71:ba:0b:34:60:9c:c7:6a:1c:45:5b:69:ab:76:86:
                    c7:56:f4:96:6c:40:4f:6b:4e:4d:fa:66:fd:92:f7:67:
                    72:d9:6a:56:eb:a1:4e:79:f6:c8:b7:b6:14:be:b0:9f:
                    dc:49:0c:30:19:ee:17:33:62:6e:11:ec:f7:93:08:04:
                    b9:f3:b1:16:26:61:ed:d5:73:81:9d:78:05:18:63:f8:
                    1d:9c:82:f8:ed:c3:ff:1d:ba:f4:59:2b:57:1d:4c:12:
                    66:3a:74:16:e3:db:ed:e1:4a:5b:b4:32:df:f2:ce:62:
                    0b:a1:30:64:a9:02:64:28:77:b1:c1:9f:06:4c:95:c5:
                    ab:48:63:29:9c:d8:6a:f3:2c:73:07:19:28:55:a3:ea:
                    b1:0f:0a:3b:ed:b1:66:cd:80:77:0d:a4:a1:9a:80:32:
                    57:dd:02:a5:72:73:cf:e8:3d:6e:f3:31:b2:81:de:1c:
                    9e:d4:34:d5:91:da:da:6b:33:27:ed:1b:55:ba:1d:79:
                    b2:49:60:85:eb:d7:fd:a5:ac:de:d5:a6:66:c0:54:5f:
                    e1:18:73:3c:20:8d:01:db:62:29:a1:1b:35:6c:c6:87:
                    18:6a:28:72:6d:8c:1b:d4:90:f9:30:53:22:0d:6f:5e:
                    06:51:88:b4:af:85:94:58:d0:e4:3a:2c:44:12:3e:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:b9:b5:5d:d9:bd:9a:38:5e:f5:0c:cf:fd:85:a0:83:
        7c:6b:d1:0c:3f:52:4e:e0:f7:71:24:d9:1f:15:b2:9f:
        4b:cf:57:c0:37:d6:69:07:6d:17:c6:67:db:1a:b8:83:
        c4:18:67:b3:07:a4:2d:8b:09:8d:df:f6:20:e9:a5:5d:
        2b:8e:91:dd:7c:58:98:5d:53:05:67:99:4f:64:27:5d:
        e0:3b:54:b2:1f:a3:57:cb:c9:15:b1:36:2b:fd:99:f1:
        d8:1d:db:08:33:5e:7b:8d:8b:00:3b:2f:47:cc:11:5c:
        8e:63:cf:ad:39:28:47:1a:16:a6:cf:8c:03:01:be:49:
        88:c1:3f:06:a8:5d:e3:ba:b4:77:ce:ad:b0:ae:34:6f:
        8e:14:da:17:6c:56:60:79:e4:d8:a3:66:9d:5e:e7:c2:
        50:97:10:bf:58:79:5b:75:68:d4:c5:4d:1d:cf:06:15:
        1f:dc:bf:6a:9d:49:f1:d5:bd:10:57:35:7d:c2:88:78:
        03:81:6d:6a:e9:8d:31:de:a6:4a:db:c2:60:48:29:b4:
        a2:9f:ca:88:74:e0:b3:68:57:3a:c3:3f:19:c7:a8:0a:
        b2:d8:65:98:c3:21:1d:d2:fe:05:0d:f4:3a:1a:19:84:
        24:ec:17:6c:55:28:aa:09:7b:1b:ca:8b:9c:3a:18:3e
    Fingerprint (SHA-256):
        FF:38:51:CE:2C:75:19:37:ED:82:65:3D:FF:FF:D6:4A:99:AC:81:79:42:FE:99:27:25:B6:05:27:07:F8:7E:BF
    Fingerprint (SHA1):
        2C:16:C0:F8:DA:B1:D6:C5:11:BB:60:3B:B6:FD:D1:67:D8:25:5A:5B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10588: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #10589: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154436 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10590: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #10591: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #10592: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154437 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10593: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #10594: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #10595: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154438 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10596: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #10597: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #10598: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154439 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10599: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #10600: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #10601: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154440 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10602: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #10603: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #10604: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154441 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10605: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #10606: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #10607: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154442 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10608: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #10609: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #10610: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154443 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10611: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #10612: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #10613: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154444 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10614: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #10615: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #10616: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10617: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502154445 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10618: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10619: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502154446 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10620: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10621: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502154447 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10622: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10623: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #10624: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #10625: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10626: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502154448 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10627: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10628: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502154449 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10629: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10630: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502154450 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10631: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10632: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #10633: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #10634: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10635: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502154451 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10636: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10637: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502154452 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10638: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10639: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502154453 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10640: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10641: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #10642: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #10643: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10644: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502154454 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10645: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10646: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502154455 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10647: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10648: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502154456 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10649: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10650: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #10651: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10652: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10653: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502154457   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10654: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10655: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #10656: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10657: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154458   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10658: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10659: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154436 (0x1dee44c4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:03 2017
            Not After : Mon May 02 15:45:03 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:49:b0:92:c4:22:2e:20:46:99:27:24:bf:ea:c3:4d:
                    83:c6:bd:28:1c:15:e5:1d:40:51:98:be:d8:7e:c1:52:
                    71:42:2d:71:ca:e5:3e:ea:41:61:a2:26:60:8b:09:f8:
                    cf:a3:71:54:11:42:e8:70:04:cc:6c:02:79:4e:1c:51:
                    ca:91:40:d0:da:1d:16:a7:09:b5:c0:65:0c:42:d3:97:
                    70:1d:e0:49:5d:f0:ba:44:dc:7a:45:46:3f:04:59:1f:
                    90:40:98:a4:af:24:3f:fb:46:57:b0:4a:0f:01:a0:d8:
                    d2:32:22:c7:37:fd:49:83:2e:b8:34:b1:b4:ea:1c:26:
                    de:0b:f9:06:b3:1c:2e:18:c6:12:c8:ad:08:65:a5:1a:
                    da:b1:c3:a9:25:54:52:7a:84:5c:fe:e3:09:51:d8:ca:
                    c0:e6:ab:12:18:31:de:38:4d:e2:d1:72:b5:a4:2d:ad:
                    25:61:7b:9b:36:fd:a9:df:01:3f:d0:db:6b:42:84:90:
                    26:1e:7a:42:1f:f9:2e:0a:35:02:0c:70:a4:9d:f9:44:
                    d4:b1:d8:17:b1:f5:28:a0:b2:30:dc:c0:c7:c5:97:a3:
                    27:b2:ee:20:61:d3:50:3e:b4:dc:09:c4:ff:18:d5:80:
                    75:94:00:6d:8e:36:f0:99:22:7d:ad:1e:3c:11:25:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:10:89:21:1b:60:60:7b:78:75:ac:80:8b:98:9e:3d:
        c0:8e:a3:7a:2b:cf:53:c8:13:9d:1f:76:07:76:95:ee:
        23:41:83:91:1b:43:97:f4:7c:74:ec:9a:b6:5d:d7:fa:
        99:af:45:53:9c:e4:ed:36:3b:84:4a:25:18:47:fd:58:
        30:8b:d3:a6:56:03:4e:b4:6d:a3:26:e6:0c:c7:a3:75:
        2b:7d:ff:e9:0e:37:75:ea:1b:8a:36:31:9e:80:56:87:
        71:03:7c:32:46:d9:75:6f:d9:c8:a9:61:99:ca:c3:62:
        b4:b9:c7:47:0b:e6:4c:31:ac:0f:77:82:92:33:0d:b3:
        fb:27:2b:14:92:d0:93:3e:65:79:a2:ed:70:99:a9:df:
        5e:e8:12:eb:12:d8:df:b7:a6:22:61:92:12:02:a6:6b:
        04:e7:52:6a:05:0d:5d:06:54:48:63:05:dc:57:f9:d8:
        60:38:fd:c6:4f:89:91:5a:dc:f9:e7:df:60:49:42:23:
        87:8f:c8:71:63:32:e9:93:c6:4a:8b:36:f9:02:70:5f:
        f7:a8:62:5d:fe:f0:56:07:d2:03:33:8d:39:ee:03:8e:
        81:48:5d:bb:3b:65:83:37:20:7c:7d:f3:40:f7:e5:ed:
        33:16:e8:d1:1e:a1:36:1f:5a:ad:9d:75:cc:fe:1e:12
    Fingerprint (SHA-256):
        8D:15:01:A4:13:88:F5:CE:54:26:F9:53:97:E9:87:70:47:7E:EF:C4:4D:62:A8:DD:B4:F4:86:93:2D:2D:E4:4F
    Fingerprint (SHA1):
        B5:27:70:43:FB:84:AC:ED:21:BB:5D:C7:BE:EF:29:ED:21:34:E1:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10660: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154437 (0x1dee44c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:45:03 2017
            Not After : Mon May 02 15:45:03 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:10:37:66:e9:57:22:7f:d8:d3:f4:75:7b:42:5f:7c:
                    f7:14:4a:f6:2e:d5:bf:40:41:30:ef:e6:6a:87:57:4b:
                    11:d5:04:c9:9f:32:71:b6:32:47:fc:28:58:ad:71:99:
                    ab:f9:5b:9e:1b:62:dc:c0:21:29:ef:fa:8d:07:ff:96:
                    71:58:71:fd:22:b7:e3:df:c0:03:aa:57:59:d8:4c:c4:
                    36:4a:f6:fe:01:5b:06:d9:55:43:53:5a:0c:00:15:b6:
                    1d:27:e8:c6:78:d1:0a:8f:5d:e0:33:ae:42:40:59:76:
                    48:e7:e6:90:93:b1:10:3d:89:10:ff:39:48:5a:6b:38:
                    7d:37:5d:a0:64:88:5b:a2:ef:04:66:87:74:ec:8f:87:
                    73:a0:e2:d4:3d:c8:fb:0a:f8:91:78:a9:b5:47:96:50:
                    cf:cc:c0:ee:67:28:84:61:dd:b4:2a:0a:a8:0d:dc:51:
                    6d:e8:8b:53:4d:d1:0f:75:6d:23:10:9c:b2:1d:60:46:
                    b6:82:43:6a:10:19:ce:96:f8:36:08:ad:44:18:3c:56:
                    0a:6b:b9:1f:13:44:2e:3b:95:4b:06:09:bd:1c:17:52:
                    b6:87:19:2f:70:db:eb:24:ea:79:81:75:2c:10:e9:99:
                    70:d9:7f:81:8f:93:b7:48:9c:ff:28:0b:bc:ee:7b:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:dc:60:df:84:ab:23:56:89:3c:9e:f4:3b:cf:40:a5:
        c3:10:bc:41:f7:95:57:39:d0:89:4f:3b:92:1f:d8:68:
        48:a5:06:6b:2d:d2:cb:3c:cb:99:c1:81:98:b0:1d:9a:
        ff:3a:ad:40:64:8b:39:0a:b2:15:30:b3:8c:e2:32:8b:
        a3:79:49:0d:a1:79:c3:54:da:1f:44:78:f9:db:a9:7e:
        18:5e:16:83:06:1f:ce:8c:e8:95:8f:ed:e8:53:c0:20:
        ec:d1:9c:a6:fa:7d:98:e1:92:ab:88:8e:f4:a8:41:85:
        a0:84:54:ce:ab:7a:d0:ba:35:ff:c0:99:46:07:0d:fd:
        d6:36:2e:1f:96:5e:d5:18:98:c4:19:7b:92:4a:8d:5e:
        95:05:a7:f9:be:d7:36:7a:54:10:36:1f:39:c7:ba:4a:
        01:fe:68:f5:1e:2f:4b:45:df:a1:81:c3:3a:4a:53:03:
        e3:49:cd:9b:13:da:de:87:d4:f9:71:d0:e1:bb:c6:17:
        72:58:aa:ad:42:9c:37:87:a4:7d:b9:b4:cd:8b:9a:14:
        aa:ad:c3:1c:d4:9a:5c:d3:cb:fc:a6:d6:43:bc:85:47:
        6d:d3:42:5c:fa:74:e1:f0:6c:96:e8:23:9d:7b:e0:94:
        6b:02:58:03:13:4a:a9:3b:ad:66:16:47:ca:7d:30:3d
    Fingerprint (SHA-256):
        30:65:10:9B:D2:9A:43:73:1A:B2:33:6C:AB:78:A8:8D:BB:81:5E:7C:85:F8:01:A1:1D:24:2B:69:7E:4F:C4:01
    Fingerprint (SHA1):
        E6:7C:5F:38:EE:65:9A:DC:D1:B1:9E:D6:58:86:A7:DC:B3:6C:AD:F6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10661: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154438 (0x1dee44c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:45:04 2017
            Not After : Mon May 02 15:45:04 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:2a:70:7d:29:4a:11:ec:be:f0:21:1e:74:54:4f:90:
                    4d:fd:bd:89:72:0e:18:dd:fb:bd:ec:3a:5c:a0:00:31:
                    17:89:3f:eb:a8:d7:72:86:57:c5:5b:77:27:92:9c:f2:
                    36:dd:32:d3:eb:03:72:36:75:c6:2a:bd:fb:6f:8b:69:
                    64:b5:51:02:ba:cc:57:13:3c:4d:22:ff:2c:a6:bb:0e:
                    a0:8d:10:4e:35:3f:e8:ee:48:3b:9b:ed:2e:03:fc:18:
                    22:17:fe:24:79:81:a7:da:79:ad:5f:6b:4b:3f:41:af:
                    5f:26:2f:43:8e:60:ec:d3:e1:9d:47:03:23:84:53:0b:
                    8d:7e:c0:21:9a:95:7c:b0:cc:29:45:fc:1e:94:70:6b:
                    11:6a:f3:38:09:3a:48:fc:3b:ef:b1:79:8e:2b:43:b7:
                    8a:17:b5:14:a5:61:bf:10:2d:4b:8d:3d:32:17:e3:98:
                    c1:c6:4a:23:aa:18:1b:c8:0d:b7:0d:71:7e:61:71:0d:
                    ce:7a:fe:b2:9c:40:72:17:7f:5d:74:04:10:7b:c9:dd:
                    6a:ce:ca:8d:f2:28:2e:ab:d3:4b:a9:6e:d9:6c:fe:31:
                    71:21:46:63:5f:9d:d9:b8:1f:c7:cd:64:32:38:61:fd:
                    33:6f:84:2a:b2:9c:e0:14:c3:90:2a:ea:bd:56:75:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:f7:40:f9:ba:08:d1:80:3b:54:bb:7c:16:68:08:fc:
        1e:05:5d:11:ca:2c:c9:85:da:73:aa:46:18:c5:34:d3:
        52:02:72:37:36:96:9b:53:4b:09:e7:57:c2:88:f7:13:
        61:4f:ac:44:b1:31:bd:ec:98:25:e7:d7:48:03:86:f4:
        97:af:db:04:6a:e9:e7:16:e3:67:f1:ac:eb:78:cc:03:
        a6:98:3a:9b:19:ae:8d:f5:b3:86:da:26:67:a9:57:04:
        79:90:9e:17:ad:b0:e7:d9:ab:91:de:54:cf:d2:e9:c6:
        1a:1e:94:8b:ab:d2:29:fe:8e:58:65:8e:09:ef:34:3b:
        54:c2:d7:bf:1c:6b:d0:99:fe:8b:ea:f6:69:f2:1e:db:
        e7:a3:85:a9:7d:78:e6:aa:6e:2a:79:66:9c:6d:8e:48:
        e7:e0:33:94:53:ac:79:ba:5d:ed:99:34:33:b2:91:4c:
        a7:82:83:f2:e4:51:08:d4:3f:ea:ee:7d:15:81:69:dd:
        c9:7b:9c:fd:e6:30:a3:6b:95:15:9c:c3:74:72:f1:14:
        62:ee:97:f8:f7:31:df:e0:81:fa:da:90:b6:80:16:f2:
        70:29:ee:19:77:ee:04:b9:f6:2e:ab:28:d8:c6:78:d6:
        67:64:f3:0b:8a:a7:b9:a0:79:7c:59:d8:e0:f5:20:f5
    Fingerprint (SHA-256):
        22:7F:23:5F:38:A6:7A:A1:46:EF:C4:B8:D4:F7:FF:D6:08:D7:D3:E0:E4:0F:2D:0B:A0:A4:78:9C:36:34:35:A4
    Fingerprint (SHA1):
        F2:9B:63:B8:69:AC:6C:CA:18:85:6E:96:92:3D:E2:49:E6:CA:8B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10662: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154439 (0x1dee44c7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:45:04 2017
            Not After : Mon May 02 15:45:04 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:5e:19:80:93:87:03:12:38:2b:fb:9f:35:42:94:d0:
                    4b:00:c2:f0:77:d8:6d:e8:7e:b3:89:9b:18:9a:ee:f7:
                    20:7a:59:08:06:14:b9:a6:b0:43:7a:9e:36:88:08:d1:
                    4a:91:51:aa:33:57:9d:e0:57:ff:30:e0:5e:80:3b:37:
                    25:fc:d5:34:21:37:d9:3c:0e:a5:ef:84:f1:ae:e2:79:
                    c2:cb:43:9c:bc:88:2f:e9:f7:37:c6:01:a3:7e:14:98:
                    c9:0c:35:bb:fe:1c:eb:7e:68:0a:34:ea:29:04:7b:fc:
                    7d:8e:21:01:82:f6:e2:2f:10:4e:f3:71:7a:4a:ca:2b:
                    8d:d2:52:7c:27:e1:68:a1:a4:0a:be:c4:3e:74:4b:92:
                    e2:64:b5:d1:76:2d:d4:d0:b7:cb:22:b3:b1:69:cc:9c:
                    b4:14:1c:95:16:18:58:28:bb:77:eb:b2:61:8b:d6:e8:
                    04:94:87:b6:9b:36:0d:3f:70:95:45:8b:92:02:2a:41:
                    58:26:8c:f3:5e:90:68:92:c7:0c:98:50:45:8f:2d:34:
                    7e:0b:39:01:6d:1c:77:55:0e:fe:e9:4d:09:14:55:0e:
                    95:b4:b4:51:42:49:84:c1:66:32:a4:57:42:d7:7d:26:
                    fd:e7:1a:3b:e2:57:d0:0e:6f:32:bb:7e:d5:cd:44:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:8c:49:ed:43:37:6e:da:cd:20:88:6e:33:e7:cf:d3:
        0f:c0:12:d2:f6:df:9b:f9:f0:7d:b6:55:d4:a1:0c:3a:
        55:78:cb:51:79:ac:7e:52:12:1c:dc:45:21:57:98:7f:
        cd:4c:2a:44:95:23:81:8f:9e:56:bc:3b:73:2d:16:dc:
        0f:3b:74:c2:61:3d:c5:e1:21:da:8a:55:d0:af:10:ef:
        13:11:3f:bf:21:a3:6c:48:bf:cf:2b:24:27:0c:ea:8e:
        c8:ba:c2:51:fb:23:dc:f4:77:0b:d5:75:70:1f:a0:8a:
        0f:09:ef:8a:3a:51:56:9a:2f:c7:aa:c1:9d:b8:8d:fc:
        d5:c4:5b:3b:b3:b9:48:53:8c:54:fa:04:04:13:57:36:
        83:fb:b2:58:2e:e0:c9:aa:6d:c0:f0:b6:c1:7c:e6:91:
        ed:dc:41:ee:49:0c:37:68:86:1f:ea:ec:7d:be:fa:bd:
        bd:d0:33:8a:e0:ed:c9:d0:81:32:6a:80:86:aa:0e:25:
        26:bb:45:6f:90:6a:2a:9d:e5:8c:0b:4f:90:3b:7f:42:
        d4:94:bb:0a:dd:89:85:41:16:5e:b0:90:e9:75:24:4a:
        63:8f:2b:96:9f:52:7c:d4:7f:9a:e6:29:6a:15:aa:8e:
        99:ef:ec:2f:cf:da:af:da:cb:b5:39:94:ad:37:b2:08
    Fingerprint (SHA-256):
        0A:C8:09:96:FD:DB:06:27:63:CA:40:4E:D6:D1:9D:31:8A:F7:24:07:11:3B:52:97:D0:38:44:4A:32:59:2D:A2
    Fingerprint (SHA1):
        CA:FF:E6:10:A3:48:2C:20:73:AB:B2:BB:61:2A:59:FA:13:EC:79:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10663: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154440 (0x1dee44c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:45:05 2017
            Not After : Mon May 02 15:45:05 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:8a:15:e4:05:59:66:50:c6:40:72:c4:f3:66:26:b3:
                    a3:18:45:68:f6:2c:a7:9c:b4:ba:a0:7e:38:9e:95:36:
                    72:f6:b0:6c:15:e6:37:d3:99:b1:28:51:82:32:41:0b:
                    89:34:fa:1d:4b:7e:15:99:30:47:23:13:cf:44:e1:73:
                    a8:ac:2e:88:5d:47:a7:fc:4f:a1:90:de:61:f2:53:73:
                    9e:19:3e:be:be:05:67:97:b4:80:be:41:16:db:db:96:
                    d9:70:82:69:48:cc:08:d9:6e:84:c0:16:1c:68:14:e6:
                    a2:a3:7a:03:95:c6:3f:66:2c:5d:1f:8b:91:7b:5c:fe:
                    bc:3c:73:fd:b5:95:e0:9d:38:20:ea:a7:cd:b3:00:4f:
                    25:08:f4:08:0d:ed:d4:03:dd:e7:31:af:06:b6:b3:cb:
                    0e:11:b8:c0:73:d5:1b:1c:92:d9:87:8a:e1:d8:7b:78:
                    44:7e:7f:54:c7:6c:67:c3:7c:dc:65:c4:ac:94:16:53:
                    23:87:31:10:29:b0:e2:59:54:d3:3f:41:79:65:4c:5d:
                    89:c0:fe:31:ee:15:2a:86:1e:e7:50:90:8e:8a:9b:6a:
                    15:d8:5c:99:28:df:10:87:cc:08:4a:e5:64:fb:72:55:
                    86:7c:20:6e:d9:0b:57:c6:83:f6:f8:d6:11:72:a7:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:8b:58:00:1b:b9:03:0b:95:89:83:07:73:45:fd:87:
        5f:d6:41:48:ed:f0:ab:bc:ef:b6:95:17:c7:df:86:96:
        e7:11:03:72:2b:b3:a8:13:80:6b:68:cd:71:5f:60:d7:
        56:0a:14:c8:99:ea:5e:31:e0:eb:28:33:dc:c2:89:4f:
        4d:32:b6:de:bd:61:2d:7f:e8:09:fe:69:44:0d:c7:48:
        70:1a:90:4c:67:87:aa:2a:de:4b:95:fb:50:38:2c:cb:
        ca:e2:51:7f:39:f9:a5:72:fe:14:28:10:12:c8:4d:8d:
        5c:93:f2:23:ff:f9:4b:40:19:26:0a:74:71:08:5b:03:
        c6:ae:9d:b1:e0:55:38:43:74:61:0e:12:70:7e:e6:d1:
        c5:5e:a7:d4:47:e7:40:53:83:29:91:08:e6:d0:63:5f:
        df:0e:3a:6b:c9:2d:5d:c5:91:e7:30:ac:95:de:85:94:
        fe:72:41:1e:4d:20:77:00:48:e0:10:5a:25:1d:95:55:
        6d:35:1a:4f:21:e3:98:90:77:26:18:a4:27:a7:a8:2b:
        82:67:a8:8d:81:92:ba:88:b5:62:e5:b6:77:b1:fc:db:
        1b:35:27:b9:85:14:5b:7d:c7:4e:82:4d:d8:5e:62:44:
        f5:ce:ec:aa:66:10:e8:a2:47:08:63:3c:58:ac:b0:cb
    Fingerprint (SHA-256):
        E2:93:37:9A:5F:FF:D2:B9:6E:A2:8F:6F:52:4E:CF:77:B2:4C:1F:D7:92:1F:C5:37:CA:08:F9:F6:EC:DC:D9:2F
    Fingerprint (SHA1):
        10:EC:4C:7B:63:B1:39:BD:3E:52:61:82:FE:DA:38:F7:0E:9C:7E:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10664: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154441 (0x1dee44c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:45:06 2017
            Not After : Mon May 02 15:45:06 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:9a:c6:c5:e7:61:5f:98:fd:97:d5:6b:1f:29:1c:7e:
                    d1:d9:21:04:e2:a0:1d:fc:bc:9b:92:16:14:4d:3d:3f:
                    3a:4d:bd:27:05:4e:55:87:18:97:d7:28:69:17:bf:2a:
                    d4:3a:cc:3a:9f:79:e7:72:03:4e:27:f9:7d:67:9a:58:
                    18:b7:f1:d4:35:75:fc:ee:7c:d2:f5:14:8c:22:84:ba:
                    25:f1:bf:73:86:ba:65:7d:b1:ce:77:5f:9c:6d:5c:c1:
                    8a:2f:13:f2:d0:78:e4:7d:d3:bd:83:2c:d6:45:f1:48:
                    49:31:04:7c:80:b2:a4:d4:05:99:38:87:63:c8:3c:7f:
                    4e:f4:4f:44:dd:2e:c3:80:55:19:72:9e:e4:18:64:9b:
                    a8:33:05:de:d6:20:2f:c0:b2:16:35:ff:79:5a:1c:70:
                    e5:a4:63:99:cf:13:e6:2d:7f:cd:9b:0c:66:ca:e7:68:
                    a7:2f:b9:50:ed:31:4f:b0:45:34:37:c2:55:20:d2:ce:
                    87:63:7a:06:cc:ae:4e:74:d6:d5:3d:07:49:21:e9:72:
                    bd:96:45:fd:39:93:a9:6b:5a:6d:36:fa:1e:c3:12:ef:
                    cc:7e:4f:d4:dc:20:b2:92:bb:4c:e6:7f:e3:c3:80:b1:
                    54:28:a3:60:77:16:da:51:51:65:1d:df:7a:ff:57:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:3f:e6:9d:91:7e:df:b6:cf:a0:07:2f:d0:4a:c8:8c:
        ef:ff:de:42:68:f0:15:7b:97:f7:0a:01:2d:a2:93:e7:
        08:f8:ca:80:90:5b:66:81:74:54:8c:4a:3f:2e:b3:52:
        85:21:3e:31:d0:7e:1d:92:2d:ef:47:49:a6:a0:bf:6a:
        d6:7b:e7:44:4f:a5:e6:65:84:71:c6:16:14:a2:a7:1b:
        58:05:49:a7:85:ec:a2:bb:db:bf:fb:20:e0:c5:8c:75:
        61:96:2a:86:0d:c0:9d:ba:93:65:28:c0:1e:27:0e:fc:
        37:25:bf:b2:71:1a:66:c8:57:a7:a1:ff:66:b1:65:83:
        7b:9c:fe:0b:58:12:6c:8a:2e:de:9c:69:0e:cb:3d:74:
        90:f5:0e:f5:30:0e:94:79:c4:f7:bd:5e:1e:5b:f4:0a:
        74:63:e7:d8:c0:8b:f6:dd:4b:c6:ba:a0:fa:56:dd:65:
        82:14:f9:c6:b8:67:48:6a:27:a2:c0:c8:00:65:6c:88:
        93:c9:e7:fc:a4:03:67:52:bc:f9:58:ce:17:f8:ef:48:
        84:c0:59:5a:8b:8b:33:d2:60:4b:81:8e:e5:1e:bb:9d:
        90:13:69:a1:82:f3:6a:40:39:52:76:b5:66:54:d9:26:
        04:51:e8:7e:da:0c:39:63:ec:c7:7e:9e:72:83:e7:d2
    Fingerprint (SHA-256):
        D2:34:85:0C:07:78:C2:8C:AA:BA:98:6C:D9:61:00:AF:3B:81:56:1B:BE:51:22:E3:19:73:BA:43:BD:7A:F8:14
    Fingerprint (SHA1):
        F8:43:4C:3A:2B:E0:70:64:38:EA:5F:D8:C1:DE:3A:48:D5:1C:BF:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10665: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154442 (0x1dee44ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:45:06 2017
            Not After : Mon May 02 15:45:06 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:ac:fe:ff:5f:1a:b6:8f:31:25:30:a6:94:bc:f7:c7:
                    fe:e2:b5:8f:0c:8f:11:44:ec:54:4b:6f:3c:d3:31:42:
                    8b:c6:7a:2b:7c:af:bb:81:08:f4:4c:b0:ab:e7:bb:ac:
                    b5:2b:cd:e5:e5:f4:b9:81:b5:70:c1:b2:3f:8d:fd:cc:
                    ba:d7:37:60:ee:29:99:47:3d:ba:77:9d:a9:4d:77:f6:
                    a0:ea:1c:1a:2e:cb:f8:d1:30:ba:59:76:b4:c4:b2:b8:
                    d3:b5:cb:ff:18:18:31:c3:48:3c:31:9f:f8:36:3f:3f:
                    f8:14:b5:10:ac:16:47:9f:a4:60:fc:68:47:28:3f:ec:
                    14:69:b4:eb:7d:24:81:90:6d:7a:57:bd:44:79:b4:c1:
                    fa:82:02:cc:f5:e1:bc:ab:03:d9:4c:a9:8f:a4:06:67:
                    fb:b0:4c:aa:2b:e1:b5:8b:8e:b4:2f:1d:8c:ec:42:a8:
                    22:bf:cb:50:5d:91:46:1a:c1:1c:f9:1f:83:4b:d5:82:
                    cd:d2:f7:05:4f:df:22:48:d4:33:a2:e8:73:0a:08:be:
                    3b:b8:b3:e3:4c:fb:19:6f:df:f9:11:b9:fb:60:de:79:
                    65:73:ee:8d:8d:78:4d:db:4e:6c:f9:a8:93:80:e0:84:
                    59:8b:92:56:c2:02:02:fb:37:00:24:f7:50:ad:a7:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:3a:99:ed:4f:e7:b0:8a:72:d6:f2:40:9c:b0:1f:f3:
        62:c2:bf:64:c0:22:60:2d:04:fe:35:b6:d4:cf:b7:92:
        ad:ff:6b:bc:4f:c1:f1:de:ef:00:f7:80:2c:94:9b:ec:
        03:2e:77:f7:67:9a:48:d2:11:9f:b6:81:bc:c1:56:e9:
        5a:db:f7:68:9f:a1:b3:22:c2:8f:5a:2d:9e:cb:db:f8:
        2d:a2:60:94:28:2e:19:0a:96:99:1f:fd:29:1e:67:e2:
        bc:be:22:81:4b:7c:01:b7:d5:fc:90:06:b9:95:1e:a3:
        86:b1:e2:ea:6c:be:1a:ba:29:b9:b4:92:17:58:c4:df:
        dc:d0:42:fb:27:a8:5b:2a:d8:ec:cd:d8:41:7e:cf:e1:
        b5:1a:6d:06:0e:aa:9a:28:e5:51:e2:40:fb:ee:d3:38:
        10:d6:c2:ab:fa:29:b8:92:b7:ac:fc:b5:b9:a3:0b:58:
        2c:26:81:43:17:1c:66:51:b6:e2:7e:d3:e1:e4:8b:c3:
        bc:1f:cf:35:98:01:f7:20:ab:aa:1a:b7:40:95:60:3c:
        01:f6:57:82:8d:cb:60:ea:f8:81:3b:e8:db:53:95:a9:
        97:4a:ca:48:53:fc:82:93:f0:2c:de:85:62:6d:8a:3e:
        e0:bf:c4:20:79:3f:0e:24:b0:b8:3c:90:c4:0d:81:00
    Fingerprint (SHA-256):
        12:4A:55:03:E0:0C:5F:70:84:71:46:86:C8:76:2A:D5:7F:C3:2A:B6:2E:0F:A4:4A:24:06:9C:18:F5:62:C5:AF
    Fingerprint (SHA1):
        88:08:21:63:53:C5:C2:38:0A:B6:DC:2C:30:CE:C8:7A:49:88:EF:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10666: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154443 (0x1dee44cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:45:07 2017
            Not After : Mon May 02 15:45:07 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:ba:9b:64:48:ed:52:7d:00:84:f0:c6:2c:d0:04:31:
                    33:4a:b5:0c:6b:0d:1b:3a:a5:bd:4d:8b:4a:c0:5d:6b:
                    0e:1b:13:29:a6:6c:41:db:72:4a:72:5e:3b:e5:47:c4:
                    99:f8:93:1c:8a:31:a3:f8:d5:97:75:0c:3e:87:b5:37:
                    f7:bb:eb:3b:9f:bb:e3:49:de:ca:db:4b:f6:4b:b3:3f:
                    a7:e3:f3:f7:82:d5:69:90:38:06:55:b1:2f:79:cd:e7:
                    34:b4:4b:ed:96:48:1c:1a:31:67:a3:9e:aa:ce:4b:fe:
                    f2:28:dc:f3:ec:9d:00:2d:75:fa:6e:7a:d9:b2:48:6e:
                    45:47:3e:db:92:51:f6:6a:fe:11:57:a4:11:5b:73:3a:
                    86:5d:04:77:40:42:a2:8d:e4:9d:67:ce:03:8f:92:a1:
                    ae:d7:41:69:0c:c4:1f:31:87:b0:e0:81:61:20:9e:aa:
                    b4:ef:83:98:b1:f0:2d:c0:90:24:ba:5b:52:bc:39:9c:
                    8d:0b:d1:61:84:c8:96:d2:3e:5f:cc:74:81:ef:2c:62:
                    d2:5a:ba:12:61:18:1f:6c:b7:66:d6:74:31:46:f5:64:
                    92:03:4f:fd:8e:c1:4c:70:62:b0:57:69:15:f5:24:13:
                    36:59:c7:6e:51:90:b2:c6:68:80:0c:c2:41:97:12:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:73:95:98:b5:ad:6a:6b:80:29:dc:40:7f:1e:e9:ce:
        de:89:41:f5:12:be:c3:29:cf:3c:75:2c:4b:b0:e9:4d:
        fb:91:a3:ee:a8:16:20:c1:91:56:d4:28:62:01:a2:32:
        b0:2c:a7:05:c1:34:11:19:44:de:49:e0:0c:d5:bb:fb:
        73:24:63:20:0f:91:b6:db:07:ff:82:27:3d:d5:f3:32:
        67:90:0d:29:12:42:a0:9d:ea:cb:2d:58:4f:a4:98:73:
        58:3e:33:87:64:f5:13:31:aa:95:69:c3:ca:45:ce:c1:
        77:87:ca:d6:2b:f5:4a:c3:a6:be:07:72:24:3d:93:c4:
        1e:5e:ac:4d:c3:b6:0c:44:47:54:85:f6:a1:83:e3:2d:
        3f:5d:2a:4e:05:75:13:5a:eb:38:1d:21:1b:ea:e5:0f:
        65:58:c8:27:c3:3d:77:4d:9c:ea:fa:99:98:d3:38:4e:
        c2:b6:dc:0d:88:16:b9:ea:87:f1:6e:19:2a:d9:8e:7d:
        c9:d7:7f:c3:db:bc:8d:f3:a1:50:77:28:83:90:64:4a:
        af:89:25:53:d6:9e:c4:66:5c:37:e2:12:f3:9d:0f:21:
        1a:6c:1a:1a:0b:9e:5c:a3:86:ae:a9:0b:31:c5:07:83:
        fa:f0:15:ed:04:5e:32:54:de:9c:af:40:20:c9:27:0f
    Fingerprint (SHA-256):
        10:D2:85:0B:7B:DA:42:0C:2F:98:15:3D:40:F2:34:19:EE:1B:F3:68:E7:35:4E:AE:12:AC:82:F8:56:79:E6:5B
    Fingerprint (SHA1):
        E7:2C:2A:66:AB:8D:96:B1:C2:DC:EA:80:0B:65:46:C5:4E:70:A7:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10667: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154444 (0x1dee44cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:45:07 2017
            Not After : Mon May 02 15:45:07 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fe:87:01:de:80:f4:f7:38:4e:32:57:4a:9f:13:ae:4a:
                    ec:3e:ba:f4:66:45:5e:79:7e:31:a6:95:83:54:f1:3d:
                    2f:82:ad:f7:8e:79:9c:43:ff:f8:a6:68:9a:cd:13:58:
                    b6:38:10:c1:dc:1e:91:bd:1b:2a:b1:2d:97:61:7a:bf:
                    66:43:98:2b:db:e5:be:9e:ea:8b:0c:ef:a5:f5:fb:1b:
                    c9:ac:9c:fb:a6:58:44:7e:a3:69:f0:ef:c8:47:ed:51:
                    df:40:11:e9:13:da:de:a3:1f:d1:3a:6d:9c:bf:7e:b4:
                    1c:b9:99:02:7d:23:d6:f2:b2:40:3e:13:27:5d:a0:f8:
                    0b:ca:2a:b2:0c:fa:f0:a5:05:0b:73:38:b9:b5:07:20:
                    df:e3:81:cd:52:4f:35:23:ed:ce:71:44:65:d7:27:b3:
                    e5:be:88:7c:cf:1d:dd:66:42:1c:79:88:43:c2:98:60:
                    72:01:98:ff:79:ea:da:63:a2:28:57:74:fc:f7:83:ff:
                    8c:1c:62:04:fb:64:c6:55:d8:e3:cb:52:e1:61:02:e2:
                    ca:e4:5e:4c:ff:45:d0:0e:e6:51:89:eb:1d:8e:58:9e:
                    ec:3a:bb:f5:b4:50:24:46:de:96:6f:8d:64:dc:ec:91:
                    e8:5d:c5:24:b6:bd:e5:87:9d:5e:b2:48:7d:0e:b5:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e1:a9:c2:d6:e2:74:75:cf:a3:42:64:24:54:96:69:9a:
        8c:74:fc:87:1c:14:32:b7:49:1c:3c:8c:92:b3:37:a2:
        10:bb:0e:87:2b:69:93:e1:52:45:63:af:f2:38:43:16:
        28:e9:ef:32:3b:ea:08:10:ac:53:f9:bf:d9:ed:08:35:
        6d:16:04:b8:52:80:71:02:f2:d7:07:27:7d:d5:e0:20:
        9d:b3:7e:92:35:19:c1:92:ef:fa:e8:1a:5f:24:73:7e:
        fd:b9:65:88:e4:db:80:34:44:d5:45:1c:b3:67:b9:f8:
        bb:46:3d:3e:22:e9:a8:05:c6:c1:97:6f:56:62:80:41:
        76:0a:0f:02:d0:d1:8b:d5:2d:25:b9:94:0a:10:d2:cc:
        40:57:40:4a:03:3e:e9:5a:0c:75:67:32:c9:76:bc:fc:
        85:c4:6e:36:6f:af:cb:90:85:c1:68:18:90:2e:80:8d:
        81:43:fb:ed:46:4c:4a:89:ae:62:b5:51:42:13:e1:8b:
        dc:76:81:a5:cf:69:fa:95:c2:b9:b6:3b:c4:ae:e5:38:
        26:f9:e7:e6:d0:fe:c5:49:db:07:98:0d:74:39:24:83:
        b9:b7:98:a3:2b:14:be:fd:9e:61:9a:77:12:f3:00:d4:
        68:09:11:49:e7:0c:7c:6c:07:33:d3:8d:27:05:1a:ff
    Fingerprint (SHA-256):
        76:88:50:5E:BE:FB:CA:48:4D:28:85:7F:CB:96:C2:28:13:B9:D6:9D:0A:C1:14:81:EF:D9:D2:7E:68:CA:15:7E
    Fingerprint (SHA1):
        A3:87:99:C6:E1:FF:C5:A9:29:E4:62:BF:87:5A:DE:C1:36:2A:E0:34
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10668: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10669: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154459 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10670: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10671: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10672: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10673: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154460   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10674: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10675: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10676: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10677: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154461   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10678: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10679: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10680: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10681: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154462   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10682: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10683: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10684: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154459 (0x1dee44db)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:15 2017
            Not After : Mon May 02 15:45:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:95:62:90:d3:f4:fe:6b:40:53:88:fd:a3:4c:39:c6:
                    92:f5:05:31:e3:2f:92:88:33:6f:02:cc:56:7c:76:d3:
                    2f:2c:10:64:f0:ee:66:ec:84:1f:e1:33:4c:a8:29:8e:
                    51:1f:a9:43:d7:14:48:3d:8f:97:41:1b:99:a5:fa:54:
                    2f:a4:3e:c0:66:03:f6:bb:86:70:84:c4:99:06:e2:cb:
                    95:2d:8f:c8:a5:20:76:26:9b:43:39:64:c4:0b:b7:ae:
                    51:65:7b:8d:3b:1b:97:4b:d6:c0:0e:95:54:f7:d9:7c:
                    df:d3:f7:23:d7:c6:6c:36:d0:ac:ff:81:dc:63:51:af:
                    78:13:fc:53:87:6e:e8:0a:53:4e:81:f6:0d:83:3b:d0:
                    e3:6c:61:1e:59:c9:3a:22:73:3b:e1:c6:33:57:6c:4e:
                    9f:78:19:65:75:f2:81:7d:1f:8a:28:3b:5a:3f:9c:85:
                    5d:65:08:27:4e:0b:0d:93:a5:b6:6c:5e:49:dc:e4:86:
                    fd:96:a3:d4:82:63:fc:a7:52:76:b3:16:39:69:c0:ac:
                    61:75:d5:bc:78:82:f2:89:9e:c4:d8:f5:41:03:91:cb:
                    ed:50:35:45:f9:31:69:93:d9:be:69:04:0e:58:38:8d:
                    82:62:a1:ec:ca:94:2e:2c:1f:41:43:f6:0d:3e:f7:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:84:39:e1:27:97:01:5e:92:1a:ea:ce:19:6b:b3:af:
        a7:46:04:44:f3:0b:ae:91:80:b0:bb:9b:e1:84:1c:82:
        b4:f6:7f:b6:c1:47:40:37:49:4e:02:ed:6d:a5:d8:8e:
        6c:d2:0b:7c:9c:fb:12:25:2b:99:67:e8:76:75:f7:6c:
        c6:a3:de:d8:84:1c:e1:a1:f6:32:6e:c1:55:c2:f0:5d:
        ae:eb:35:b7:d8:ad:e9:e6:00:f7:07:5b:0a:86:7c:98:
        63:41:55:e6:90:3a:0b:5e:35:b5:3e:5d:2d:f0:76:1a:
        21:68:6f:06:d4:2b:4d:4c:5e:7f:e2:14:6e:b9:f7:c5:
        4b:71:78:76:d4:0a:62:b4:01:eb:8e:67:c5:ec:6a:8a:
        1c:f2:42:91:38:25:94:b9:22:95:a7:49:a6:79:c0:71:
        50:9c:02:eb:08:38:da:58:5f:4f:c0:18:d1:e8:b0:18:
        48:e5:2e:e5:d9:5c:6d:d9:e4:84:35:1a:1b:39:1a:15:
        9d:1b:b4:ee:3a:a0:1f:8b:d3:a5:67:48:53:c9:0e:c2:
        09:6a:32:05:5f:8f:a9:46:e8:ef:cc:34:1e:b7:d6:6f:
        24:10:6c:21:16:10:e5:c5:77:3e:cb:af:f9:08:1c:03:
        bd:24:bd:8f:df:ba:fd:51:e4:3b:4f:1e:3a:eb:8f:0a
    Fingerprint (SHA-256):
        B6:61:53:7F:F8:DD:F5:36:83:A8:1B:BA:38:5A:94:5B:B9:1C:85:2F:75:EC:EE:14:9E:21:BF:7E:7F:6A:13:D6
    Fingerprint (SHA1):
        3A:F9:3F:FB:0D:AA:AD:3C:02:81:A0:54:AB:BD:0E:9D:5F:CF:2C:D7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10685: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10686: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154460 (0x1dee44dc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:16 2017
            Not After : Mon May 02 15:45:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:aa:be:fb:c8:b1:dd:b3:02:91:cc:de:04:20:96:4f:
                    c0:f4:eb:34:1c:b9:7d:c2:37:6a:a8:0f:64:9d:62:63:
                    a5:a6:fe:5a:28:76:cf:9c:ff:0e:f1:29:40:96:9c:f1:
                    c8:1e:3b:2c:35:77:32:88:78:0e:63:a8:d4:fb:74:9c:
                    26:cf:36:03:0b:2c:1b:2f:c8:cc:14:b4:bd:d2:c1:60:
                    1d:fc:ee:95:62:be:09:64:fd:ca:64:cf:19:53:fb:26:
                    b2:be:f7:ad:43:3f:e0:7a:cb:6c:10:c1:c4:36:32:24:
                    b9:12:6d:2c:a2:7c:eb:c7:ee:c8:78:11:0f:b5:79:30:
                    d6:3f:2b:16:05:fd:01:54:49:9a:e8:2e:c9:84:0e:ec:
                    79:d6:55:68:24:7c:3a:c7:95:ee:ee:7a:fa:9f:cf:ba:
                    18:4a:1a:59:de:1d:9f:a7:44:2f:fa:5f:b9:70:53:da:
                    0d:87:cf:c0:f7:81:ed:00:96:7b:84:cf:98:a6:ad:e5:
                    67:18:fa:26:fb:49:64:11:06:b0:ba:55:39:2e:6b:f1:
                    d5:79:4b:64:17:d0:0b:70:f4:b1:a2:19:3b:77:f5:96:
                    03:b1:7b:74:89:bf:69:e7:c1:ae:67:5a:4f:b4:1d:5e:
                    48:9b:4d:7e:84:2e:80:7f:fa:a0:15:b3:5a:2f:a9:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:e4:7a:8d:24:bf:76:74:01:31:01:54:13:b9:86:bd:
        07:be:82:f7:b8:17:29:77:48:08:e6:34:92:06:5c:12:
        fd:51:5c:4c:46:e7:74:61:00:b4:9e:e3:7f:19:95:c8:
        f7:86:dd:f1:c4:90:2c:6b:91:c0:ed:7e:a6:10:c6:22:
        d7:72:fa:55:23:fe:e2:99:04:6a:ff:45:cd:9f:53:29:
        ab:b0:19:ac:aa:13:dc:05:9c:da:21:f2:d1:0f:60:77:
        78:d4:d6:0b:33:ff:66:12:02:11:2b:bb:96:7d:9c:f6:
        73:b1:bc:81:a5:c5:c3:1d:a5:3b:2e:bf:f5:3c:92:ce:
        f3:3a:4d:19:a0:38:32:d2:3b:a8:2c:ac:46:1b:4d:13:
        ea:78:9b:28:5c:da:55:23:f1:45:a6:17:2b:56:0e:b1:
        c9:40:48:3f:9c:af:9a:66:92:ac:70:3c:9b:d8:c4:c4:
        8c:48:9d:6a:f2:d6:09:7c:77:25:0f:6e:e9:9f:0c:8b:
        7b:7b:4a:8e:e2:9c:78:0f:5f:e5:26:5f:a3:4f:95:d3:
        81:05:35:68:82:3b:15:94:f2:80:81:f6:2e:83:78:1c:
        d4:21:13:91:42:bc:38:c2:ad:aa:11:82:df:a0:02:7a:
        f0:e3:07:96:23:38:9d:c4:6d:58:79:db:9d:8d:1e:c5
    Fingerprint (SHA-256):
        F4:1D:AA:54:67:B9:B3:79:C9:84:BC:41:6A:FA:9F:7E:15:B7:74:84:6F:D7:58:49:83:D5:B8:C3:CD:F4:FD:C1
    Fingerprint (SHA1):
        C9:E5:7A:25:86:DC:A5:21:B0:88:77:54:FB:62:0E:83:05:7A:48:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10687: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10688: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154461 (0x1dee44dd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:17 2017
            Not After : Mon May 02 15:45:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:1c:3f:e7:59:54:0c:c8:a3:e6:42:85:7e:cd:51:06:
                    ae:26:cd:6d:01:f8:88:72:a9:db:71:f2:40:0b:8c:79:
                    2a:ad:99:84:6b:c5:b5:22:36:d3:cd:9b:fb:23:6d:c0:
                    bc:4d:49:a9:87:82:16:ce:51:89:d7:98:aa:04:e0:64:
                    27:32:db:4a:82:05:37:52:8e:eb:1f:f9:4c:d5:bc:ab:
                    75:99:2b:65:10:3e:e0:5c:87:1d:ce:74:e9:8e:07:5c:
                    42:ce:33:c7:99:a3:20:64:98:c6:c4:bc:14:e1:c4:61:
                    2f:61:e1:c9:f0:c1:fc:99:65:b2:25:40:1e:09:0b:81:
                    09:7f:a6:bf:05:71:c7:d9:ce:6d:97:ac:08:1a:ad:ca:
                    eb:21:e4:63:93:60:96:5c:1a:b1:40:e1:68:4b:f5:a7:
                    38:e5:74:0e:0c:0f:e1:0c:ec:af:8a:d5:35:d2:93:05:
                    3c:58:31:51:4d:32:9b:ba:8b:43:91:5c:cc:7f:80:93:
                    62:02:a6:66:de:43:dd:4b:2e:57:d5:18:4c:8f:67:6e:
                    4f:be:ef:4f:8f:fd:5f:a8:9b:ac:8d:a3:f9:27:f5:d6:
                    ac:bd:aa:4c:7f:3f:40:0f:d4:d9:87:60:25:08:ce:f2:
                    83:1b:c8:d0:41:74:fb:d2:24:e4:f0:e5:54:99:60:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:95:cb:38:d0:6d:19:35:89:38:cc:69:94:e2:95:a5:
        45:1c:65:e3:5c:5a:16:5f:34:e6:1d:8d:cd:88:d4:1a:
        b9:12:60:10:2d:73:43:3a:85:4e:2c:90:76:49:44:4f:
        c8:5d:9f:10:e3:31:1e:00:fc:ab:1b:e4:d0:2f:65:bc:
        3d:1b:91:84:c8:af:6b:37:91:31:b8:cf:c6:db:10:02:
        66:b3:2e:0f:9e:e5:41:a7:ca:9d:60:17:d6:c2:85:1c:
        0b:26:b7:14:fa:3e:e3:02:44:62:f5:ff:ff:15:11:79:
        1e:25:46:f8:cb:27:55:14:8f:70:df:ad:79:1f:38:be:
        28:7c:7e:61:89:ca:db:0f:87:16:79:14:7e:5d:b4:06:
        b4:5e:d6:4f:66:15:b7:02:d3:c7:7f:f8:39:3d:29:f0:
        ee:e3:f3:6d:1f:89:e9:cc:c1:29:72:14:01:81:71:f7:
        0f:6f:26:2c:34:b0:a2:25:22:94:6c:8b:06:82:60:1d:
        9a:b8:e2:cd:3a:47:9c:72:32:a8:b5:87:ce:58:ea:4d:
        c3:94:fd:14:7b:29:d4:c4:69:aa:b4:76:a0:21:99:ac:
        1d:b2:ae:89:d0:d3:9f:9c:ff:c3:8c:87:b1:cf:36:ec:
        ad:1e:7d:18:e5:7b:82:17:bb:e1:49:0b:96:f8:bc:ba
    Fingerprint (SHA-256):
        C4:60:0F:65:45:88:C3:4C:98:DF:A8:52:78:B8:2C:A7:64:3D:E6:73:05:26:86:19:82:E0:E1:A9:23:E4:9B:83
    Fingerprint (SHA1):
        82:E0:6E:C6:91:AF:0B:56:85:22:42:6F:23:82:49:AF:08:A4:5E:A2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10689: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10690: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10691: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10692: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10693: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154459 (0x1dee44db)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:15 2017
            Not After : Mon May 02 15:45:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:95:62:90:d3:f4:fe:6b:40:53:88:fd:a3:4c:39:c6:
                    92:f5:05:31:e3:2f:92:88:33:6f:02:cc:56:7c:76:d3:
                    2f:2c:10:64:f0:ee:66:ec:84:1f:e1:33:4c:a8:29:8e:
                    51:1f:a9:43:d7:14:48:3d:8f:97:41:1b:99:a5:fa:54:
                    2f:a4:3e:c0:66:03:f6:bb:86:70:84:c4:99:06:e2:cb:
                    95:2d:8f:c8:a5:20:76:26:9b:43:39:64:c4:0b:b7:ae:
                    51:65:7b:8d:3b:1b:97:4b:d6:c0:0e:95:54:f7:d9:7c:
                    df:d3:f7:23:d7:c6:6c:36:d0:ac:ff:81:dc:63:51:af:
                    78:13:fc:53:87:6e:e8:0a:53:4e:81:f6:0d:83:3b:d0:
                    e3:6c:61:1e:59:c9:3a:22:73:3b:e1:c6:33:57:6c:4e:
                    9f:78:19:65:75:f2:81:7d:1f:8a:28:3b:5a:3f:9c:85:
                    5d:65:08:27:4e:0b:0d:93:a5:b6:6c:5e:49:dc:e4:86:
                    fd:96:a3:d4:82:63:fc:a7:52:76:b3:16:39:69:c0:ac:
                    61:75:d5:bc:78:82:f2:89:9e:c4:d8:f5:41:03:91:cb:
                    ed:50:35:45:f9:31:69:93:d9:be:69:04:0e:58:38:8d:
                    82:62:a1:ec:ca:94:2e:2c:1f:41:43:f6:0d:3e:f7:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:84:39:e1:27:97:01:5e:92:1a:ea:ce:19:6b:b3:af:
        a7:46:04:44:f3:0b:ae:91:80:b0:bb:9b:e1:84:1c:82:
        b4:f6:7f:b6:c1:47:40:37:49:4e:02:ed:6d:a5:d8:8e:
        6c:d2:0b:7c:9c:fb:12:25:2b:99:67:e8:76:75:f7:6c:
        c6:a3:de:d8:84:1c:e1:a1:f6:32:6e:c1:55:c2:f0:5d:
        ae:eb:35:b7:d8:ad:e9:e6:00:f7:07:5b:0a:86:7c:98:
        63:41:55:e6:90:3a:0b:5e:35:b5:3e:5d:2d:f0:76:1a:
        21:68:6f:06:d4:2b:4d:4c:5e:7f:e2:14:6e:b9:f7:c5:
        4b:71:78:76:d4:0a:62:b4:01:eb:8e:67:c5:ec:6a:8a:
        1c:f2:42:91:38:25:94:b9:22:95:a7:49:a6:79:c0:71:
        50:9c:02:eb:08:38:da:58:5f:4f:c0:18:d1:e8:b0:18:
        48:e5:2e:e5:d9:5c:6d:d9:e4:84:35:1a:1b:39:1a:15:
        9d:1b:b4:ee:3a:a0:1f:8b:d3:a5:67:48:53:c9:0e:c2:
        09:6a:32:05:5f:8f:a9:46:e8:ef:cc:34:1e:b7:d6:6f:
        24:10:6c:21:16:10:e5:c5:77:3e:cb:af:f9:08:1c:03:
        bd:24:bd:8f:df:ba:fd:51:e4:3b:4f:1e:3a:eb:8f:0a
    Fingerprint (SHA-256):
        B6:61:53:7F:F8:DD:F5:36:83:A8:1B:BA:38:5A:94:5B:B9:1C:85:2F:75:EC:EE:14:9E:21:BF:7E:7F:6A:13:D6
    Fingerprint (SHA1):
        3A:F9:3F:FB:0D:AA:AD:3C:02:81:A0:54:AB:BD:0E:9D:5F:CF:2C:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10694: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10695: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154460 (0x1dee44dc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:16 2017
            Not After : Mon May 02 15:45:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:aa:be:fb:c8:b1:dd:b3:02:91:cc:de:04:20:96:4f:
                    c0:f4:eb:34:1c:b9:7d:c2:37:6a:a8:0f:64:9d:62:63:
                    a5:a6:fe:5a:28:76:cf:9c:ff:0e:f1:29:40:96:9c:f1:
                    c8:1e:3b:2c:35:77:32:88:78:0e:63:a8:d4:fb:74:9c:
                    26:cf:36:03:0b:2c:1b:2f:c8:cc:14:b4:bd:d2:c1:60:
                    1d:fc:ee:95:62:be:09:64:fd:ca:64:cf:19:53:fb:26:
                    b2:be:f7:ad:43:3f:e0:7a:cb:6c:10:c1:c4:36:32:24:
                    b9:12:6d:2c:a2:7c:eb:c7:ee:c8:78:11:0f:b5:79:30:
                    d6:3f:2b:16:05:fd:01:54:49:9a:e8:2e:c9:84:0e:ec:
                    79:d6:55:68:24:7c:3a:c7:95:ee:ee:7a:fa:9f:cf:ba:
                    18:4a:1a:59:de:1d:9f:a7:44:2f:fa:5f:b9:70:53:da:
                    0d:87:cf:c0:f7:81:ed:00:96:7b:84:cf:98:a6:ad:e5:
                    67:18:fa:26:fb:49:64:11:06:b0:ba:55:39:2e:6b:f1:
                    d5:79:4b:64:17:d0:0b:70:f4:b1:a2:19:3b:77:f5:96:
                    03:b1:7b:74:89:bf:69:e7:c1:ae:67:5a:4f:b4:1d:5e:
                    48:9b:4d:7e:84:2e:80:7f:fa:a0:15:b3:5a:2f:a9:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:e4:7a:8d:24:bf:76:74:01:31:01:54:13:b9:86:bd:
        07:be:82:f7:b8:17:29:77:48:08:e6:34:92:06:5c:12:
        fd:51:5c:4c:46:e7:74:61:00:b4:9e:e3:7f:19:95:c8:
        f7:86:dd:f1:c4:90:2c:6b:91:c0:ed:7e:a6:10:c6:22:
        d7:72:fa:55:23:fe:e2:99:04:6a:ff:45:cd:9f:53:29:
        ab:b0:19:ac:aa:13:dc:05:9c:da:21:f2:d1:0f:60:77:
        78:d4:d6:0b:33:ff:66:12:02:11:2b:bb:96:7d:9c:f6:
        73:b1:bc:81:a5:c5:c3:1d:a5:3b:2e:bf:f5:3c:92:ce:
        f3:3a:4d:19:a0:38:32:d2:3b:a8:2c:ac:46:1b:4d:13:
        ea:78:9b:28:5c:da:55:23:f1:45:a6:17:2b:56:0e:b1:
        c9:40:48:3f:9c:af:9a:66:92:ac:70:3c:9b:d8:c4:c4:
        8c:48:9d:6a:f2:d6:09:7c:77:25:0f:6e:e9:9f:0c:8b:
        7b:7b:4a:8e:e2:9c:78:0f:5f:e5:26:5f:a3:4f:95:d3:
        81:05:35:68:82:3b:15:94:f2:80:81:f6:2e:83:78:1c:
        d4:21:13:91:42:bc:38:c2:ad:aa:11:82:df:a0:02:7a:
        f0:e3:07:96:23:38:9d:c4:6d:58:79:db:9d:8d:1e:c5
    Fingerprint (SHA-256):
        F4:1D:AA:54:67:B9:B3:79:C9:84:BC:41:6A:FA:9F:7E:15:B7:74:84:6F:D7:58:49:83:D5:B8:C3:CD:F4:FD:C1
    Fingerprint (SHA1):
        C9:E5:7A:25:86:DC:A5:21:B0:88:77:54:FB:62:0E:83:05:7A:48:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10696: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10697: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154461 (0x1dee44dd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:17 2017
            Not After : Mon May 02 15:45:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:1c:3f:e7:59:54:0c:c8:a3:e6:42:85:7e:cd:51:06:
                    ae:26:cd:6d:01:f8:88:72:a9:db:71:f2:40:0b:8c:79:
                    2a:ad:99:84:6b:c5:b5:22:36:d3:cd:9b:fb:23:6d:c0:
                    bc:4d:49:a9:87:82:16:ce:51:89:d7:98:aa:04:e0:64:
                    27:32:db:4a:82:05:37:52:8e:eb:1f:f9:4c:d5:bc:ab:
                    75:99:2b:65:10:3e:e0:5c:87:1d:ce:74:e9:8e:07:5c:
                    42:ce:33:c7:99:a3:20:64:98:c6:c4:bc:14:e1:c4:61:
                    2f:61:e1:c9:f0:c1:fc:99:65:b2:25:40:1e:09:0b:81:
                    09:7f:a6:bf:05:71:c7:d9:ce:6d:97:ac:08:1a:ad:ca:
                    eb:21:e4:63:93:60:96:5c:1a:b1:40:e1:68:4b:f5:a7:
                    38:e5:74:0e:0c:0f:e1:0c:ec:af:8a:d5:35:d2:93:05:
                    3c:58:31:51:4d:32:9b:ba:8b:43:91:5c:cc:7f:80:93:
                    62:02:a6:66:de:43:dd:4b:2e:57:d5:18:4c:8f:67:6e:
                    4f:be:ef:4f:8f:fd:5f:a8:9b:ac:8d:a3:f9:27:f5:d6:
                    ac:bd:aa:4c:7f:3f:40:0f:d4:d9:87:60:25:08:ce:f2:
                    83:1b:c8:d0:41:74:fb:d2:24:e4:f0:e5:54:99:60:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:95:cb:38:d0:6d:19:35:89:38:cc:69:94:e2:95:a5:
        45:1c:65:e3:5c:5a:16:5f:34:e6:1d:8d:cd:88:d4:1a:
        b9:12:60:10:2d:73:43:3a:85:4e:2c:90:76:49:44:4f:
        c8:5d:9f:10:e3:31:1e:00:fc:ab:1b:e4:d0:2f:65:bc:
        3d:1b:91:84:c8:af:6b:37:91:31:b8:cf:c6:db:10:02:
        66:b3:2e:0f:9e:e5:41:a7:ca:9d:60:17:d6:c2:85:1c:
        0b:26:b7:14:fa:3e:e3:02:44:62:f5:ff:ff:15:11:79:
        1e:25:46:f8:cb:27:55:14:8f:70:df:ad:79:1f:38:be:
        28:7c:7e:61:89:ca:db:0f:87:16:79:14:7e:5d:b4:06:
        b4:5e:d6:4f:66:15:b7:02:d3:c7:7f:f8:39:3d:29:f0:
        ee:e3:f3:6d:1f:89:e9:cc:c1:29:72:14:01:81:71:f7:
        0f:6f:26:2c:34:b0:a2:25:22:94:6c:8b:06:82:60:1d:
        9a:b8:e2:cd:3a:47:9c:72:32:a8:b5:87:ce:58:ea:4d:
        c3:94:fd:14:7b:29:d4:c4:69:aa:b4:76:a0:21:99:ac:
        1d:b2:ae:89:d0:d3:9f:9c:ff:c3:8c:87:b1:cf:36:ec:
        ad:1e:7d:18:e5:7b:82:17:bb:e1:49:0b:96:f8:bc:ba
    Fingerprint (SHA-256):
        C4:60:0F:65:45:88:C3:4C:98:DF:A8:52:78:B8:2C:A7:64:3D:E6:73:05:26:86:19:82:E0:E1:A9:23:E4:9B:83
    Fingerprint (SHA1):
        82:E0:6E:C6:91:AF:0B:56:85:22:42:6F:23:82:49:AF:08:A4:5E:A2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10698: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10699: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10700: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154463 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10701: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10702: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10703: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10704: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154464   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10705: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10706: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10707: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10708: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154465   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10709: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10710: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #10711: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10712: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154466   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10713: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10714: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #10715: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10716: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154467   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10717: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10718: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10719: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154463 (0x1dee44df)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:20 2017
            Not After : Mon May 02 15:45:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:d1:fa:4d:1c:29:a7:94:23:04:c8:d6:e8:d9:bc:7d:
                    62:bd:d3:12:f1:dc:29:e6:0b:c2:cb:c9:09:db:73:9c:
                    a4:65:80:8f:cf:ff:79:34:b8:3e:cd:bd:f6:2c:36:c9:
                    a7:2b:17:1f:4c:17:32:35:6c:a7:36:ba:c2:63:ce:25:
                    a9:98:66:bc:55:ee:78:17:75:a7:27:b7:9a:99:39:45:
                    53:a8:a3:6f:45:61:5f:eb:17:5e:a2:22:ca:40:6d:9c:
                    a0:cb:11:5b:a7:f3:d1:0f:4a:69:42:5e:e1:ce:a4:f8:
                    bc:9b:1e:9a:3c:0a:fc:27:8b:25:53:42:40:11:a7:fa:
                    3b:ee:a6:31:0e:2b:0e:7e:63:36:05:2b:5e:5a:68:a5:
                    0c:11:c8:7e:2c:71:93:27:1b:cc:61:f9:37:ca:db:5e:
                    db:5d:70:62:03:35:0a:9f:0c:af:dd:00:26:08:0d:6a:
                    2b:39:75:e9:6d:29:d8:0b:62:7f:1a:8d:b1:5b:cc:3d:
                    0c:d3:0f:48:33:40:8b:c8:d5:f4:05:91:c1:99:5b:92:
                    74:4b:6f:d9:38:5e:97:59:b7:98:8e:2b:ad:f4:a6:e3:
                    ee:26:0f:e1:08:4c:92:4f:27:cd:ce:5d:00:66:0f:9a:
                    46:da:3c:66:d2:d1:0b:16:6e:d0:d1:88:37:d6:88:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:30:cc:29:bf:57:10:99:40:f9:14:b9:ee:65:35:ee:
        9f:e8:e2:1f:d7:38:05:55:0e:53:18:d0:67:3e:2f:ba:
        9b:37:97:8e:d9:cd:f7:fc:56:86:f5:65:0c:1e:0c:29:
        52:fe:43:57:d9:5a:74:b1:66:f6:a6:28:24:2d:93:9f:
        bd:50:ca:ce:b2:f1:5a:88:11:64:41:a6:d9:e7:1a:a0:
        f5:63:c2:f7:b3:31:db:a5:b8:e7:0f:9d:2d:46:ac:5c:
        90:15:1b:ab:0e:a9:f3:e4:fe:a8:f9:a7:44:99:31:2f:
        fd:01:f6:9f:00:db:8f:e2:e4:0b:88:6a:79:06:5f:01:
        0e:01:e4:20:ef:ff:ca:d7:3e:ac:47:55:38:18:09:a9:
        e6:53:25:08:da:02:52:19:f6:0f:42:b0:31:90:7e:42:
        04:b9:ef:3a:2b:83:08:3f:6e:a2:12:f7:de:72:eb:e9:
        6f:96:e1:2e:ab:a7:c0:64:54:86:58:fc:c9:f0:55:ab:
        87:87:01:10:26:42:2f:db:27:1d:52:b0:1e:ea:c7:95:
        93:66:17:8a:4f:f4:ee:e7:e3:8f:e6:a5:7e:4a:9f:eb:
        8b:23:76:40:f2:c2:b7:86:e7:67:18:00:23:d0:16:3d:
        6e:e4:15:fe:35:74:d7:81:5d:ac:3a:46:81:33:76:09
    Fingerprint (SHA-256):
        27:F1:22:04:4E:B7:37:53:05:D1:21:B6:9B:83:03:85:C6:48:B0:D7:B9:02:3E:05:42:B6:22:C7:AD:34:9F:FA
    Fingerprint (SHA1):
        22:71:B4:D6:A4:2A:67:BE:83:B8:D5:25:3E:3C:05:24:2F:44:CB:F1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10720: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10721: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154464 (0x1dee44e0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:21 2017
            Not After : Mon May 02 15:45:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:6d:5c:05:4e:3f:2c:e6:87:7c:e4:fc:c6:3f:85:3d:
                    e9:14:ed:15:db:e3:3e:6e:15:5b:fd:85:0d:f0:b5:11:
                    f2:3b:ad:0f:f0:bb:a9:13:e4:1d:c4:7d:a9:03:84:27:
                    2d:12:59:a2:b9:b4:7e:87:15:fc:46:70:a3:71:8e:07:
                    6d:62:5c:b9:34:c4:d6:e7:45:15:53:a7:f5:bf:23:11:
                    50:e8:01:06:eb:6c:3b:65:8d:b0:9f:b1:53:46:cc:d0:
                    29:ae:99:6f:99:ae:1b:7b:31:4a:08:0a:67:fa:e6:81:
                    5b:7e:96:72:d6:5c:39:80:1c:3d:ac:c4:ad:ef:f7:5a:
                    32:72:85:df:f5:05:c8:ad:0d:17:1c:a9:77:bb:61:2b:
                    f1:3b:c5:e9:27:da:58:2c:d0:24:1f:d0:3d:af:79:60:
                    0c:ae:06:cb:7f:71:f3:ad:f8:10:e7:21:a9:de:40:c3:
                    87:c3:70:2c:9d:01:34:30:9e:4b:d0:4b:f9:bd:ec:90:
                    8b:fe:9e:dd:4c:7b:aa:1f:ab:02:71:59:ae:d5:2d:2d:
                    af:f2:7f:f6:54:04:03:93:5f:69:35:d3:14:6e:0a:1b:
                    54:b8:d7:07:ab:75:9d:b4:85:84:1e:df:4f:86:12:b5:
                    b2:93:4a:e0:06:b0:1f:13:e3:ff:cb:88:60:6c:0b:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cf:45:da:97:e2:d6:28:05:5f:fc:72:82:c9:14:f7:44:
        eb:48:51:e1:e3:dd:86:9e:56:6a:b1:30:4f:0a:5b:bd:
        a5:75:6b:a5:3e:75:ae:53:e1:f9:48:74:00:89:05:fd:
        61:0f:0f:68:7d:83:ba:78:75:95:b9:25:0e:f3:c4:a5:
        51:38:6f:e6:ec:9e:6b:c6:63:dd:b1:4c:34:21:ff:d2:
        48:e3:ac:0b:88:72:ad:20:72:6e:3d:a7:c5:dc:82:85:
        c6:86:fb:75:ab:a3:07:bb:28:0c:c3:07:ec:61:95:eb:
        59:da:c0:17:66:39:11:de:07:59:0a:ce:5c:64:ef:1a:
        93:f5:c4:56:9f:ca:b2:40:06:44:0d:a8:db:9d:2b:bf:
        2a:a4:b6:3a:64:2d:19:81:aa:83:bd:8d:1a:26:f9:f8:
        d4:c3:a3:ee:1e:a7:c4:42:77:5d:50:ff:8e:7d:7b:c8:
        39:02:cc:b8:0d:9a:e1:8d:20:a5:00:5b:2e:55:5b:fd:
        7c:9a:26:61:ee:69:4f:78:91:27:66:c4:d9:50:f0:82:
        4b:d2:6e:d3:10:67:df:73:c7:24:7a:3e:d2:fd:83:af:
        73:a4:5e:b2:d7:c2:12:dd:d8:a1:3f:ec:30:18:51:72:
        c4:10:d0:05:5a:37:3c:02:83:a9:d8:a9:79:e6:f4:13
    Fingerprint (SHA-256):
        E0:B5:6F:4A:DA:4F:18:1F:84:46:21:B2:52:CE:C8:0F:6B:A3:79:90:50:3A:E3:FC:E9:22:13:E5:F6:3C:2F:25
    Fingerprint (SHA1):
        B1:59:E2:9F:03:F4:27:B0:8E:9A:23:A9:D2:2B:C3:48:CF:3D:AA:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10722: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10723: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154465 (0x1dee44e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:21 2017
            Not After : Mon May 02 15:45:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:e0:ca:12:fa:44:f5:8c:18:1e:5b:d4:f0:b7:c4:26:
                    0a:f1:7d:89:ea:69:63:2e:2f:ec:60:93:74:5c:2f:5b:
                    ec:76:d8:de:64:4e:b7:df:24:c6:3d:02:3f:22:72:1e:
                    5f:cd:a1:9a:c2:d0:72:bc:6b:c8:b7:6b:a1:59:af:7d:
                    95:6f:05:75:8e:5a:f0:75:42:aa:28:a3:ab:b8:41:41:
                    c5:24:cf:87:26:0c:cc:19:83:b9:ba:26:f0:c5:f2:a2:
                    9c:eb:22:6f:59:c1:70:43:55:3b:b9:ee:88:75:28:42:
                    ae:9e:02:02:82:ba:19:e8:c1:13:8d:4b:d8:b5:b8:bc:
                    ef:fd:3a:53:aa:ff:a1:6a:14:93:fc:9c:6b:47:95:31:
                    8c:db:5c:51:b8:b0:11:98:fa:8e:b5:17:b2:29:63:ca:
                    2b:66:4a:e6:a7:cc:94:fd:06:2c:01:8d:e5:2b:c9:8f:
                    32:ce:ca:18:5c:d0:1c:04:02:00:d0:a7:1e:16:95:ab:
                    87:83:6b:26:53:1a:13:5f:4f:57:79:5a:66:97:76:b1:
                    d0:69:0a:39:17:26:05:0f:52:67:cd:2c:72:5d:56:eb:
                    f8:c6:11:86:c4:12:01:9f:29:9f:fd:bb:97:e0:4a:d6:
                    8f:e2:bf:76:32:a0:af:65:20:75:55:97:50:36:a0:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:95:da:85:0c:8e:7c:b3:f4:6b:5f:74:b7:af:1a:0b:
        02:1a:a8:a9:05:e0:35:2b:c3:b9:c2:a2:da:c2:05:34:
        95:93:2f:55:cf:0e:14:a1:af:24:39:10:83:17:c9:19:
        d4:8e:38:54:df:55:1b:c7:6b:0a:a7:41:7a:8a:ff:95:
        d0:f3:15:60:20:76:ae:4d:6e:94:8c:69:d6:1b:fe:14:
        70:fa:d5:b9:93:34:d8:79:59:87:04:5c:7b:a3:fd:04:
        83:63:04:22:84:ff:42:be:74:4f:5a:04:cb:48:99:cd:
        97:9d:e5:a2:a3:d3:c1:bd:e3:eb:74:04:c9:24:08:2b:
        42:80:b1:20:31:c6:c7:f8:5e:cb:3b:a7:b1:8d:09:55:
        b3:c4:96:49:08:56:74:ab:08:5e:04:e1:33:d2:c8:5f:
        77:d8:85:50:4f:d1:a2:31:20:33:45:39:2d:25:21:74:
        54:7d:10:70:f8:7e:4a:09:68:c8:ed:6a:f9:36:4a:6e:
        61:e8:62:0d:a6:98:ea:6f:35:77:ba:20:32:29:17:ef:
        ea:1c:1f:ad:cd:2b:89:73:ef:ed:76:89:aa:fa:2f:e0:
        29:34:44:ac:29:30:1a:4a:95:ff:fd:e3:f4:cd:6e:3c:
        9c:e6:70:5e:78:23:8e:c6:75:8f:d6:55:64:65:38:3e
    Fingerprint (SHA-256):
        C0:5F:C4:BE:6E:77:8F:9F:8E:81:52:41:C6:0A:44:8A:08:66:5C:7A:4A:F4:39:98:39:98:AE:90:73:09:9F:D4
    Fingerprint (SHA1):
        52:F6:E3:EB:7A:6E:B0:56:29:25:7B:CE:4E:0E:85:B5:B0:00:31:E6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10724: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10725: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10726: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10727: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10728: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154463 (0x1dee44df)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:20 2017
            Not After : Mon May 02 15:45:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:d1:fa:4d:1c:29:a7:94:23:04:c8:d6:e8:d9:bc:7d:
                    62:bd:d3:12:f1:dc:29:e6:0b:c2:cb:c9:09:db:73:9c:
                    a4:65:80:8f:cf:ff:79:34:b8:3e:cd:bd:f6:2c:36:c9:
                    a7:2b:17:1f:4c:17:32:35:6c:a7:36:ba:c2:63:ce:25:
                    a9:98:66:bc:55:ee:78:17:75:a7:27:b7:9a:99:39:45:
                    53:a8:a3:6f:45:61:5f:eb:17:5e:a2:22:ca:40:6d:9c:
                    a0:cb:11:5b:a7:f3:d1:0f:4a:69:42:5e:e1:ce:a4:f8:
                    bc:9b:1e:9a:3c:0a:fc:27:8b:25:53:42:40:11:a7:fa:
                    3b:ee:a6:31:0e:2b:0e:7e:63:36:05:2b:5e:5a:68:a5:
                    0c:11:c8:7e:2c:71:93:27:1b:cc:61:f9:37:ca:db:5e:
                    db:5d:70:62:03:35:0a:9f:0c:af:dd:00:26:08:0d:6a:
                    2b:39:75:e9:6d:29:d8:0b:62:7f:1a:8d:b1:5b:cc:3d:
                    0c:d3:0f:48:33:40:8b:c8:d5:f4:05:91:c1:99:5b:92:
                    74:4b:6f:d9:38:5e:97:59:b7:98:8e:2b:ad:f4:a6:e3:
                    ee:26:0f:e1:08:4c:92:4f:27:cd:ce:5d:00:66:0f:9a:
                    46:da:3c:66:d2:d1:0b:16:6e:d0:d1:88:37:d6:88:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:30:cc:29:bf:57:10:99:40:f9:14:b9:ee:65:35:ee:
        9f:e8:e2:1f:d7:38:05:55:0e:53:18:d0:67:3e:2f:ba:
        9b:37:97:8e:d9:cd:f7:fc:56:86:f5:65:0c:1e:0c:29:
        52:fe:43:57:d9:5a:74:b1:66:f6:a6:28:24:2d:93:9f:
        bd:50:ca:ce:b2:f1:5a:88:11:64:41:a6:d9:e7:1a:a0:
        f5:63:c2:f7:b3:31:db:a5:b8:e7:0f:9d:2d:46:ac:5c:
        90:15:1b:ab:0e:a9:f3:e4:fe:a8:f9:a7:44:99:31:2f:
        fd:01:f6:9f:00:db:8f:e2:e4:0b:88:6a:79:06:5f:01:
        0e:01:e4:20:ef:ff:ca:d7:3e:ac:47:55:38:18:09:a9:
        e6:53:25:08:da:02:52:19:f6:0f:42:b0:31:90:7e:42:
        04:b9:ef:3a:2b:83:08:3f:6e:a2:12:f7:de:72:eb:e9:
        6f:96:e1:2e:ab:a7:c0:64:54:86:58:fc:c9:f0:55:ab:
        87:87:01:10:26:42:2f:db:27:1d:52:b0:1e:ea:c7:95:
        93:66:17:8a:4f:f4:ee:e7:e3:8f:e6:a5:7e:4a:9f:eb:
        8b:23:76:40:f2:c2:b7:86:e7:67:18:00:23:d0:16:3d:
        6e:e4:15:fe:35:74:d7:81:5d:ac:3a:46:81:33:76:09
    Fingerprint (SHA-256):
        27:F1:22:04:4E:B7:37:53:05:D1:21:B6:9B:83:03:85:C6:48:B0:D7:B9:02:3E:05:42:B6:22:C7:AD:34:9F:FA
    Fingerprint (SHA1):
        22:71:B4:D6:A4:2A:67:BE:83:B8:D5:25:3E:3C:05:24:2F:44:CB:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10729: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10730: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154464 (0x1dee44e0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:21 2017
            Not After : Mon May 02 15:45:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:6d:5c:05:4e:3f:2c:e6:87:7c:e4:fc:c6:3f:85:3d:
                    e9:14:ed:15:db:e3:3e:6e:15:5b:fd:85:0d:f0:b5:11:
                    f2:3b:ad:0f:f0:bb:a9:13:e4:1d:c4:7d:a9:03:84:27:
                    2d:12:59:a2:b9:b4:7e:87:15:fc:46:70:a3:71:8e:07:
                    6d:62:5c:b9:34:c4:d6:e7:45:15:53:a7:f5:bf:23:11:
                    50:e8:01:06:eb:6c:3b:65:8d:b0:9f:b1:53:46:cc:d0:
                    29:ae:99:6f:99:ae:1b:7b:31:4a:08:0a:67:fa:e6:81:
                    5b:7e:96:72:d6:5c:39:80:1c:3d:ac:c4:ad:ef:f7:5a:
                    32:72:85:df:f5:05:c8:ad:0d:17:1c:a9:77:bb:61:2b:
                    f1:3b:c5:e9:27:da:58:2c:d0:24:1f:d0:3d:af:79:60:
                    0c:ae:06:cb:7f:71:f3:ad:f8:10:e7:21:a9:de:40:c3:
                    87:c3:70:2c:9d:01:34:30:9e:4b:d0:4b:f9:bd:ec:90:
                    8b:fe:9e:dd:4c:7b:aa:1f:ab:02:71:59:ae:d5:2d:2d:
                    af:f2:7f:f6:54:04:03:93:5f:69:35:d3:14:6e:0a:1b:
                    54:b8:d7:07:ab:75:9d:b4:85:84:1e:df:4f:86:12:b5:
                    b2:93:4a:e0:06:b0:1f:13:e3:ff:cb:88:60:6c:0b:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cf:45:da:97:e2:d6:28:05:5f:fc:72:82:c9:14:f7:44:
        eb:48:51:e1:e3:dd:86:9e:56:6a:b1:30:4f:0a:5b:bd:
        a5:75:6b:a5:3e:75:ae:53:e1:f9:48:74:00:89:05:fd:
        61:0f:0f:68:7d:83:ba:78:75:95:b9:25:0e:f3:c4:a5:
        51:38:6f:e6:ec:9e:6b:c6:63:dd:b1:4c:34:21:ff:d2:
        48:e3:ac:0b:88:72:ad:20:72:6e:3d:a7:c5:dc:82:85:
        c6:86:fb:75:ab:a3:07:bb:28:0c:c3:07:ec:61:95:eb:
        59:da:c0:17:66:39:11:de:07:59:0a:ce:5c:64:ef:1a:
        93:f5:c4:56:9f:ca:b2:40:06:44:0d:a8:db:9d:2b:bf:
        2a:a4:b6:3a:64:2d:19:81:aa:83:bd:8d:1a:26:f9:f8:
        d4:c3:a3:ee:1e:a7:c4:42:77:5d:50:ff:8e:7d:7b:c8:
        39:02:cc:b8:0d:9a:e1:8d:20:a5:00:5b:2e:55:5b:fd:
        7c:9a:26:61:ee:69:4f:78:91:27:66:c4:d9:50:f0:82:
        4b:d2:6e:d3:10:67:df:73:c7:24:7a:3e:d2:fd:83:af:
        73:a4:5e:b2:d7:c2:12:dd:d8:a1:3f:ec:30:18:51:72:
        c4:10:d0:05:5a:37:3c:02:83:a9:d8:a9:79:e6:f4:13
    Fingerprint (SHA-256):
        E0:B5:6F:4A:DA:4F:18:1F:84:46:21:B2:52:CE:C8:0F:6B:A3:79:90:50:3A:E3:FC:E9:22:13:E5:F6:3C:2F:25
    Fingerprint (SHA1):
        B1:59:E2:9F:03:F4:27:B0:8E:9A:23:A9:D2:2B:C3:48:CF:3D:AA:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10731: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10732: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154465 (0x1dee44e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:21 2017
            Not After : Mon May 02 15:45:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:e0:ca:12:fa:44:f5:8c:18:1e:5b:d4:f0:b7:c4:26:
                    0a:f1:7d:89:ea:69:63:2e:2f:ec:60:93:74:5c:2f:5b:
                    ec:76:d8:de:64:4e:b7:df:24:c6:3d:02:3f:22:72:1e:
                    5f:cd:a1:9a:c2:d0:72:bc:6b:c8:b7:6b:a1:59:af:7d:
                    95:6f:05:75:8e:5a:f0:75:42:aa:28:a3:ab:b8:41:41:
                    c5:24:cf:87:26:0c:cc:19:83:b9:ba:26:f0:c5:f2:a2:
                    9c:eb:22:6f:59:c1:70:43:55:3b:b9:ee:88:75:28:42:
                    ae:9e:02:02:82:ba:19:e8:c1:13:8d:4b:d8:b5:b8:bc:
                    ef:fd:3a:53:aa:ff:a1:6a:14:93:fc:9c:6b:47:95:31:
                    8c:db:5c:51:b8:b0:11:98:fa:8e:b5:17:b2:29:63:ca:
                    2b:66:4a:e6:a7:cc:94:fd:06:2c:01:8d:e5:2b:c9:8f:
                    32:ce:ca:18:5c:d0:1c:04:02:00:d0:a7:1e:16:95:ab:
                    87:83:6b:26:53:1a:13:5f:4f:57:79:5a:66:97:76:b1:
                    d0:69:0a:39:17:26:05:0f:52:67:cd:2c:72:5d:56:eb:
                    f8:c6:11:86:c4:12:01:9f:29:9f:fd:bb:97:e0:4a:d6:
                    8f:e2:bf:76:32:a0:af:65:20:75:55:97:50:36:a0:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:95:da:85:0c:8e:7c:b3:f4:6b:5f:74:b7:af:1a:0b:
        02:1a:a8:a9:05:e0:35:2b:c3:b9:c2:a2:da:c2:05:34:
        95:93:2f:55:cf:0e:14:a1:af:24:39:10:83:17:c9:19:
        d4:8e:38:54:df:55:1b:c7:6b:0a:a7:41:7a:8a:ff:95:
        d0:f3:15:60:20:76:ae:4d:6e:94:8c:69:d6:1b:fe:14:
        70:fa:d5:b9:93:34:d8:79:59:87:04:5c:7b:a3:fd:04:
        83:63:04:22:84:ff:42:be:74:4f:5a:04:cb:48:99:cd:
        97:9d:e5:a2:a3:d3:c1:bd:e3:eb:74:04:c9:24:08:2b:
        42:80:b1:20:31:c6:c7:f8:5e:cb:3b:a7:b1:8d:09:55:
        b3:c4:96:49:08:56:74:ab:08:5e:04:e1:33:d2:c8:5f:
        77:d8:85:50:4f:d1:a2:31:20:33:45:39:2d:25:21:74:
        54:7d:10:70:f8:7e:4a:09:68:c8:ed:6a:f9:36:4a:6e:
        61:e8:62:0d:a6:98:ea:6f:35:77:ba:20:32:29:17:ef:
        ea:1c:1f:ad:cd:2b:89:73:ef:ed:76:89:aa:fa:2f:e0:
        29:34:44:ac:29:30:1a:4a:95:ff:fd:e3:f4:cd:6e:3c:
        9c:e6:70:5e:78:23:8e:c6:75:8f:d6:55:64:65:38:3e
    Fingerprint (SHA-256):
        C0:5F:C4:BE:6E:77:8F:9F:8E:81:52:41:C6:0A:44:8A:08:66:5C:7A:4A:F4:39:98:39:98:AE:90:73:09:9F:D4
    Fingerprint (SHA1):
        52:F6:E3:EB:7A:6E:B0:56:29:25:7B:CE:4E:0E:85:B5:B0:00:31:E6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10733: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10734: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154463 (0x1dee44df)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:20 2017
            Not After : Mon May 02 15:45:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:d1:fa:4d:1c:29:a7:94:23:04:c8:d6:e8:d9:bc:7d:
                    62:bd:d3:12:f1:dc:29:e6:0b:c2:cb:c9:09:db:73:9c:
                    a4:65:80:8f:cf:ff:79:34:b8:3e:cd:bd:f6:2c:36:c9:
                    a7:2b:17:1f:4c:17:32:35:6c:a7:36:ba:c2:63:ce:25:
                    a9:98:66:bc:55:ee:78:17:75:a7:27:b7:9a:99:39:45:
                    53:a8:a3:6f:45:61:5f:eb:17:5e:a2:22:ca:40:6d:9c:
                    a0:cb:11:5b:a7:f3:d1:0f:4a:69:42:5e:e1:ce:a4:f8:
                    bc:9b:1e:9a:3c:0a:fc:27:8b:25:53:42:40:11:a7:fa:
                    3b:ee:a6:31:0e:2b:0e:7e:63:36:05:2b:5e:5a:68:a5:
                    0c:11:c8:7e:2c:71:93:27:1b:cc:61:f9:37:ca:db:5e:
                    db:5d:70:62:03:35:0a:9f:0c:af:dd:00:26:08:0d:6a:
                    2b:39:75:e9:6d:29:d8:0b:62:7f:1a:8d:b1:5b:cc:3d:
                    0c:d3:0f:48:33:40:8b:c8:d5:f4:05:91:c1:99:5b:92:
                    74:4b:6f:d9:38:5e:97:59:b7:98:8e:2b:ad:f4:a6:e3:
                    ee:26:0f:e1:08:4c:92:4f:27:cd:ce:5d:00:66:0f:9a:
                    46:da:3c:66:d2:d1:0b:16:6e:d0:d1:88:37:d6:88:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:30:cc:29:bf:57:10:99:40:f9:14:b9:ee:65:35:ee:
        9f:e8:e2:1f:d7:38:05:55:0e:53:18:d0:67:3e:2f:ba:
        9b:37:97:8e:d9:cd:f7:fc:56:86:f5:65:0c:1e:0c:29:
        52:fe:43:57:d9:5a:74:b1:66:f6:a6:28:24:2d:93:9f:
        bd:50:ca:ce:b2:f1:5a:88:11:64:41:a6:d9:e7:1a:a0:
        f5:63:c2:f7:b3:31:db:a5:b8:e7:0f:9d:2d:46:ac:5c:
        90:15:1b:ab:0e:a9:f3:e4:fe:a8:f9:a7:44:99:31:2f:
        fd:01:f6:9f:00:db:8f:e2:e4:0b:88:6a:79:06:5f:01:
        0e:01:e4:20:ef:ff:ca:d7:3e:ac:47:55:38:18:09:a9:
        e6:53:25:08:da:02:52:19:f6:0f:42:b0:31:90:7e:42:
        04:b9:ef:3a:2b:83:08:3f:6e:a2:12:f7:de:72:eb:e9:
        6f:96:e1:2e:ab:a7:c0:64:54:86:58:fc:c9:f0:55:ab:
        87:87:01:10:26:42:2f:db:27:1d:52:b0:1e:ea:c7:95:
        93:66:17:8a:4f:f4:ee:e7:e3:8f:e6:a5:7e:4a:9f:eb:
        8b:23:76:40:f2:c2:b7:86:e7:67:18:00:23:d0:16:3d:
        6e:e4:15:fe:35:74:d7:81:5d:ac:3a:46:81:33:76:09
    Fingerprint (SHA-256):
        27:F1:22:04:4E:B7:37:53:05:D1:21:B6:9B:83:03:85:C6:48:B0:D7:B9:02:3E:05:42:B6:22:C7:AD:34:9F:FA
    Fingerprint (SHA1):
        22:71:B4:D6:A4:2A:67:BE:83:B8:D5:25:3E:3C:05:24:2F:44:CB:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10735: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154463 (0x1dee44df)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:20 2017
            Not After : Mon May 02 15:45:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:d1:fa:4d:1c:29:a7:94:23:04:c8:d6:e8:d9:bc:7d:
                    62:bd:d3:12:f1:dc:29:e6:0b:c2:cb:c9:09:db:73:9c:
                    a4:65:80:8f:cf:ff:79:34:b8:3e:cd:bd:f6:2c:36:c9:
                    a7:2b:17:1f:4c:17:32:35:6c:a7:36:ba:c2:63:ce:25:
                    a9:98:66:bc:55:ee:78:17:75:a7:27:b7:9a:99:39:45:
                    53:a8:a3:6f:45:61:5f:eb:17:5e:a2:22:ca:40:6d:9c:
                    a0:cb:11:5b:a7:f3:d1:0f:4a:69:42:5e:e1:ce:a4:f8:
                    bc:9b:1e:9a:3c:0a:fc:27:8b:25:53:42:40:11:a7:fa:
                    3b:ee:a6:31:0e:2b:0e:7e:63:36:05:2b:5e:5a:68:a5:
                    0c:11:c8:7e:2c:71:93:27:1b:cc:61:f9:37:ca:db:5e:
                    db:5d:70:62:03:35:0a:9f:0c:af:dd:00:26:08:0d:6a:
                    2b:39:75:e9:6d:29:d8:0b:62:7f:1a:8d:b1:5b:cc:3d:
                    0c:d3:0f:48:33:40:8b:c8:d5:f4:05:91:c1:99:5b:92:
                    74:4b:6f:d9:38:5e:97:59:b7:98:8e:2b:ad:f4:a6:e3:
                    ee:26:0f:e1:08:4c:92:4f:27:cd:ce:5d:00:66:0f:9a:
                    46:da:3c:66:d2:d1:0b:16:6e:d0:d1:88:37:d6:88:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:30:cc:29:bf:57:10:99:40:f9:14:b9:ee:65:35:ee:
        9f:e8:e2:1f:d7:38:05:55:0e:53:18:d0:67:3e:2f:ba:
        9b:37:97:8e:d9:cd:f7:fc:56:86:f5:65:0c:1e:0c:29:
        52:fe:43:57:d9:5a:74:b1:66:f6:a6:28:24:2d:93:9f:
        bd:50:ca:ce:b2:f1:5a:88:11:64:41:a6:d9:e7:1a:a0:
        f5:63:c2:f7:b3:31:db:a5:b8:e7:0f:9d:2d:46:ac:5c:
        90:15:1b:ab:0e:a9:f3:e4:fe:a8:f9:a7:44:99:31:2f:
        fd:01:f6:9f:00:db:8f:e2:e4:0b:88:6a:79:06:5f:01:
        0e:01:e4:20:ef:ff:ca:d7:3e:ac:47:55:38:18:09:a9:
        e6:53:25:08:da:02:52:19:f6:0f:42:b0:31:90:7e:42:
        04:b9:ef:3a:2b:83:08:3f:6e:a2:12:f7:de:72:eb:e9:
        6f:96:e1:2e:ab:a7:c0:64:54:86:58:fc:c9:f0:55:ab:
        87:87:01:10:26:42:2f:db:27:1d:52:b0:1e:ea:c7:95:
        93:66:17:8a:4f:f4:ee:e7:e3:8f:e6:a5:7e:4a:9f:eb:
        8b:23:76:40:f2:c2:b7:86:e7:67:18:00:23:d0:16:3d:
        6e:e4:15:fe:35:74:d7:81:5d:ac:3a:46:81:33:76:09
    Fingerprint (SHA-256):
        27:F1:22:04:4E:B7:37:53:05:D1:21:B6:9B:83:03:85:C6:48:B0:D7:B9:02:3E:05:42:B6:22:C7:AD:34:9F:FA
    Fingerprint (SHA1):
        22:71:B4:D6:A4:2A:67:BE:83:B8:D5:25:3E:3C:05:24:2F:44:CB:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10736: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154464 (0x1dee44e0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:21 2017
            Not After : Mon May 02 15:45:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:6d:5c:05:4e:3f:2c:e6:87:7c:e4:fc:c6:3f:85:3d:
                    e9:14:ed:15:db:e3:3e:6e:15:5b:fd:85:0d:f0:b5:11:
                    f2:3b:ad:0f:f0:bb:a9:13:e4:1d:c4:7d:a9:03:84:27:
                    2d:12:59:a2:b9:b4:7e:87:15:fc:46:70:a3:71:8e:07:
                    6d:62:5c:b9:34:c4:d6:e7:45:15:53:a7:f5:bf:23:11:
                    50:e8:01:06:eb:6c:3b:65:8d:b0:9f:b1:53:46:cc:d0:
                    29:ae:99:6f:99:ae:1b:7b:31:4a:08:0a:67:fa:e6:81:
                    5b:7e:96:72:d6:5c:39:80:1c:3d:ac:c4:ad:ef:f7:5a:
                    32:72:85:df:f5:05:c8:ad:0d:17:1c:a9:77:bb:61:2b:
                    f1:3b:c5:e9:27:da:58:2c:d0:24:1f:d0:3d:af:79:60:
                    0c:ae:06:cb:7f:71:f3:ad:f8:10:e7:21:a9:de:40:c3:
                    87:c3:70:2c:9d:01:34:30:9e:4b:d0:4b:f9:bd:ec:90:
                    8b:fe:9e:dd:4c:7b:aa:1f:ab:02:71:59:ae:d5:2d:2d:
                    af:f2:7f:f6:54:04:03:93:5f:69:35:d3:14:6e:0a:1b:
                    54:b8:d7:07:ab:75:9d:b4:85:84:1e:df:4f:86:12:b5:
                    b2:93:4a:e0:06:b0:1f:13:e3:ff:cb:88:60:6c:0b:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cf:45:da:97:e2:d6:28:05:5f:fc:72:82:c9:14:f7:44:
        eb:48:51:e1:e3:dd:86:9e:56:6a:b1:30:4f:0a:5b:bd:
        a5:75:6b:a5:3e:75:ae:53:e1:f9:48:74:00:89:05:fd:
        61:0f:0f:68:7d:83:ba:78:75:95:b9:25:0e:f3:c4:a5:
        51:38:6f:e6:ec:9e:6b:c6:63:dd:b1:4c:34:21:ff:d2:
        48:e3:ac:0b:88:72:ad:20:72:6e:3d:a7:c5:dc:82:85:
        c6:86:fb:75:ab:a3:07:bb:28:0c:c3:07:ec:61:95:eb:
        59:da:c0:17:66:39:11:de:07:59:0a:ce:5c:64:ef:1a:
        93:f5:c4:56:9f:ca:b2:40:06:44:0d:a8:db:9d:2b:bf:
        2a:a4:b6:3a:64:2d:19:81:aa:83:bd:8d:1a:26:f9:f8:
        d4:c3:a3:ee:1e:a7:c4:42:77:5d:50:ff:8e:7d:7b:c8:
        39:02:cc:b8:0d:9a:e1:8d:20:a5:00:5b:2e:55:5b:fd:
        7c:9a:26:61:ee:69:4f:78:91:27:66:c4:d9:50:f0:82:
        4b:d2:6e:d3:10:67:df:73:c7:24:7a:3e:d2:fd:83:af:
        73:a4:5e:b2:d7:c2:12:dd:d8:a1:3f:ec:30:18:51:72:
        c4:10:d0:05:5a:37:3c:02:83:a9:d8:a9:79:e6:f4:13
    Fingerprint (SHA-256):
        E0:B5:6F:4A:DA:4F:18:1F:84:46:21:B2:52:CE:C8:0F:6B:A3:79:90:50:3A:E3:FC:E9:22:13:E5:F6:3C:2F:25
    Fingerprint (SHA1):
        B1:59:E2:9F:03:F4:27:B0:8E:9A:23:A9:D2:2B:C3:48:CF:3D:AA:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10737: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154464 (0x1dee44e0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:21 2017
            Not After : Mon May 02 15:45:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:6d:5c:05:4e:3f:2c:e6:87:7c:e4:fc:c6:3f:85:3d:
                    e9:14:ed:15:db:e3:3e:6e:15:5b:fd:85:0d:f0:b5:11:
                    f2:3b:ad:0f:f0:bb:a9:13:e4:1d:c4:7d:a9:03:84:27:
                    2d:12:59:a2:b9:b4:7e:87:15:fc:46:70:a3:71:8e:07:
                    6d:62:5c:b9:34:c4:d6:e7:45:15:53:a7:f5:bf:23:11:
                    50:e8:01:06:eb:6c:3b:65:8d:b0:9f:b1:53:46:cc:d0:
                    29:ae:99:6f:99:ae:1b:7b:31:4a:08:0a:67:fa:e6:81:
                    5b:7e:96:72:d6:5c:39:80:1c:3d:ac:c4:ad:ef:f7:5a:
                    32:72:85:df:f5:05:c8:ad:0d:17:1c:a9:77:bb:61:2b:
                    f1:3b:c5:e9:27:da:58:2c:d0:24:1f:d0:3d:af:79:60:
                    0c:ae:06:cb:7f:71:f3:ad:f8:10:e7:21:a9:de:40:c3:
                    87:c3:70:2c:9d:01:34:30:9e:4b:d0:4b:f9:bd:ec:90:
                    8b:fe:9e:dd:4c:7b:aa:1f:ab:02:71:59:ae:d5:2d:2d:
                    af:f2:7f:f6:54:04:03:93:5f:69:35:d3:14:6e:0a:1b:
                    54:b8:d7:07:ab:75:9d:b4:85:84:1e:df:4f:86:12:b5:
                    b2:93:4a:e0:06:b0:1f:13:e3:ff:cb:88:60:6c:0b:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cf:45:da:97:e2:d6:28:05:5f:fc:72:82:c9:14:f7:44:
        eb:48:51:e1:e3:dd:86:9e:56:6a:b1:30:4f:0a:5b:bd:
        a5:75:6b:a5:3e:75:ae:53:e1:f9:48:74:00:89:05:fd:
        61:0f:0f:68:7d:83:ba:78:75:95:b9:25:0e:f3:c4:a5:
        51:38:6f:e6:ec:9e:6b:c6:63:dd:b1:4c:34:21:ff:d2:
        48:e3:ac:0b:88:72:ad:20:72:6e:3d:a7:c5:dc:82:85:
        c6:86:fb:75:ab:a3:07:bb:28:0c:c3:07:ec:61:95:eb:
        59:da:c0:17:66:39:11:de:07:59:0a:ce:5c:64:ef:1a:
        93:f5:c4:56:9f:ca:b2:40:06:44:0d:a8:db:9d:2b:bf:
        2a:a4:b6:3a:64:2d:19:81:aa:83:bd:8d:1a:26:f9:f8:
        d4:c3:a3:ee:1e:a7:c4:42:77:5d:50:ff:8e:7d:7b:c8:
        39:02:cc:b8:0d:9a:e1:8d:20:a5:00:5b:2e:55:5b:fd:
        7c:9a:26:61:ee:69:4f:78:91:27:66:c4:d9:50:f0:82:
        4b:d2:6e:d3:10:67:df:73:c7:24:7a:3e:d2:fd:83:af:
        73:a4:5e:b2:d7:c2:12:dd:d8:a1:3f:ec:30:18:51:72:
        c4:10:d0:05:5a:37:3c:02:83:a9:d8:a9:79:e6:f4:13
    Fingerprint (SHA-256):
        E0:B5:6F:4A:DA:4F:18:1F:84:46:21:B2:52:CE:C8:0F:6B:A3:79:90:50:3A:E3:FC:E9:22:13:E5:F6:3C:2F:25
    Fingerprint (SHA1):
        B1:59:E2:9F:03:F4:27:B0:8E:9A:23:A9:D2:2B:C3:48:CF:3D:AA:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10738: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154465 (0x1dee44e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:21 2017
            Not After : Mon May 02 15:45:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:e0:ca:12:fa:44:f5:8c:18:1e:5b:d4:f0:b7:c4:26:
                    0a:f1:7d:89:ea:69:63:2e:2f:ec:60:93:74:5c:2f:5b:
                    ec:76:d8:de:64:4e:b7:df:24:c6:3d:02:3f:22:72:1e:
                    5f:cd:a1:9a:c2:d0:72:bc:6b:c8:b7:6b:a1:59:af:7d:
                    95:6f:05:75:8e:5a:f0:75:42:aa:28:a3:ab:b8:41:41:
                    c5:24:cf:87:26:0c:cc:19:83:b9:ba:26:f0:c5:f2:a2:
                    9c:eb:22:6f:59:c1:70:43:55:3b:b9:ee:88:75:28:42:
                    ae:9e:02:02:82:ba:19:e8:c1:13:8d:4b:d8:b5:b8:bc:
                    ef:fd:3a:53:aa:ff:a1:6a:14:93:fc:9c:6b:47:95:31:
                    8c:db:5c:51:b8:b0:11:98:fa:8e:b5:17:b2:29:63:ca:
                    2b:66:4a:e6:a7:cc:94:fd:06:2c:01:8d:e5:2b:c9:8f:
                    32:ce:ca:18:5c:d0:1c:04:02:00:d0:a7:1e:16:95:ab:
                    87:83:6b:26:53:1a:13:5f:4f:57:79:5a:66:97:76:b1:
                    d0:69:0a:39:17:26:05:0f:52:67:cd:2c:72:5d:56:eb:
                    f8:c6:11:86:c4:12:01:9f:29:9f:fd:bb:97:e0:4a:d6:
                    8f:e2:bf:76:32:a0:af:65:20:75:55:97:50:36:a0:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:95:da:85:0c:8e:7c:b3:f4:6b:5f:74:b7:af:1a:0b:
        02:1a:a8:a9:05:e0:35:2b:c3:b9:c2:a2:da:c2:05:34:
        95:93:2f:55:cf:0e:14:a1:af:24:39:10:83:17:c9:19:
        d4:8e:38:54:df:55:1b:c7:6b:0a:a7:41:7a:8a:ff:95:
        d0:f3:15:60:20:76:ae:4d:6e:94:8c:69:d6:1b:fe:14:
        70:fa:d5:b9:93:34:d8:79:59:87:04:5c:7b:a3:fd:04:
        83:63:04:22:84:ff:42:be:74:4f:5a:04:cb:48:99:cd:
        97:9d:e5:a2:a3:d3:c1:bd:e3:eb:74:04:c9:24:08:2b:
        42:80:b1:20:31:c6:c7:f8:5e:cb:3b:a7:b1:8d:09:55:
        b3:c4:96:49:08:56:74:ab:08:5e:04:e1:33:d2:c8:5f:
        77:d8:85:50:4f:d1:a2:31:20:33:45:39:2d:25:21:74:
        54:7d:10:70:f8:7e:4a:09:68:c8:ed:6a:f9:36:4a:6e:
        61:e8:62:0d:a6:98:ea:6f:35:77:ba:20:32:29:17:ef:
        ea:1c:1f:ad:cd:2b:89:73:ef:ed:76:89:aa:fa:2f:e0:
        29:34:44:ac:29:30:1a:4a:95:ff:fd:e3:f4:cd:6e:3c:
        9c:e6:70:5e:78:23:8e:c6:75:8f:d6:55:64:65:38:3e
    Fingerprint (SHA-256):
        C0:5F:C4:BE:6E:77:8F:9F:8E:81:52:41:C6:0A:44:8A:08:66:5C:7A:4A:F4:39:98:39:98:AE:90:73:09:9F:D4
    Fingerprint (SHA1):
        52:F6:E3:EB:7A:6E:B0:56:29:25:7B:CE:4E:0E:85:B5:B0:00:31:E6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10739: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154465 (0x1dee44e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:21 2017
            Not After : Mon May 02 15:45:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:e0:ca:12:fa:44:f5:8c:18:1e:5b:d4:f0:b7:c4:26:
                    0a:f1:7d:89:ea:69:63:2e:2f:ec:60:93:74:5c:2f:5b:
                    ec:76:d8:de:64:4e:b7:df:24:c6:3d:02:3f:22:72:1e:
                    5f:cd:a1:9a:c2:d0:72:bc:6b:c8:b7:6b:a1:59:af:7d:
                    95:6f:05:75:8e:5a:f0:75:42:aa:28:a3:ab:b8:41:41:
                    c5:24:cf:87:26:0c:cc:19:83:b9:ba:26:f0:c5:f2:a2:
                    9c:eb:22:6f:59:c1:70:43:55:3b:b9:ee:88:75:28:42:
                    ae:9e:02:02:82:ba:19:e8:c1:13:8d:4b:d8:b5:b8:bc:
                    ef:fd:3a:53:aa:ff:a1:6a:14:93:fc:9c:6b:47:95:31:
                    8c:db:5c:51:b8:b0:11:98:fa:8e:b5:17:b2:29:63:ca:
                    2b:66:4a:e6:a7:cc:94:fd:06:2c:01:8d:e5:2b:c9:8f:
                    32:ce:ca:18:5c:d0:1c:04:02:00:d0:a7:1e:16:95:ab:
                    87:83:6b:26:53:1a:13:5f:4f:57:79:5a:66:97:76:b1:
                    d0:69:0a:39:17:26:05:0f:52:67:cd:2c:72:5d:56:eb:
                    f8:c6:11:86:c4:12:01:9f:29:9f:fd:bb:97:e0:4a:d6:
                    8f:e2:bf:76:32:a0:af:65:20:75:55:97:50:36:a0:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:95:da:85:0c:8e:7c:b3:f4:6b:5f:74:b7:af:1a:0b:
        02:1a:a8:a9:05:e0:35:2b:c3:b9:c2:a2:da:c2:05:34:
        95:93:2f:55:cf:0e:14:a1:af:24:39:10:83:17:c9:19:
        d4:8e:38:54:df:55:1b:c7:6b:0a:a7:41:7a:8a:ff:95:
        d0:f3:15:60:20:76:ae:4d:6e:94:8c:69:d6:1b:fe:14:
        70:fa:d5:b9:93:34:d8:79:59:87:04:5c:7b:a3:fd:04:
        83:63:04:22:84:ff:42:be:74:4f:5a:04:cb:48:99:cd:
        97:9d:e5:a2:a3:d3:c1:bd:e3:eb:74:04:c9:24:08:2b:
        42:80:b1:20:31:c6:c7:f8:5e:cb:3b:a7:b1:8d:09:55:
        b3:c4:96:49:08:56:74:ab:08:5e:04:e1:33:d2:c8:5f:
        77:d8:85:50:4f:d1:a2:31:20:33:45:39:2d:25:21:74:
        54:7d:10:70:f8:7e:4a:09:68:c8:ed:6a:f9:36:4a:6e:
        61:e8:62:0d:a6:98:ea:6f:35:77:ba:20:32:29:17:ef:
        ea:1c:1f:ad:cd:2b:89:73:ef:ed:76:89:aa:fa:2f:e0:
        29:34:44:ac:29:30:1a:4a:95:ff:fd:e3:f4:cd:6e:3c:
        9c:e6:70:5e:78:23:8e:c6:75:8f:d6:55:64:65:38:3e
    Fingerprint (SHA-256):
        C0:5F:C4:BE:6E:77:8F:9F:8E:81:52:41:C6:0A:44:8A:08:66:5C:7A:4A:F4:39:98:39:98:AE:90:73:09:9F:D4
    Fingerprint (SHA1):
        52:F6:E3:EB:7A:6E:B0:56:29:25:7B:CE:4E:0E:85:B5:B0:00:31:E6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10740: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #10741: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154468 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10742: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #10743: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10744: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10745: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154469   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10746: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10747: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10748: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10749: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154470   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10750: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10751: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #10752: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10753: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502154471   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10754: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10755: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #10756: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10757: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154472   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10758: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10759: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #10760: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10761: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154473   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10762: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10763: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #10764: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10765: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502154474   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10766: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10767: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10768: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #10769: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #10770: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10771: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #10772: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154468 (0x1dee44e4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:26 2017
            Not After : Mon May 02 15:45:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:48:8e:0c:a0:9d:f5:db:d5:2f:11:2f:fd:94:32:ec:
                    f2:f7:b0:59:67:4e:2a:cd:6f:47:ad:3e:d0:68:a7:f3:
                    dc:04:d3:78:8f:9c:8e:49:7a:57:8e:5f:e4:58:f9:e1:
                    64:d6:ce:88:5b:22:e1:57:ff:f4:49:ff:df:7b:d6:10:
                    5e:d8:a1:f3:2b:0e:72:98:1b:fc:cc:d8:f0:b4:e8:f6:
                    5b:e2:b7:d2:c1:10:85:5b:ea:a7:45:40:84:30:86:00:
                    0a:c1:42:ac:a6:86:19:1a:f6:24:4b:49:8c:25:c6:ae:
                    e3:35:10:8f:1f:ce:72:fd:c4:db:53:f6:fd:95:3b:97:
                    eb:07:c4:dd:f5:7e:3a:af:a9:7d:ea:1c:bc:c7:b1:4e:
                    e5:ac:83:d8:30:ca:0e:3a:ec:f1:fe:ec:ce:58:ae:86:
                    74:b7:d6:ea:98:af:f4:15:b2:2a:69:e4:01:e6:bd:7d:
                    48:8d:38:be:30:42:f7:09:5c:0d:73:c5:8a:a6:27:de:
                    1c:cc:e1:5b:e1:be:36:34:7c:ef:09:5d:1c:34:54:f1:
                    9e:48:cf:eb:f7:b3:14:f8:9a:b3:16:31:5a:15:73:e0:
                    2d:5b:99:8d:6b:c1:7f:55:6f:73:d9:47:53:7f:c4:3e:
                    a4:47:7a:8d:a6:e2:c3:b3:23:f9:a7:b3:ed:f0:e8:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:96:aa:5a:70:5e:2b:87:4a:ea:5f:a0:a7:44:4f:e0:
        45:96:8b:63:90:d1:d5:5f:5b:8f:1a:26:0b:f3:0e:f8:
        f5:d1:1b:2a:80:5d:f2:42:bb:f5:ce:a6:0c:58:ff:91:
        5e:f6:1b:b4:6a:14:b7:e9:45:24:6d:58:b8:c6:27:65:
        ac:e9:6e:b9:de:fc:79:42:03:23:39:e5:a8:84:83:a5:
        b3:a7:3a:68:79:ef:e4:de:4c:6f:6e:94:ca:2d:71:bb:
        69:9a:62:19:12:1b:37:d8:3c:9b:eb:c1:2a:1e:97:75:
        ae:50:8c:a4:98:3e:6a:1d:a8:55:d6:8c:1d:19:61:7f:
        d2:1b:b7:10:28:e9:58:e5:7c:b1:58:da:ed:7a:a5:87:
        d1:65:f9:3b:fd:78:51:37:1c:04:3d:01:28:5f:67:73:
        50:29:26:19:ed:10:fd:0c:c8:93:d6:ae:5d:02:5a:45:
        e3:fa:dc:fb:75:2b:67:f6:83:96:96:12:33:12:16:00:
        47:e3:eb:79:1d:05:6f:d5:46:03:21:d0:97:a7:8d:e5:
        05:2f:9b:3c:87:65:04:97:84:d2:ad:0a:50:c7:ab:d9:
        0f:67:2b:04:69:91:8e:d8:dd:3b:ee:a8:96:ff:67:7e:
        00:21:06:d1:1b:68:32:90:f9:fa:a4:e9:40:88:97:0a
    Fingerprint (SHA-256):
        69:EF:4A:13:61:46:B7:11:40:32:F6:D3:03:1E:C5:99:C9:A1:83:A7:55:47:0F:8A:23:D1:BF:FD:DD:37:B7:1D
    Fingerprint (SHA1):
        5C:7C:CD:51:7C:1E:5E:5C:C6:2B:E4:08:D9:A9:71:CF:78:94:69:0C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10773: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10774: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10775: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10776: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154468 (0x1dee44e4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:26 2017
            Not After : Mon May 02 15:45:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:48:8e:0c:a0:9d:f5:db:d5:2f:11:2f:fd:94:32:ec:
                    f2:f7:b0:59:67:4e:2a:cd:6f:47:ad:3e:d0:68:a7:f3:
                    dc:04:d3:78:8f:9c:8e:49:7a:57:8e:5f:e4:58:f9:e1:
                    64:d6:ce:88:5b:22:e1:57:ff:f4:49:ff:df:7b:d6:10:
                    5e:d8:a1:f3:2b:0e:72:98:1b:fc:cc:d8:f0:b4:e8:f6:
                    5b:e2:b7:d2:c1:10:85:5b:ea:a7:45:40:84:30:86:00:
                    0a:c1:42:ac:a6:86:19:1a:f6:24:4b:49:8c:25:c6:ae:
                    e3:35:10:8f:1f:ce:72:fd:c4:db:53:f6:fd:95:3b:97:
                    eb:07:c4:dd:f5:7e:3a:af:a9:7d:ea:1c:bc:c7:b1:4e:
                    e5:ac:83:d8:30:ca:0e:3a:ec:f1:fe:ec:ce:58:ae:86:
                    74:b7:d6:ea:98:af:f4:15:b2:2a:69:e4:01:e6:bd:7d:
                    48:8d:38:be:30:42:f7:09:5c:0d:73:c5:8a:a6:27:de:
                    1c:cc:e1:5b:e1:be:36:34:7c:ef:09:5d:1c:34:54:f1:
                    9e:48:cf:eb:f7:b3:14:f8:9a:b3:16:31:5a:15:73:e0:
                    2d:5b:99:8d:6b:c1:7f:55:6f:73:d9:47:53:7f:c4:3e:
                    a4:47:7a:8d:a6:e2:c3:b3:23:f9:a7:b3:ed:f0:e8:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:96:aa:5a:70:5e:2b:87:4a:ea:5f:a0:a7:44:4f:e0:
        45:96:8b:63:90:d1:d5:5f:5b:8f:1a:26:0b:f3:0e:f8:
        f5:d1:1b:2a:80:5d:f2:42:bb:f5:ce:a6:0c:58:ff:91:
        5e:f6:1b:b4:6a:14:b7:e9:45:24:6d:58:b8:c6:27:65:
        ac:e9:6e:b9:de:fc:79:42:03:23:39:e5:a8:84:83:a5:
        b3:a7:3a:68:79:ef:e4:de:4c:6f:6e:94:ca:2d:71:bb:
        69:9a:62:19:12:1b:37:d8:3c:9b:eb:c1:2a:1e:97:75:
        ae:50:8c:a4:98:3e:6a:1d:a8:55:d6:8c:1d:19:61:7f:
        d2:1b:b7:10:28:e9:58:e5:7c:b1:58:da:ed:7a:a5:87:
        d1:65:f9:3b:fd:78:51:37:1c:04:3d:01:28:5f:67:73:
        50:29:26:19:ed:10:fd:0c:c8:93:d6:ae:5d:02:5a:45:
        e3:fa:dc:fb:75:2b:67:f6:83:96:96:12:33:12:16:00:
        47:e3:eb:79:1d:05:6f:d5:46:03:21:d0:97:a7:8d:e5:
        05:2f:9b:3c:87:65:04:97:84:d2:ad:0a:50:c7:ab:d9:
        0f:67:2b:04:69:91:8e:d8:dd:3b:ee:a8:96:ff:67:7e:
        00:21:06:d1:1b:68:32:90:f9:fa:a4:e9:40:88:97:0a
    Fingerprint (SHA-256):
        69:EF:4A:13:61:46:B7:11:40:32:F6:D3:03:1E:C5:99:C9:A1:83:A7:55:47:0F:8A:23:D1:BF:FD:DD:37:B7:1D
    Fingerprint (SHA1):
        5C:7C:CD:51:7C:1E:5E:5C:C6:2B:E4:08:D9:A9:71:CF:78:94:69:0C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10777: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10778: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #10779: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154475 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10780: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #10781: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10782: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10783: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154476   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10784: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10785: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #10786: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10787: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502154477   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10788: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10789: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #10790: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10791: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502154478   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10792: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10793: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #10794: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10795: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502154479   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10796: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10797: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #10798: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10799: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502154480   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10800: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10801: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #10802: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10803: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502154481   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10804: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10805: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #10806: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10807: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502154482   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10808: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10809: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #10810: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10811: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502154483   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10812: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10813: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #10814: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10815: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502154484   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10816: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10817: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #10818: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10819: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502154485   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10820: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10821: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #10822: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10823: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502154486   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10824: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10825: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #10826: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10827: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502154487   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10828: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10829: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #10830: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10831: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502154488   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10832: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10833: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #10834: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10835: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502154489   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10836: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10837: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #10838: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10839: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502154490   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10840: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10841: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #10842: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10843: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502154491   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10844: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10845: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #10846: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10847: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502154492   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10848: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10849: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #10850: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10851: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502154493   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10852: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10853: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #10854: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10855: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502154494   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10856: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10857: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #10858: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10859: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502154495   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10860: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10861: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #10862: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10863: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502154496   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10864: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10865: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #10866: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10867: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502154497   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10868: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10869: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #10870: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10871: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502154498   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10872: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10873: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #10874: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10875: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502154499   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10876: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10877: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #10878: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10879: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502154500   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10880: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10881: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #10882: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10883: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502154501   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10884: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10885: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #10886: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10887: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502154502   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10888: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10889: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #10890: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10891: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502154503   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10892: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10893: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #10894: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10895: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502154504   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10896: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10897: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10898: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10899: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10900: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10901: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10902: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10903: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10904: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10905: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10906: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10907: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10908: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10909: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10910: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10911: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10912: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10913: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10914: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10915: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10916: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10917: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10918: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10919: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10920: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154475 (0x1dee44eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:32 2017
            Not After : Mon May 02 15:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:18:2e:84:8a:a0:ce:44:bf:4f:92:58:2a:54:aa:8c:
                    16:bc:59:65:9a:13:dd:dc:0c:70:01:94:56:22:45:52:
                    be:c9:79:b4:86:f8:e0:e8:95:e7:9f:24:fa:8a:73:b0:
                    20:fd:32:48:4f:d9:95:13:ea:37:ce:5a:24:91:65:1b:
                    75:d9:50:aa:53:ea:67:8f:4c:43:0d:3e:98:81:d3:6e:
                    b9:18:14:f9:d5:13:4b:d6:aa:eb:b5:13:b2:ca:dd:92:
                    e6:6a:db:6e:b4:f0:74:7b:00:8c:9f:8b:c9:bf:e1:b0:
                    4b:16:58:98:2c:34:39:9d:a6:de:1d:11:4b:c6:aa:56:
                    f3:c3:ab:2e:96:6a:2e:95:2e:c1:b5:3e:ca:7c:ca:0e:
                    02:27:a4:1c:67:43:04:21:e8:ff:0b:9f:68:99:07:00:
                    38:97:f9:3d:80:d3:3f:d5:67:78:9c:e2:c4:5c:f6:f4:
                    b1:92:8c:d6:0c:ec:8f:04:2e:45:86:55:86:5c:b0:c1:
                    71:b4:90:ab:bc:c8:be:2b:7b:a4:83:21:f0:f6:f1:34:
                    bc:76:e5:fb:82:c2:60:9d:65:57:41:50:41:f0:bd:a0:
                    a8:c7:bf:6c:80:85:6b:7e:94:df:09:ab:9b:f1:2f:6c:
                    9f:85:c0:5b:c0:11:7b:62:63:23:4a:98:d8:d6:d6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:28:49:1a:c6:7f:a6:0b:39:1c:f3:56:25:df:fb:02:
        7d:3c:61:7e:89:65:61:37:12:57:7b:d4:6d:ac:16:f0:
        71:0a:a8:15:66:58:4f:69:42:7f:ae:12:49:fe:c1:43:
        35:13:8c:0d:1f:5d:08:9a:eb:6d:c8:54:13:4a:be:48:
        34:6c:6f:5e:68:cf:57:ab:8f:31:11:e5:8b:19:07:89:
        a7:ec:78:77:6d:7c:df:e3:e4:70:08:6d:6d:a3:2d:58:
        8c:f6:d3:15:66:dd:de:a7:8c:9b:fb:d1:7e:48:67:ca:
        a7:b1:da:e4:58:2a:4e:44:81:94:5e:88:d2:7d:fd:08:
        ae:f3:cd:a5:cf:65:7f:4c:b7:9c:5b:81:bb:aa:cb:c2:
        0c:e7:b8:2e:98:a4:3b:53:f4:a0:54:c1:84:fe:07:83:
        38:8b:fa:09:f6:a7:83:30:41:8e:f6:e5:3e:00:11:27:
        6a:ce:ff:71:cd:6d:a1:e7:66:0e:d0:b3:f1:86:df:8e:
        ba:75:b7:c0:a9:e6:2a:21:8f:f2:ff:79:9b:48:62:95:
        bd:5c:66:0d:69:c4:46:94:6e:ec:ff:81:1b:74:3f:0a:
        b7:c4:5e:4e:bd:29:6f:7a:62:ea:f0:16:bb:34:e0:56:
        fb:f9:98:ad:9d:94:6c:47:02:51:5d:61:98:c7:91:3c
    Fingerprint (SHA-256):
        B3:FA:82:6E:59:E1:83:DE:DF:D7:D0:81:76:0E:38:DC:CB:49:04:4E:BF:3E:B8:E8:B5:1C:05:38:7B:2F:41:0B
    Fingerprint (SHA1):
        CC:1D:31:81:81:0D:6C:E2:C6:03:4E:1E:EF:84:3E:0F:FB:E3:3E:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10921: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10922: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10923: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154505 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10924: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10925: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #10926: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10927: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502154506   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10928: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10929: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #10930: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10931: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502154507   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10932: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10933: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #10934: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10935: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502154508   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10936: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10937: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #10938: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10939: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502154509   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10940: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10941: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #10942: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10943: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502154510   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10944: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10945: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #10946: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10947: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502154511   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10948: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10949: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10950: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154505 (0x1dee4509)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:d7:78:f5:cf:54:d7:50:6b:94:b1:13:34:6a:9f:c1:
                    80:b8:62:1e:5a:47:0c:3a:c9:cc:6f:46:68:6c:52:77:
                    42:6e:f0:93:21:e2:6e:d2:9f:12:46:6b:b2:f0:12:90:
                    9d:97:c7:2d:9a:4d:9a:d0:e6:e4:d2:f4:8b:a5:4f:07:
                    5b:ed:fc:dc:19:c7:64:14:ee:ae:4d:73:1c:ad:c4:46:
                    28:22:e0:3a:2a:f3:01:b4:25:dc:0c:4e:6e:d5:5c:f2:
                    a4:07:ad:2e:f9:33:85:24:d0:3f:fd:50:7d:f7:25:24:
                    70:6d:f1:63:3d:04:46:14:1f:c5:92:dc:21:ab:c7:19:
                    34:25:fb:db:cc:e8:e2:78:f0:87:99:fa:a5:85:ca:07:
                    cf:0c:ff:cc:05:47:a3:4f:28:fa:e6:f2:01:80:ba:3c:
                    52:c8:68:c9:87:0a:06:de:e1:4c:84:54:ff:35:06:9c:
                    05:51:b9:37:fa:98:85:98:81:a4:df:d5:39:fa:97:54:
                    9f:55:a8:48:80:33:8c:af:c6:75:fc:3f:53:1e:f4:51:
                    c5:e8:9f:3a:a4:36:5b:42:b0:30:1a:8f:75:d2:3e:31:
                    56:ff:f2:2b:ee:f5:da:5d:77:6d:63:4d:86:0f:ae:f3:
                    cc:ad:31:c5:c4:86:60:1b:84:ea:f6:ea:e1:dc:04:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:46:bd:b2:81:4e:2b:f2:da:20:38:a0:a0:36:dc:23:
        c1:6b:2c:8c:62:29:3e:91:9e:21:b1:4b:e7:df:c1:f6:
        83:04:c4:14:cf:73:f4:21:fc:73:3e:ab:24:18:5c:7d:
        ac:c9:84:74:18:4d:e0:d6:b5:24:86:c1:4f:fb:bc:0c:
        ad:2e:9c:7f:20:42:7a:b4:bd:b7:bd:6c:70:57:92:17:
        95:61:31:12:3c:30:ab:a8:fc:60:e0:07:9d:43:82:82:
        a4:e4:b0:92:e3:64:84:54:41:f6:91:10:b2:c7:0e:d1:
        01:70:1c:f1:f0:c7:10:3a:c9:ae:f2:06:5e:a7:7a:a0:
        32:fd:4e:e5:fc:d9:11:4b:a7:44:7b:22:ab:47:45:e3:
        59:08:5b:c6:e2:72:a9:cd:d9:c6:55:f9:48:db:00:53:
        95:6c:06:b4:2b:c3:68:8f:22:05:19:17:95:31:06:e3:
        53:a6:c7:03:d4:a0:0c:59:90:8d:c1:d2:ac:a6:46:cc:
        c3:c9:d4:cb:b0:08:23:3c:e8:f6:5e:44:6f:0b:ec:43:
        b0:37:05:59:21:de:b7:a1:dc:11:76:ed:46:4e:25:7d:
        b3:9d:ce:2e:d2:96:03:8b:0c:57:47:32:0f:fd:d2:e9:
        a2:0a:15:bc:e6:2f:b1:88:bc:9f:7c:06:ab:96:0c:43
    Fingerprint (SHA-256):
        08:3D:77:B8:06:08:40:49:DF:43:06:69:8C:36:88:EB:DA:57:15:A1:9C:55:E5:D6:C9:BD:56:F6:8C:5C:C6:D0
    Fingerprint (SHA1):
        89:51:E7:9B:E3:98:88:98:51:5F:41:85:2F:49:C3:F3:4B:01:0F:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #10951: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10952: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10953: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10954: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154505 (0x1dee4509)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:d7:78:f5:cf:54:d7:50:6b:94:b1:13:34:6a:9f:c1:
                    80:b8:62:1e:5a:47:0c:3a:c9:cc:6f:46:68:6c:52:77:
                    42:6e:f0:93:21:e2:6e:d2:9f:12:46:6b:b2:f0:12:90:
                    9d:97:c7:2d:9a:4d:9a:d0:e6:e4:d2:f4:8b:a5:4f:07:
                    5b:ed:fc:dc:19:c7:64:14:ee:ae:4d:73:1c:ad:c4:46:
                    28:22:e0:3a:2a:f3:01:b4:25:dc:0c:4e:6e:d5:5c:f2:
                    a4:07:ad:2e:f9:33:85:24:d0:3f:fd:50:7d:f7:25:24:
                    70:6d:f1:63:3d:04:46:14:1f:c5:92:dc:21:ab:c7:19:
                    34:25:fb:db:cc:e8:e2:78:f0:87:99:fa:a5:85:ca:07:
                    cf:0c:ff:cc:05:47:a3:4f:28:fa:e6:f2:01:80:ba:3c:
                    52:c8:68:c9:87:0a:06:de:e1:4c:84:54:ff:35:06:9c:
                    05:51:b9:37:fa:98:85:98:81:a4:df:d5:39:fa:97:54:
                    9f:55:a8:48:80:33:8c:af:c6:75:fc:3f:53:1e:f4:51:
                    c5:e8:9f:3a:a4:36:5b:42:b0:30:1a:8f:75:d2:3e:31:
                    56:ff:f2:2b:ee:f5:da:5d:77:6d:63:4d:86:0f:ae:f3:
                    cc:ad:31:c5:c4:86:60:1b:84:ea:f6:ea:e1:dc:04:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:46:bd:b2:81:4e:2b:f2:da:20:38:a0:a0:36:dc:23:
        c1:6b:2c:8c:62:29:3e:91:9e:21:b1:4b:e7:df:c1:f6:
        83:04:c4:14:cf:73:f4:21:fc:73:3e:ab:24:18:5c:7d:
        ac:c9:84:74:18:4d:e0:d6:b5:24:86:c1:4f:fb:bc:0c:
        ad:2e:9c:7f:20:42:7a:b4:bd:b7:bd:6c:70:57:92:17:
        95:61:31:12:3c:30:ab:a8:fc:60:e0:07:9d:43:82:82:
        a4:e4:b0:92:e3:64:84:54:41:f6:91:10:b2:c7:0e:d1:
        01:70:1c:f1:f0:c7:10:3a:c9:ae:f2:06:5e:a7:7a:a0:
        32:fd:4e:e5:fc:d9:11:4b:a7:44:7b:22:ab:47:45:e3:
        59:08:5b:c6:e2:72:a9:cd:d9:c6:55:f9:48:db:00:53:
        95:6c:06:b4:2b:c3:68:8f:22:05:19:17:95:31:06:e3:
        53:a6:c7:03:d4:a0:0c:59:90:8d:c1:d2:ac:a6:46:cc:
        c3:c9:d4:cb:b0:08:23:3c:e8:f6:5e:44:6f:0b:ec:43:
        b0:37:05:59:21:de:b7:a1:dc:11:76:ed:46:4e:25:7d:
        b3:9d:ce:2e:d2:96:03:8b:0c:57:47:32:0f:fd:d2:e9:
        a2:0a:15:bc:e6:2f:b1:88:bc:9f:7c:06:ab:96:0c:43
    Fingerprint (SHA-256):
        08:3D:77:B8:06:08:40:49:DF:43:06:69:8C:36:88:EB:DA:57:15:A1:9C:55:E5:D6:C9:BD:56:F6:8C:5C:C6:D0
    Fingerprint (SHA1):
        89:51:E7:9B:E3:98:88:98:51:5F:41:85:2F:49:C3:F3:4B:01:0F:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #10955: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10956: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10957: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10958: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154512 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10959: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10960: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10961: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10962: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154513   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #10963: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10964: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10965: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10966: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154514   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10967: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10968: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10969: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10970: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154515   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10971: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10972: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10973: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10974: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10975: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10976: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154512 (0x1dee4510)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:58 2017
            Not After : Mon May 02 15:45:58 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:fe:e5:a8:6d:fc:4e:4f:fd:50:5f:31:85:d0:4d:71:
                    4f:48:0d:65:bc:30:44:45:fa:a6:c4:96:70:df:52:6c:
                    e2:63:8b:81:78:c1:12:86:7e:9b:3f:66:4e:a8:84:25:
                    9c:5a:e3:67:85:73:6f:b9:fc:86:9a:98:14:5a:b0:98:
                    67:9f:ae:c5:59:f7:f5:e5:b3:04:ac:67:9d:cc:0b:a6:
                    21:cf:51:0d:26:de:16:3c:1c:3e:13:cd:ba:90:96:3f:
                    ff:a5:6c:2d:f5:58:82:ee:f1:5c:c0:36:04:02:f8:78:
                    61:6e:e7:a9:be:fc:54:3b:6e:7c:fa:83:15:91:21:77:
                    93:ff:d6:dc:96:bb:33:cf:06:85:5a:a6:1e:9e:ee:89:
                    d5:d7:52:4e:75:0d:5b:43:7b:b4:91:da:61:06:cb:4f:
                    38:10:50:f6:5c:45:9e:3d:83:1b:45:c9:af:ae:a1:3b:
                    e0:53:25:4e:c9:51:10:ed:a0:9c:da:d4:1d:c3:dd:38:
                    c0:48:de:0e:d6:c2:17:59:f8:e4:92:34:00:6a:ab:d5:
                    75:35:f9:e2:fc:da:ad:ec:d1:4b:57:86:2c:1c:41:1c:
                    a9:1f:ff:0f:e0:71:d0:19:9e:b6:c0:fe:ca:99:1f:1f:
                    5e:ed:df:98:e4:65:81:1e:c8:34:aa:06:5c:7d:61:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:8f:a0:7d:aa:42:43:aa:9e:da:8d:1e:ac:3b:5e:24:
        8d:25:dc:53:a1:52:04:6f:38:b8:15:48:40:f7:d3:15:
        10:e2:b7:5c:fd:e4:06:4a:63:3a:73:ce:5c:a9:f9:8d:
        8d:b7:a9:aa:a3:94:12:9e:1f:9b:f8:77:be:91:b7:4b:
        5c:e4:06:c5:38:24:b0:7f:1d:27:79:de:04:a6:89:63:
        cb:3d:38:f7:1f:33:4b:ac:e9:bf:88:bb:0f:e4:39:65:
        6c:b6:83:e6:f4:11:d8:90:ff:18:c5:b7:a8:bd:20:be:
        a0:bb:e5:64:1c:04:4e:15:5b:b2:90:65:ee:2d:7f:93:
        93:0f:2e:7e:d9:21:03:89:80:0c:aa:15:6c:c7:2f:fc:
        1a:5f:2f:9a:cf:67:7e:f7:e7:12:4b:9e:94:df:1d:d4:
        11:52:0d:fc:51:1e:6a:fa:0d:23:7a:8d:c9:18:07:ff:
        c3:d3:e1:5d:7b:8d:60:77:bb:5b:ab:4e:e6:86:91:25:
        89:af:89:99:f9:12:72:60:1c:8a:92:97:94:58:f1:d1:
        68:3d:93:29:b1:28:c3:78:a1:8b:ea:f8:1a:81:59:c9:
        f9:8c:e6:ca:89:af:31:49:10:51:34:82:1b:f7:28:36:
        ba:a2:2c:0c:bb:b6:9e:1b:2a:2b:a5:c6:9e:5f:6e:8b
    Fingerprint (SHA-256):
        D5:0B:D7:CF:0A:81:D7:26:1A:55:DD:46:1C:D3:81:2B:E8:EF:AD:7C:0E:80:B3:2B:0F:6F:4F:07:7F:C0:57:13
    Fingerprint (SHA1):
        9A:E6:27:1C:69:15:68:ED:6F:73:21:23:6D:8E:50:98:80:38:7B:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10977: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10978: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10979: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154513 (0x1dee4511)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:45:59 2017
            Not After : Mon May 02 15:45:59 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b6:09:6c:f5:53:0a:b3:1d:f9:45:5f:49:b8:19:46:
                    dc:3b:7d:1c:af:39:98:5c:63:70:d6:2f:ec:5e:c0:d4:
                    65:30:e8:e9:74:ff:5b:27:10:4e:10:fe:94:96:18:c1:
                    a2:15:42:cd:ec:9d:a9:76:75:ea:fc:6e:d0:07:16:4d:
                    4b:30:cd:37:12:73:38:fb:d7:cb:c9:e4:29:fc:3e:9f:
                    01:0f:ef:3f:86:20:30:34:36:83:be:28:66:7e:8e:dc:
                    46:11:b1:dc:54:a2:ce:e7:79:39:7a:14:89:c3:5a:dc:
                    8c:a7:04:cb:9a:68:fb:c4:02:08:50:4b:08:7c:89:42:
                    f9:ec:e4:a4:54:11:38:ae:95:5d:39:a5:05:0d:ce:eb:
                    00:03:20:98:48:c0:49:33:db:ef:02:4d:07:6f:0b:68:
                    e0:0f:36:01:c9:b4:b3:34:b7:33:e0:62:9d:8d:50:05:
                    c6:f5:6c:6b:58:2d:55:51:73:d4:a5:a3:a0:48:bf:44:
                    2e:0e:a1:a7:cc:04:92:f4:2f:a5:c0:f6:6e:22:9d:51:
                    6b:06:d5:a6:05:4c:e1:04:1d:b0:2f:48:0a:7a:45:f8:
                    62:38:25:d4:8f:32:03:4c:2c:f2:51:f6:7c:16:2d:3c:
                    4f:34:7d:72:9f:71:fc:d2:9c:ec:bb:42:35:2a:16:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:91:6a:f8:e7:3d:23:aa:a5:4d:fe:2c:7f:bd:e0:0b:
        41:ea:fe:da:cb:cf:ab:d6:25:e0:2b:85:95:36:08:6d:
        5d:62:46:39:8c:65:e5:ce:d7:20:22:06:10:2b:48:b8:
        df:17:3e:0e:2c:28:80:87:ed:e7:8a:de:83:0c:82:ef:
        35:d3:b7:04:b1:52:a9:dc:54:5f:f1:4e:e3:af:86:49:
        2f:ac:7a:91:c8:9e:58:5e:a1:0e:40:28:42:22:35:ae:
        b6:82:81:0c:5a:d4:01:44:86:94:ea:85:56:81:76:4c:
        5d:6f:f8:12:63:6e:c6:18:2a:b2:11:34:16:b6:9d:50:
        5f:6e:ba:01:fb:d6:49:b4:0f:33:be:32:fc:81:bd:c3:
        89:96:19:29:c4:af:7a:94:83:f3:e6:bd:41:a4:1e:4e:
        c5:5f:d6:e8:89:05:50:7b:b4:d5:e1:e2:37:14:b2:7d:
        44:69:1e:11:2e:df:e0:22:72:c1:79:b2:76:5c:db:cd:
        26:e1:10:0f:cd:ee:72:84:82:9c:48:e8:29:c5:03:57:
        31:c9:f2:f9:49:99:74:9c:bf:68:70:ac:01:0e:3f:3b:
        37:c0:cc:09:23:17:3f:eb:0f:57:43:72:3e:2b:50:82:
        ab:13:5c:ba:7a:4b:34:a9:b8:96:b2:08:67:41:9b:b1
    Fingerprint (SHA-256):
        E4:AB:E4:56:64:CB:7E:EF:55:3A:24:5F:8D:86:6A:60:76:73:C5:9E:43:1E:E1:36:72:51:C4:0F:43:5D:36:A4
    Fingerprint (SHA1):
        02:69:65:F1:F7:8D:0D:1E:5E:45:BF:2B:5D:51:90:4E:50:C0:75:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10980: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10981: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154514 (0x1dee4512)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:46:01 2017
            Not After : Mon May 02 15:46:01 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:f7:9b:0e:71:66:2e:aa:c0:67:a7:b1:94:1c:ba:0a:
                    79:0e:d0:3f:43:1f:ef:a6:d3:db:49:33:45:f3:df:fe:
                    0d:11:4f:f1:72:06:0e:91:56:d3:88:5e:28:da:14:8e:
                    48:9d:d9:e6:d2:ef:a0:6b:04:56:6d:e5:d6:a2:41:a1:
                    23:e1:e7:a7:a0:c4:b1:8e:17:90:bf:06:0d:b7:8f:a5:
                    2a:9f:a6:7d:2e:43:27:72:da:81:fa:ef:f7:2a:69:34:
                    04:0d:50:df:3c:50:df:64:c6:2d:c3:82:1b:f0:e1:68:
                    2c:14:b9:f5:10:c8:13:f1:3c:ee:85:91:cd:d6:b5:96:
                    fd:a2:f2:8e:e0:8b:d9:f9:9a:e8:8f:68:65:a7:b6:cc:
                    ee:a8:25:44:ef:b6:32:1f:6c:79:19:e4:5a:fe:9c:2c:
                    68:6b:10:88:e9:14:79:23:80:e1:a3:88:5d:1f:df:9e:
                    dc:98:37:5e:6f:23:8e:d7:87:d5:a4:65:26:d2:db:2a:
                    98:e2:d1:97:34:8b:8b:7e:fe:63:a5:6b:2e:23:22:9f:
                    de:42:df:07:8f:9c:e9:6b:d7:f5:77:ef:ed:7f:80:d4:
                    e7:84:31:e1:6b:ee:0f:78:4c:6d:2a:f1:2d:b3:45:9f:
                    66:79:a0:cc:b1:1e:9f:3c:4e:49:9a:b8:df:99:48:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:21:e7:ba:a0:ab:52:9c:c4:db:5d:0d:4d:db:f7:2c:
        09:08:39:0b:0e:b8:ff:14:30:3c:1d:84:3e:bb:46:80:
        3d:dc:51:bc:e0:39:77:83:8d:8d:da:b6:01:67:c6:1d:
        61:7b:00:cf:88:30:3f:81:f1:65:af:6e:0f:67:f8:51:
        d7:31:32:55:43:f9:44:a4:4f:92:94:97:16:63:6d:19:
        fe:e9:06:42:97:30:a9:53:55:42:67:65:2c:7f:c3:65:
        69:22:1e:be:60:2e:a5:7e:f6:4c:4f:8d:99:81:fd:89:
        ea:c7:9b:de:08:c8:4c:01:f6:8c:45:0c:e3:ee:a7:ee:
        2c:5b:ee:48:99:42:61:4e:e6:54:b3:bc:68:d3:96:0b:
        db:62:de:73:2c:7d:0b:89:10:25:05:bc:75:f6:f6:bf:
        31:a8:55:2f:98:76:31:d5:d9:97:2a:85:e2:45:23:89:
        d2:14:d1:e4:b4:06:39:f8:86:4b:b8:fa:e6:4c:a1:d0:
        fd:24:85:fd:61:00:df:77:79:4c:f7:dd:a7:cb:3e:4d:
        29:68:8f:3b:67:7c:8d:72:0c:c4:41:55:98:e9:6b:fa:
        a9:4d:75:b0:a0:61:55:05:de:da:56:c8:7c:d1:3d:32:
        f6:82:1d:22:68:93:53:79:a2:b5:20:55:f3:77:5a:23
    Fingerprint (SHA-256):
        DF:EB:CF:B1:B8:90:C4:FB:88:84:EA:C9:2B:9B:C3:00:69:DF:90:21:F3:90:75:22:6B:AB:76:62:AE:C5:5A:5E
    Fingerprint (SHA1):
        A3:BF:58:7D:D6:AD:4C:7B:4F:90:8B:D3:F1:C5:62:11:DB:59:21:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10982: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10983: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154516 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10984: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10985: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10986: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10987: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154517   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10988: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10989: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10990: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10991: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154518   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #10992: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10993: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #10994: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10995: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502154519   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10996: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10997: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10998: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10999: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502154520   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11000: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11001: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11002: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11003: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11004: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11005: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #11006: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154516 (0x1dee4514)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:03 2017
            Not After : Mon May 02 15:46:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:db:5a:e8:65:28:b3:dc:d6:2e:ef:75:41:dc:55:6b:
                    bb:a6:c8:36:79:d5:dd:e8:a8:10:c3:e9:2d:88:4d:f0:
                    46:58:c0:05:0b:a8:9f:7c:25:ac:c5:d8:6c:78:5b:4e:
                    bd:a1:0a:79:3d:e1:44:c5:f1:a6:37:7f:21:8e:cf:65:
                    76:06:56:84:0c:6d:85:e8:58:3b:9d:aa:d8:1b:9b:d5:
                    23:2f:ae:b7:a3:da:4d:6f:cd:10:e7:1c:c2:bf:7e:8f:
                    c0:60:ea:92:99:b7:2d:55:79:43:30:44:1d:71:54:13:
                    76:d2:8a:06:b4:a5:e8:6d:73:dd:f6:6f:e5:f2:57:c5:
                    75:7b:b2:3f:85:a6:5c:68:9a:67:a8:f8:a3:8c:28:7d:
                    bf:24:e0:37:9b:ee:85:d0:73:fa:83:e5:1f:9c:61:2f:
                    d6:b3:d4:f3:c2:24:ba:f8:43:b1:aa:e3:e3:5e:0a:9f:
                    5c:12:a9:8b:50:59:76:ab:66:f0:13:b8:cf:78:fd:78:
                    fc:66:69:60:49:f1:48:5a:d7:e3:30:2f:94:59:c1:ba:
                    32:a5:9b:de:9c:39:4f:2e:2a:a9:77:f8:74:46:11:dd:
                    83:a8:c7:f3:6c:24:19:66:2d:84:4c:5d:d2:4a:76:54:
                    43:90:82:7a:90:a1:45:76:2e:a8:f0:d1:33:d9:cf:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:df:3e:fd:ab:23:fb:fc:92:3b:61:cd:9e:98:a7:74:
        58:6c:4d:da:f2:86:f3:51:9e:a7:14:6f:d5:c7:ad:1e:
        0b:ee:bd:17:1c:78:e9:79:68:bf:a3:76:3c:8c:5f:9d:
        2c:e6:93:e6:c4:b2:b9:1a:6f:03:72:68:c9:d6:5e:fc:
        0b:43:d4:f9:2c:6f:e8:1a:ae:0f:40:59:a1:e9:b6:50:
        8b:54:b5:41:8c:19:28:58:8a:92:47:d2:9b:e4:38:31:
        ff:5e:77:05:05:9b:d1:3c:95:84:d6:3c:76:69:68:37:
        2c:b5:4b:3c:37:a3:ae:ea:48:fe:fe:88:5b:ef:6e:93:
        50:13:7e:c2:7e:28:1e:8b:ef:56:d1:88:38:a3:29:36:
        c8:71:58:5c:aa:9d:a1:f5:de:18:12:d8:a5:79:0e:0b:
        eb:6e:20:a9:e2:dc:24:fb:1c:b1:b0:0a:ff:f1:55:b1:
        d8:f7:68:84:01:7f:e2:cb:7b:e0:80:d0:16:f1:38:25:
        cd:91:b3:c8:3c:a2:8c:4a:ee:d0:17:2d:24:4b:76:6e:
        d8:ae:f2:07:d4:e7:f0:a6:0f:18:f6:aa:94:f4:ab:ea:
        98:1d:1e:b8:6c:a1:a5:a0:7b:4e:ca:50:b2:13:32:6e:
        8f:0f:8f:af:e8:0a:c5:73:59:a6:6a:68:d5:5d:6f:fe
    Fingerprint (SHA-256):
        2B:DA:A7:36:0D:9B:3A:8D:B4:60:D5:95:E6:C2:A7:B4:31:26:AD:01:53:11:5D:1D:D2:88:26:85:7A:1F:58:C0
    Fingerprint (SHA1):
        DF:2B:FF:AB:C3:69:F8:00:67:AD:EF:3C:96:BC:55:6D:9B:64:B1:D3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11007: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11008: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154517 (0x1dee4515)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:04 2017
            Not After : Mon May 02 15:46:04 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:50:82:06:79:52:81:30:16:99:9b:ea:d7:c5:99:f2:
                    c5:82:ac:d5:1e:80:1a:09:bd:42:14:2a:ff:72:1c:ad:
                    38:d9:7d:0c:98:c8:8f:75:ff:ba:94:f8:3d:b2:67:8b:
                    29:5d:6f:78:da:57:89:7b:31:05:d2:e1:af:a5:18:b4:
                    f5:87:dd:be:7e:6c:ea:43:50:5c:26:b7:e0:72:f9:8e:
                    c3:4f:48:99:c0:e0:47:51:e5:a2:d6:2b:c3:e9:d3:aa:
                    8e:b7:f2:46:e5:e1:c5:ad:05:51:48:e1:14:97:08:0d:
                    e0:af:42:a0:af:5b:12:9c:43:1d:b7:77:28:da:83:d4:
                    e6:f4:92:23:ae:f2:44:8a:97:64:45:b3:bc:3d:bb:d6:
                    bb:57:ce:4b:c5:23:ba:fe:36:dc:65:ee:9b:52:4c:83:
                    29:4c:bb:e1:4a:4f:81:e7:45:23:0f:e2:04:f0:a7:f0:
                    f0:d0:5b:25:da:a2:00:38:af:21:3f:4c:9c:b1:bb:2c:
                    5b:67:7e:a6:b5:7c:b5:2d:8d:0d:1c:fb:0c:1f:8b:d9:
                    dd:eb:f3:50:a6:70:a2:62:96:24:49:93:4c:fc:8d:cb:
                    64:d5:4d:9a:82:01:86:69:8b:a9:ff:1b:a0:61:4c:c8:
                    dc:6f:9e:de:1d:8d:65:3c:93:d9:c6:cc:57:27:0e:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:e9:98:90:43:fb:20:9c:18:69:f9:a7:68:7f:2e:1b:
        42:d7:c6:f0:b0:50:83:2a:6e:9c:26:e9:42:8f:b2:03:
        65:9f:75:a5:4d:c4:a1:0f:b7:7e:46:1c:46:b1:09:d9:
        b7:1d:57:13:83:5f:09:ca:c9:8a:76:d4:23:87:4c:8a:
        d6:de:b4:ee:43:2f:a1:00:7c:a6:48:ae:e9:d4:a2:e7:
        83:42:b4:d0:db:e5:ec:c7:c9:1d:9a:4e:e2:e5:be:48:
        5b:e8:a0:7e:ad:82:8f:f5:7f:33:24:51:9e:27:5b:52:
        d2:a3:09:ad:e9:54:f5:80:76:cc:56:e6:83:09:1d:dc:
        bc:cd:54:7b:c5:20:85:1a:69:2d:8a:d3:99:17:35:65:
        29:08:a9:bf:b3:97:04:c1:69:15:0d:69:a1:58:22:ed:
        4a:5e:df:f8:f0:3f:92:e8:6a:a4:43:90:b3:c1:1e:fe:
        d0:b0:f9:ab:8a:ad:c5:09:31:bd:3b:21:bc:1e:93:2e:
        ac:06:f7:53:c4:13:09:ac:86:6d:a1:8e:82:0f:ed:0a:
        ce:cc:ab:da:8f:5a:c5:65:e0:d4:38:e0:46:a5:3a:45:
        6d:31:ba:9f:b3:bf:54:6c:b5:90:e1:58:ef:bc:f4:04:
        c3:1f:92:b6:d5:2a:ac:ce:fd:99:03:a7:33:2b:fb:75
    Fingerprint (SHA-256):
        F2:22:0E:08:58:6E:32:C3:AB:F5:68:57:E9:19:0A:E1:83:20:87:95:B4:DA:31:AB:52:84:F1:A1:70:6C:79:DF
    Fingerprint (SHA1):
        4E:E0:F4:C5:17:97:50:1F:FC:20:D5:45:EA:C6:1D:AD:BB:2A:35:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11009: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11010: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11011: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154518 (0x1dee4516)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:46:04 2017
            Not After : Mon May 02 15:46:04 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f9:de:ed:32:fd:24:c8:50:0e:3b:5e:05:45:10:5c:2c:
                    db:ee:87:b1:4b:35:78:e6:3f:b3:bb:2e:4f:27:22:72:
                    ad:88:86:0a:3a:cd:5e:17:57:8d:ae:42:27:e7:19:52:
                    9a:63:af:d0:7c:21:33:32:72:88:e6:a6:1b:8e:55:f5:
                    d5:d5:7c:28:23:64:07:a7:13:1c:2d:ef:9c:35:05:5f:
                    bc:de:77:dc:06:fd:7c:14:c1:02:f5:98:9f:ae:e5:bf:
                    3e:12:1a:b1:32:af:36:7a:ff:86:a2:1d:95:93:45:1f:
                    fa:94:ae:ca:9e:73:af:25:47:66:22:90:9c:8e:3c:06:
                    51:52:2f:56:89:6f:18:73:7b:f4:36:e8:67:0e:96:d9:
                    60:98:bf:4d:c2:51:2e:72:0f:87:9d:06:77:46:91:ff:
                    25:6e:65:1d:78:cc:ca:27:a5:c3:f1:39:b5:7e:88:e7:
                    85:7a:2f:1c:93:9f:a7:ca:d3:97:f7:b8:ad:ec:83:ad:
                    5c:8d:91:46:45:18:45:97:21:03:6a:82:65:9a:bf:37:
                    15:f3:93:2b:1b:b9:0b:34:94:ca:5b:14:0e:47:e8:91:
                    f5:48:3b:c0:ca:5f:57:bb:14:5f:90:c9:1c:e3:a9:4b:
                    95:41:3c:1a:47:f6:eb:af:d5:a8:93:00:dd:90:0b:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:29:c4:f7:f7:20:ef:ea:5b:a7:24:c3:f7:66:e6:37:
        16:cb:f1:9d:66:d1:98:ed:39:8b:99:fd:56:cd:a8:5c:
        c1:de:8f:5b:f2:ce:f1:2d:c5:2d:00:ea:48:98:02:de:
        dc:72:95:4f:31:1e:e1:6f:a3:fd:f3:3d:1a:27:da:2c:
        14:21:a1:ba:36:d0:71:32:ca:75:1f:4b:8d:ee:a9:71:
        c2:4d:fc:71:a1:7d:0c:20:5e:12:63:e8:3f:28:0b:3e:
        29:fc:f6:e9:b7:b0:fd:53:a8:0b:4a:ac:4a:b3:0c:52:
        7d:ce:f1:72:d8:16:13:15:7b:12:81:55:cd:19:f5:37:
        d6:e8:6b:8a:c5:eb:20:aa:87:58:1f:ba:98:e1:4c:39:
        79:f0:21:4c:95:a5:fb:2c:cc:77:43:9c:9d:c5:80:94:
        1b:b3:dd:6d:9c:71:ff:b0:b9:56:67:e2:5f:d7:15:d3:
        74:b9:6d:ca:f1:af:c1:28:b5:c4:ed:bb:c7:6d:92:25:
        66:ea:22:c9:4f:35:e6:0a:12:50:73:02:d1:8f:16:55:
        a8:7e:98:98:98:d3:19:fb:b2:a0:f1:db:ef:1b:84:96:
        ef:86:bc:dc:e3:f0:90:61:ee:8a:f8:2c:3f:4f:93:54:
        1f:0c:bf:cd:86:06:64:5b:00:68:cc:2b:87:67:12:b7
    Fingerprint (SHA-256):
        AC:20:CF:BC:02:9C:CC:13:AE:AF:2C:A8:3B:27:E3:A4:09:CF:99:7B:C7:D4:46:73:CE:9D:44:19:E6:56:6D:CD
    Fingerprint (SHA1):
        69:B0:70:1B:A7:48:D3:B3:98:4C:9B:7F:EC:A0:BF:69:2D:EA:FC:B6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11012: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11013: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154521 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11014: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11015: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11016: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11017: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154522   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11018: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11019: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11020: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11021: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154523   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA1Root-502154430.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11022: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11023: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11024: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11025: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154524   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11026: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11027: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #11028: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154521 (0x1dee4519)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:07 2017
            Not After : Mon May 02 15:46:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:76:35:39:f4:45:cb:9e:c3:c8:ed:2b:1f:1e:b7:2c:
                    00:67:56:fe:48:1f:41:8e:1f:06:51:72:ed:be:0c:6a:
                    38:6e:8e:48:dd:d3:cd:c3:df:43:df:23:0a:f3:83:08:
                    23:b6:c8:1d:0b:60:11:8b:bb:af:cd:24:34:c0:d5:27:
                    19:22:09:47:fe:e4:23:e6:ab:2b:14:b8:15:d0:f7:ba:
                    43:5b:2d:ba:0c:9b:06:55:fc:0c:58:5f:60:18:2a:03:
                    54:73:e0:24:55:64:e4:5a:50:95:1a:8b:e6:12:85:99:
                    a1:95:4d:7d:0d:d8:83:1a:62:e0:9a:66:6d:a9:fd:9a:
                    34:7e:51:3f:35:76:3d:ba:e1:e9:2c:48:bb:2f:94:19:
                    8c:ab:79:d3:56:72:ee:b8:23:76:41:c1:43:65:30:dd:
                    25:73:20:07:72:db:ea:62:d6:08:97:69:49:98:c2:25:
                    42:ba:85:0a:30:dc:af:44:a3:60:19:24:77:ba:86:26:
                    ca:7b:f1:7d:1e:97:8c:b0:7c:92:8f:92:6d:d9:25:c0:
                    9e:f4:3f:4f:f2:b9:bd:52:a3:a2:38:5e:95:04:8a:92:
                    33:65:c1:d3:84:74:bd:d2:9e:df:35:bd:56:8c:ef:f4:
                    ec:70:c3:1a:3b:5c:40:b6:cb:a9:a9:a4:d3:6f:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:71:f3:72:7f:f9:a6:86:cf:6f:d3:12:98:4a:3c:7a:
        ee:03:99:17:ee:94:f0:0e:3c:d2:ba:c7:c6:a7:69:fa:
        c0:b6:48:d7:12:ce:41:af:84:29:97:aa:9f:fd:21:56:
        16:d8:ab:92:58:c0:19:32:38:b4:70:d8:91:ae:eb:83:
        54:58:0c:4e:bb:5f:c3:1d:5d:f9:7d:64:38:4c:8f:d9:
        f8:30:2e:8d:85:a2:3a:6e:b2:ef:97:5f:12:ca:8a:8a:
        62:9b:5e:f7:96:41:2c:13:cf:7d:cc:fb:b1:5e:37:2c:
        cc:2b:28:ea:19:b5:23:75:80:55:16:33:eb:5f:be:fe:
        9c:72:91:e0:52:2b:13:37:34:0b:6b:97:35:18:d5:98:
        87:8b:77:b8:b8:e5:df:cf:02:0a:c1:c0:27:d5:fe:c0:
        60:67:cd:dd:78:18:4b:f0:e4:82:67:7b:5c:1d:96:00:
        5d:c8:8a:1f:bd:4e:64:4b:1e:85:4a:ea:2a:05:7f:87:
        9d:ae:93:43:a5:12:f2:4e:f1:13:8c:63:c1:87:3f:49:
        ec:01:12:e9:75:ae:cf:4e:29:9a:da:58:06:55:fb:4d:
        37:59:43:61:be:7e:0d:66:0f:95:c6:27:89:7f:20:8d:
        98:e3:fe:99:0f:08:ba:1e:47:1d:86:a9:dd:fb:29:83
    Fingerprint (SHA-256):
        98:92:F5:E9:55:28:67:AE:3D:3F:03:A0:33:50:01:5A:F4:0B:EB:8C:D6:29:8A:FA:66:C3:2B:F7:B7:A3:1D:DD
    Fingerprint (SHA1):
        C2:09:03:85:2D:16:51:CD:8A:C8:5D:D1:1E:44:F6:13:68:8F:44:ED
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11029: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11030: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154525 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11031: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11032: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11033: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154526 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11034: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11035: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11036: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11037: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154527 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11038: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11039: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154528 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11040: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11041: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11042: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11043: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11044: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154529   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502154431.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11045: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11046: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11047: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11048: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154530   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11049: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11050: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11051: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154525 (0x1dee451d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:46:10 2017
            Not After : Mon May 02 15:46:10 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:37:8b:3e:4f:58:de:e8:83:4d:cb:ff:cf:c4:67:25:
                    ea:22:21:0d:92:a3:7b:ca:16:82:05:2e:12:48:ac:fe:
                    a2:46:f1:71:39:4d:0f:3e:f9:95:fd:ef:c4:e2:1a:e1:
                    5e:ab:78:fc:c7:94:81:46:4f:c6:b8:bb:03:a7:86:f7:
                    b4:4a:4e:03:84:ad:e6:af:c5:04:f6:a5:6f:30:0a:f4:
                    16:16:eb:d0:01:fc:5b:78:17:2e:2f:3b:ef:fe:5a:94:
                    bb:01:a3:1b:14:60:37:2e:4d:92:73:ba:33:13:32:6d:
                    93:b4:4d:49:e0:40:9b:80:94:0b:97:85:ed:f2:1a:2c:
                    6b:51:03:92:8b:4e:0f:cb:c1:4f:6e:aa:d5:46:7b:5d:
                    d8:2d:cc:b6:ff:f0:65:31:15:01:b2:38:48:16:ac:31:
                    33:43:c7:89:81:22:2c:47:74:04:a2:b8:63:7e:d7:60:
                    67:ae:39:4d:0a:4c:7b:b5:b2:ab:ee:6b:31:9e:32:50:
                    63:c6:f6:a2:af:78:7a:e6:20:87:98:7f:32:cd:4b:b0:
                    a0:b2:a0:05:80:51:30:75:19:0b:73:51:f7:7f:9d:33:
                    da:66:8b:1d:34:97:f8:02:cb:6e:49:8c:9d:49:18:3f:
                    40:70:92:cf:dc:ed:6a:d6:c2:f3:ef:81:2f:e7:5d:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:72:05:5d:48:15:22:3e:bb:a0:d7:8c:1d:a6:bf:d3:
        e9:bb:3c:59:cb:b6:72:84:44:63:9b:0f:b4:95:35:12:
        6f:b1:3d:64:28:ac:e8:93:3e:a1:2d:6d:b4:da:f7:5a:
        84:f8:16:9c:9b:45:a6:58:1b:b9:8c:71:9f:a4:2e:67:
        cf:49:6b:24:f6:5c:38:28:d8:7e:ad:c3:36:01:79:fe:
        95:3f:b6:f2:8d:b8:95:1e:b1:56:69:e1:03:57:90:f8:
        70:6f:e7:b6:53:65:e6:bb:a8:0f:2e:a5:7d:db:ab:9a:
        cc:0b:32:29:28:32:e4:54:68:6c:d0:36:af:7d:59:7b:
        9f:b2:20:74:9a:35:89:e8:8a:07:2b:a8:08:37:94:9d:
        da:09:da:8b:34:58:2d:4c:15:3d:0e:3b:1d:aa:a1:94:
        ad:40:a3:99:08:f1:a7:78:95:1d:8e:96:2a:f9:16:c1:
        7e:45:ad:68:e2:19:db:6b:fc:ae:95:8e:bc:a9:a3:63:
        ac:05:fb:37:1c:b1:2c:c7:03:c1:ad:24:48:c8:0c:d7:
        bf:df:db:bd:bc:44:70:aa:dc:65:0f:01:64:d3:8f:98:
        00:c6:dc:75:4e:36:47:4b:96:4a:5f:22:a9:d3:eb:96:
        75:1b:60:e9:b5:ba:1b:03:b3:1c:10:e4:58:a7:8e:88
    Fingerprint (SHA-256):
        85:79:6A:A8:E6:26:B9:68:ED:A7:2D:6A:96:40:63:4E:34:69:60:0B:F6:48:AF:B4:E6:89:75:DD:C9:A6:D4:1E
    Fingerprint (SHA1):
        AE:33:56:29:0E:57:C0:79:61:7E:92:FF:48:DE:43:6F:5B:B0:CD:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11052: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154526 (0x1dee451e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:46:10 2017
            Not After : Mon May 02 15:46:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:21:d3:29:cb:9a:28:df:7f:cf:fc:3b:ae:70:e5:9c:
                    e6:ac:a8:e8:56:6d:b6:c5:90:93:7c:0e:fb:b7:2c:81:
                    d2:4e:9c:35:1a:7d:34:59:fa:60:12:d1:4b:33:6a:ee:
                    96:b8:49:19:7a:cc:f1:73:ce:f1:a6:30:e1:c5:bc:ed:
                    a6:a7:ce:0c:a8:d2:33:ad:43:62:1e:a3:ee:be:2e:72:
                    4a:89:a4:25:99:73:1c:87:b4:48:98:98:81:ce:9c:52:
                    10:b8:72:2e:9b:a5:7a:17:c3:e8:fa:c3:ea:ba:73:6b:
                    91:2c:71:5f:fd:17:4f:e3:52:fa:29:c8:99:b0:f6:37:
                    90:32:85:92:0a:f9:96:5b:01:40:ea:ff:ec:bf:da:fe:
                    32:e8:73:e9:24:41:4f:df:1b:42:fa:44:98:6b:3b:57:
                    73:8d:17:36:a6:1d:e9:57:ed:ef:af:2b:d9:a8:a3:1a:
                    b6:ca:73:fe:0c:40:54:da:fc:ae:f5:45:23:a5:e0:0d:
                    4e:2f:6b:1c:24:1e:14:ba:af:e2:be:f0:f3:7b:10:94:
                    f6:58:2e:f0:e9:48:86:2d:58:14:d0:b1:3e:96:d1:70:
                    55:ca:dc:21:99:e8:64:7d:bc:b3:e2:b3:d2:98:a2:03:
                    02:67:54:48:d5:79:20:0b:ab:13:38:dc:ad:cd:c9:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:73:5d:75:6c:de:6c:b3:74:27:66:88:a3:86:81:52:
        d2:f6:a9:6d:29:0f:78:75:05:fd:fb:9f:78:d2:21:1a:
        aa:07:26:30:c8:db:46:9b:10:97:be:6c:41:a0:b7:b4:
        d2:0c:b8:8b:8c:54:c4:4d:3c:01:9a:49:2f:51:53:4f:
        30:93:23:b2:a1:5c:92:24:2b:cb:43:0d:a3:52:f6:41:
        4b:e7:3c:26:ed:52:0b:19:98:27:57:ad:2d:76:e0:24:
        28:b0:1a:73:3a:68:3f:e9:7a:6c:70:5a:cd:54:09:16:
        ed:e2:7d:76:5c:27:dd:ea:38:f7:ed:b5:29:d0:03:ff:
        50:c0:28:6e:ae:10:87:d3:0c:73:21:3a:fe:50:33:ce:
        8a:88:44:de:c3:7b:72:72:26:a4:df:d3:c0:c6:50:13:
        35:34:3f:d3:6c:ad:f8:8f:ad:3c:d3:01:95:14:d1:8a:
        9b:84:d7:b0:53:94:cc:3b:d3:a7:5a:5f:3d:cd:52:1b:
        2b:46:73:19:fd:99:42:65:38:ac:16:6a:17:08:66:cb:
        3b:8a:c6:a1:86:de:f6:63:4e:e4:02:17:4e:51:e9:85:
        ae:13:da:1b:08:22:eb:4e:98:25:95:f3:f3:b9:12:17:
        c5:94:99:de:9c:a1:e8:24:8d:cb:7b:51:2c:5c:66:b4
    Fingerprint (SHA-256):
        43:5F:39:AB:1E:9C:91:DE:27:36:87:3A:19:52:89:01:1E:9B:57:DB:13:F7:CB:62:D1:97:5F:B1:DB:49:10:13
    Fingerprint (SHA1):
        F9:94:95:62:CE:6A:F5:AA:12:36:9D:B7:99:CE:EE:4C:C7:2D:72:D6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11053: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154526 (0x1dee451e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:46:10 2017
            Not After : Mon May 02 15:46:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:21:d3:29:cb:9a:28:df:7f:cf:fc:3b:ae:70:e5:9c:
                    e6:ac:a8:e8:56:6d:b6:c5:90:93:7c:0e:fb:b7:2c:81:
                    d2:4e:9c:35:1a:7d:34:59:fa:60:12:d1:4b:33:6a:ee:
                    96:b8:49:19:7a:cc:f1:73:ce:f1:a6:30:e1:c5:bc:ed:
                    a6:a7:ce:0c:a8:d2:33:ad:43:62:1e:a3:ee:be:2e:72:
                    4a:89:a4:25:99:73:1c:87:b4:48:98:98:81:ce:9c:52:
                    10:b8:72:2e:9b:a5:7a:17:c3:e8:fa:c3:ea:ba:73:6b:
                    91:2c:71:5f:fd:17:4f:e3:52:fa:29:c8:99:b0:f6:37:
                    90:32:85:92:0a:f9:96:5b:01:40:ea:ff:ec:bf:da:fe:
                    32:e8:73:e9:24:41:4f:df:1b:42:fa:44:98:6b:3b:57:
                    73:8d:17:36:a6:1d:e9:57:ed:ef:af:2b:d9:a8:a3:1a:
                    b6:ca:73:fe:0c:40:54:da:fc:ae:f5:45:23:a5:e0:0d:
                    4e:2f:6b:1c:24:1e:14:ba:af:e2:be:f0:f3:7b:10:94:
                    f6:58:2e:f0:e9:48:86:2d:58:14:d0:b1:3e:96:d1:70:
                    55:ca:dc:21:99:e8:64:7d:bc:b3:e2:b3:d2:98:a2:03:
                    02:67:54:48:d5:79:20:0b:ab:13:38:dc:ad:cd:c9:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:73:5d:75:6c:de:6c:b3:74:27:66:88:a3:86:81:52:
        d2:f6:a9:6d:29:0f:78:75:05:fd:fb:9f:78:d2:21:1a:
        aa:07:26:30:c8:db:46:9b:10:97:be:6c:41:a0:b7:b4:
        d2:0c:b8:8b:8c:54:c4:4d:3c:01:9a:49:2f:51:53:4f:
        30:93:23:b2:a1:5c:92:24:2b:cb:43:0d:a3:52:f6:41:
        4b:e7:3c:26:ed:52:0b:19:98:27:57:ad:2d:76:e0:24:
        28:b0:1a:73:3a:68:3f:e9:7a:6c:70:5a:cd:54:09:16:
        ed:e2:7d:76:5c:27:dd:ea:38:f7:ed:b5:29:d0:03:ff:
        50:c0:28:6e:ae:10:87:d3:0c:73:21:3a:fe:50:33:ce:
        8a:88:44:de:c3:7b:72:72:26:a4:df:d3:c0:c6:50:13:
        35:34:3f:d3:6c:ad:f8:8f:ad:3c:d3:01:95:14:d1:8a:
        9b:84:d7:b0:53:94:cc:3b:d3:a7:5a:5f:3d:cd:52:1b:
        2b:46:73:19:fd:99:42:65:38:ac:16:6a:17:08:66:cb:
        3b:8a:c6:a1:86:de:f6:63:4e:e4:02:17:4e:51:e9:85:
        ae:13:da:1b:08:22:eb:4e:98:25:95:f3:f3:b9:12:17:
        c5:94:99:de:9c:a1:e8:24:8d:cb:7b:51:2c:5c:66:b4
    Fingerprint (SHA-256):
        43:5F:39:AB:1E:9C:91:DE:27:36:87:3A:19:52:89:01:1E:9B:57:DB:13:F7:CB:62:D1:97:5F:B1:DB:49:10:13
    Fingerprint (SHA1):
        F9:94:95:62:CE:6A:F5:AA:12:36:9D:B7:99:CE:EE:4C:C7:2D:72:D6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11054: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11055: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154531 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11056: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11057: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11058: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154532 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11059: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11060: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11061: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11062: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154533 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11063: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11064: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154534 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11065: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11066: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11067: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11068: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11069: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154535   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502154432.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11070: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11071: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11072: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11073: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154536   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11074: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11075: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11076: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11077: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154537   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-BridgeNavy-502154433.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11078: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11079: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11080: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11081: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154538   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11082: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11083: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11084: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154531 (0x1dee4523)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:46:14 2017
            Not After : Mon May 02 15:46:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:5c:1e:3e:f8:57:c3:b7:ce:18:f3:13:43:e0:73:58:
                    02:25:5f:83:d7:58:b9:3e:75:e5:db:83:bb:88:53:bc:
                    c5:c3:9a:c1:78:02:4a:ec:70:6e:c6:a6:78:ae:e5:3d:
                    d9:15:84:ed:c3:eb:2f:4e:53:08:20:68:4b:c4:9b:0a:
                    a0:4d:55:35:ce:c9:ef:79:00:cf:04:45:e4:70:9e:04:
                    2b:f7:b5:1c:cf:8a:66:fb:d7:7f:4e:6c:7f:71:6a:85:
                    fe:2f:04:c3:7e:11:56:fe:00:1a:b3:9e:19:ee:b1:98:
                    2f:ed:39:d6:49:85:5f:f6:da:5f:99:b0:c0:60:c4:c3:
                    c5:77:ad:c3:86:26:74:a1:51:9f:d8:54:6d:08:ff:76:
                    c1:37:f6:c0:27:4f:71:02:21:05:7b:fb:29:bc:a7:64:
                    b3:77:0f:0a:f3:6f:42:dd:bd:6c:92:7c:5e:6b:82:fc:
                    58:32:71:47:eb:cd:a4:0c:8f:d4:36:71:1c:58:69:54:
                    b5:74:c5:d0:af:a4:8c:65:a8:0c:2e:95:54:32:c6:3a:
                    d3:36:b8:ba:d0:83:03:86:01:db:79:a0:7d:31:bf:8b:
                    47:51:3f:19:74:ae:1a:e0:a1:7f:f5:59:5c:ce:33:ed:
                    3b:99:89:11:4b:67:92:f5:a2:b6:ec:0f:56:8c:d6:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:02:70:fc:2b:3d:05:e0:2e:b8:2b:eb:8f:c3:83:39:
        84:47:52:a5:bb:20:ba:37:bd:b2:89:8b:1b:17:72:06:
        36:94:c5:94:31:c4:e0:e3:d2:3f:5f:74:3d:cf:80:d5:
        54:a0:ca:30:da:17:b7:12:3b:14:38:2d:da:f0:b5:ed:
        c0:13:13:73:46:1c:f0:24:9d:81:21:4e:33:2d:75:e8:
        bb:c3:94:ae:1e:6f:99:a2:01:c6:2d:49:a1:8e:c3:04:
        3e:8c:8d:ab:4a:57:99:b6:d4:93:4b:40:11:db:1a:c9:
        a4:ba:b3:11:b1:2b:b4:e0:01:f0:42:ce:27:9e:1f:44:
        5c:d6:1c:6f:b7:13:5d:fa:6a:21:a3:8e:6b:94:ad:a0:
        9f:3a:65:ef:15:59:71:5c:9d:44:53:0e:0d:fe:d2:b9:
        38:14:73:7d:04:68:56:d5:19:ea:30:bc:8e:47:aa:1a:
        7b:7a:3e:e8:ec:80:31:37:4a:eb:e0:17:f2:c0:32:68:
        9b:a7:54:96:53:aa:fe:0b:8b:c0:86:48:44:ae:50:90:
        e7:32:6d:48:8e:14:b4:75:98:4e:9c:a9:44:8e:fb:e5:
        51:9c:b6:04:7c:b4:77:12:46:fd:2f:96:80:cc:b8:69:
        db:b2:b2:b4:8b:16:b2:14:52:22:f1:c7:7a:91:4e:15
    Fingerprint (SHA-256):
        01:9F:79:7C:C0:CE:C7:81:FD:2E:00:F4:B5:C8:87:0B:B7:6C:3C:A8:26:E4:89:CE:43:95:34:93:C1:C5:6C:5E
    Fingerprint (SHA1):
        06:1C:25:90:14:1A:03:69:9F:90:22:54:AA:FC:B2:94:7A:09:8C:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11085: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154532 (0x1dee4524)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:46:14 2017
            Not After : Mon May 02 15:46:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5d:b6:db:ac:08:89:8a:f3:63:38:a1:79:b5:9e:bc:
                    2a:e9:64:61:8a:c5:a6:1d:8b:9f:04:76:71:8f:d5:1b:
                    98:2e:69:0a:95:f4:d9:fa:cd:30:3a:e2:68:12:b1:64:
                    fc:e5:2a:99:3f:f7:69:ba:f6:83:aa:29:5b:67:bc:6d:
                    70:46:ab:68:a7:19:9c:0e:7f:db:4d:51:77:79:ed:14:
                    5b:06:c6:31:74:e9:5a:20:aa:23:4d:41:d6:c9:ca:f9:
                    a5:08:c4:97:e7:f0:3b:c3:1f:b0:da:83:fa:b6:4a:23:
                    62:4c:d2:82:f4:2c:9a:15:22:65:18:86:57:03:e4:d3:
                    a6:26:95:d4:ee:82:d6:0e:b6:a7:3f:2f:76:00:2f:d4:
                    bf:82:01:92:0d:5a:0d:6c:03:12:43:3d:fe:cb:64:5e:
                    d3:a8:0d:1f:b3:2b:6d:4b:87:f4:86:29:13:00:a9:64:
                    9e:3f:17:83:4d:cc:20:66:54:68:00:29:5e:5b:74:b9:
                    8a:60:92:3d:6e:08:99:e7:5e:da:62:1f:35:b4:90:9b:
                    fe:5c:0b:a8:48:3e:6c:cf:4a:fc:7c:fd:b3:88:b9:1c:
                    95:77:35:2d:eb:c1:f9:7d:ea:37:fc:09:51:35:13:b7:
                    b6:1f:d6:25:2c:89:cd:08:d1:98:dc:25:e2:7c:76:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:fe:4a:ba:cd:da:1b:24:57:c7:4e:5c:c0:e7:4e:9a:
        93:fe:ec:2f:d8:ae:51:00:b1:9e:ea:eb:67:e0:d9:01:
        02:74:d2:8d:df:ce:25:01:6b:d9:39:36:a1:38:78:54:
        c5:07:e4:cd:3f:d2:aa:bf:71:f2:5e:b5:97:3b:b5:db:
        31:6c:c5:39:1d:45:f3:03:68:1a:26:31:65:5c:e1:d9:
        84:aa:88:f2:1b:37:a7:66:32:b4:f6:7d:63:fd:5a:db:
        dc:83:95:6d:49:23:d9:b7:12:91:5b:26:3c:54:68:cc:
        13:9c:e4:1b:7c:4e:bf:a6:32:b9:e0:28:b3:c0:e3:ed:
        8f:b3:89:40:80:ea:b8:08:e5:15:35:a9:57:4a:57:c3:
        6f:02:7f:24:36:b0:d2:04:e7:ea:74:18:53:7a:85:46:
        d1:43:18:7d:05:7c:f2:33:ed:5a:ff:3f:25:b5:f7:a0:
        c8:fa:cb:ec:e3:34:25:23:85:b9:ab:36:b6:88:0b:94:
        b5:77:b5:3d:53:cb:69:27:65:d6:85:eb:e7:88:47:69:
        57:0b:91:9a:c8:8c:e9:96:48:28:f9:77:5a:15:f1:4e:
        22:f4:83:a4:a1:7f:49:d3:8c:fa:8e:7c:ea:40:fa:d2:
        91:43:83:7c:be:4a:8d:f0:4a:70:f6:8e:71:fc:31:f9
    Fingerprint (SHA-256):
        22:47:F8:DA:02:4C:63:4F:5B:97:A1:44:D5:FC:29:B0:25:8C:0B:A8:77:5B:D5:B2:B3:07:F9:9E:D2:11:6F:6E
    Fingerprint (SHA1):
        12:82:90:D8:D4:38:38:94:83:45:B4:02:A1:04:90:42:5E:73:4C:2B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11086: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154532 (0x1dee4524)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:46:14 2017
            Not After : Mon May 02 15:46:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5d:b6:db:ac:08:89:8a:f3:63:38:a1:79:b5:9e:bc:
                    2a:e9:64:61:8a:c5:a6:1d:8b:9f:04:76:71:8f:d5:1b:
                    98:2e:69:0a:95:f4:d9:fa:cd:30:3a:e2:68:12:b1:64:
                    fc:e5:2a:99:3f:f7:69:ba:f6:83:aa:29:5b:67:bc:6d:
                    70:46:ab:68:a7:19:9c:0e:7f:db:4d:51:77:79:ed:14:
                    5b:06:c6:31:74:e9:5a:20:aa:23:4d:41:d6:c9:ca:f9:
                    a5:08:c4:97:e7:f0:3b:c3:1f:b0:da:83:fa:b6:4a:23:
                    62:4c:d2:82:f4:2c:9a:15:22:65:18:86:57:03:e4:d3:
                    a6:26:95:d4:ee:82:d6:0e:b6:a7:3f:2f:76:00:2f:d4:
                    bf:82:01:92:0d:5a:0d:6c:03:12:43:3d:fe:cb:64:5e:
                    d3:a8:0d:1f:b3:2b:6d:4b:87:f4:86:29:13:00:a9:64:
                    9e:3f:17:83:4d:cc:20:66:54:68:00:29:5e:5b:74:b9:
                    8a:60:92:3d:6e:08:99:e7:5e:da:62:1f:35:b4:90:9b:
                    fe:5c:0b:a8:48:3e:6c:cf:4a:fc:7c:fd:b3:88:b9:1c:
                    95:77:35:2d:eb:c1:f9:7d:ea:37:fc:09:51:35:13:b7:
                    b6:1f:d6:25:2c:89:cd:08:d1:98:dc:25:e2:7c:76:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:fe:4a:ba:cd:da:1b:24:57:c7:4e:5c:c0:e7:4e:9a:
        93:fe:ec:2f:d8:ae:51:00:b1:9e:ea:eb:67:e0:d9:01:
        02:74:d2:8d:df:ce:25:01:6b:d9:39:36:a1:38:78:54:
        c5:07:e4:cd:3f:d2:aa:bf:71:f2:5e:b5:97:3b:b5:db:
        31:6c:c5:39:1d:45:f3:03:68:1a:26:31:65:5c:e1:d9:
        84:aa:88:f2:1b:37:a7:66:32:b4:f6:7d:63:fd:5a:db:
        dc:83:95:6d:49:23:d9:b7:12:91:5b:26:3c:54:68:cc:
        13:9c:e4:1b:7c:4e:bf:a6:32:b9:e0:28:b3:c0:e3:ed:
        8f:b3:89:40:80:ea:b8:08:e5:15:35:a9:57:4a:57:c3:
        6f:02:7f:24:36:b0:d2:04:e7:ea:74:18:53:7a:85:46:
        d1:43:18:7d:05:7c:f2:33:ed:5a:ff:3f:25:b5:f7:a0:
        c8:fa:cb:ec:e3:34:25:23:85:b9:ab:36:b6:88:0b:94:
        b5:77:b5:3d:53:cb:69:27:65:d6:85:eb:e7:88:47:69:
        57:0b:91:9a:c8:8c:e9:96:48:28:f9:77:5a:15:f1:4e:
        22:f4:83:a4:a1:7f:49:d3:8c:fa:8e:7c:ea:40:fa:d2:
        91:43:83:7c:be:4a:8d:f0:4a:70:f6:8e:71:fc:31:f9
    Fingerprint (SHA-256):
        22:47:F8:DA:02:4C:63:4F:5B:97:A1:44:D5:FC:29:B0:25:8C:0B:A8:77:5B:D5:B2:B3:07:F9:9E:D2:11:6F:6E
    Fingerprint (SHA1):
        12:82:90:D8:D4:38:38:94:83:45:B4:02:A1:04:90:42:5E:73:4C:2B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11087: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #11088: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154531 (0x1dee4523)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:46:14 2017
            Not After : Mon May 02 15:46:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:5c:1e:3e:f8:57:c3:b7:ce:18:f3:13:43:e0:73:58:
                    02:25:5f:83:d7:58:b9:3e:75:e5:db:83:bb:88:53:bc:
                    c5:c3:9a:c1:78:02:4a:ec:70:6e:c6:a6:78:ae:e5:3d:
                    d9:15:84:ed:c3:eb:2f:4e:53:08:20:68:4b:c4:9b:0a:
                    a0:4d:55:35:ce:c9:ef:79:00:cf:04:45:e4:70:9e:04:
                    2b:f7:b5:1c:cf:8a:66:fb:d7:7f:4e:6c:7f:71:6a:85:
                    fe:2f:04:c3:7e:11:56:fe:00:1a:b3:9e:19:ee:b1:98:
                    2f:ed:39:d6:49:85:5f:f6:da:5f:99:b0:c0:60:c4:c3:
                    c5:77:ad:c3:86:26:74:a1:51:9f:d8:54:6d:08:ff:76:
                    c1:37:f6:c0:27:4f:71:02:21:05:7b:fb:29:bc:a7:64:
                    b3:77:0f:0a:f3:6f:42:dd:bd:6c:92:7c:5e:6b:82:fc:
                    58:32:71:47:eb:cd:a4:0c:8f:d4:36:71:1c:58:69:54:
                    b5:74:c5:d0:af:a4:8c:65:a8:0c:2e:95:54:32:c6:3a:
                    d3:36:b8:ba:d0:83:03:86:01:db:79:a0:7d:31:bf:8b:
                    47:51:3f:19:74:ae:1a:e0:a1:7f:f5:59:5c:ce:33:ed:
                    3b:99:89:11:4b:67:92:f5:a2:b6:ec:0f:56:8c:d6:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:02:70:fc:2b:3d:05:e0:2e:b8:2b:eb:8f:c3:83:39:
        84:47:52:a5:bb:20:ba:37:bd:b2:89:8b:1b:17:72:06:
        36:94:c5:94:31:c4:e0:e3:d2:3f:5f:74:3d:cf:80:d5:
        54:a0:ca:30:da:17:b7:12:3b:14:38:2d:da:f0:b5:ed:
        c0:13:13:73:46:1c:f0:24:9d:81:21:4e:33:2d:75:e8:
        bb:c3:94:ae:1e:6f:99:a2:01:c6:2d:49:a1:8e:c3:04:
        3e:8c:8d:ab:4a:57:99:b6:d4:93:4b:40:11:db:1a:c9:
        a4:ba:b3:11:b1:2b:b4:e0:01:f0:42:ce:27:9e:1f:44:
        5c:d6:1c:6f:b7:13:5d:fa:6a:21:a3:8e:6b:94:ad:a0:
        9f:3a:65:ef:15:59:71:5c:9d:44:53:0e:0d:fe:d2:b9:
        38:14:73:7d:04:68:56:d5:19:ea:30:bc:8e:47:aa:1a:
        7b:7a:3e:e8:ec:80:31:37:4a:eb:e0:17:f2:c0:32:68:
        9b:a7:54:96:53:aa:fe:0b:8b:c0:86:48:44:ae:50:90:
        e7:32:6d:48:8e:14:b4:75:98:4e:9c:a9:44:8e:fb:e5:
        51:9c:b6:04:7c:b4:77:12:46:fd:2f:96:80:cc:b8:69:
        db:b2:b2:b4:8b:16:b2:14:52:22:f1:c7:7a:91:4e:15
    Fingerprint (SHA-256):
        01:9F:79:7C:C0:CE:C7:81:FD:2E:00:F4:B5:C8:87:0B:B7:6C:3C:A8:26:E4:89:CE:43:95:34:93:C1:C5:6C:5E
    Fingerprint (SHA1):
        06:1C:25:90:14:1A:03:69:9F:90:22:54:AA:FC:B2:94:7A:09:8C:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11089: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154532 (0x1dee4524)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:46:14 2017
            Not After : Mon May 02 15:46:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5d:b6:db:ac:08:89:8a:f3:63:38:a1:79:b5:9e:bc:
                    2a:e9:64:61:8a:c5:a6:1d:8b:9f:04:76:71:8f:d5:1b:
                    98:2e:69:0a:95:f4:d9:fa:cd:30:3a:e2:68:12:b1:64:
                    fc:e5:2a:99:3f:f7:69:ba:f6:83:aa:29:5b:67:bc:6d:
                    70:46:ab:68:a7:19:9c:0e:7f:db:4d:51:77:79:ed:14:
                    5b:06:c6:31:74:e9:5a:20:aa:23:4d:41:d6:c9:ca:f9:
                    a5:08:c4:97:e7:f0:3b:c3:1f:b0:da:83:fa:b6:4a:23:
                    62:4c:d2:82:f4:2c:9a:15:22:65:18:86:57:03:e4:d3:
                    a6:26:95:d4:ee:82:d6:0e:b6:a7:3f:2f:76:00:2f:d4:
                    bf:82:01:92:0d:5a:0d:6c:03:12:43:3d:fe:cb:64:5e:
                    d3:a8:0d:1f:b3:2b:6d:4b:87:f4:86:29:13:00:a9:64:
                    9e:3f:17:83:4d:cc:20:66:54:68:00:29:5e:5b:74:b9:
                    8a:60:92:3d:6e:08:99:e7:5e:da:62:1f:35:b4:90:9b:
                    fe:5c:0b:a8:48:3e:6c:cf:4a:fc:7c:fd:b3:88:b9:1c:
                    95:77:35:2d:eb:c1:f9:7d:ea:37:fc:09:51:35:13:b7:
                    b6:1f:d6:25:2c:89:cd:08:d1:98:dc:25:e2:7c:76:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:fe:4a:ba:cd:da:1b:24:57:c7:4e:5c:c0:e7:4e:9a:
        93:fe:ec:2f:d8:ae:51:00:b1:9e:ea:eb:67:e0:d9:01:
        02:74:d2:8d:df:ce:25:01:6b:d9:39:36:a1:38:78:54:
        c5:07:e4:cd:3f:d2:aa:bf:71:f2:5e:b5:97:3b:b5:db:
        31:6c:c5:39:1d:45:f3:03:68:1a:26:31:65:5c:e1:d9:
        84:aa:88:f2:1b:37:a7:66:32:b4:f6:7d:63:fd:5a:db:
        dc:83:95:6d:49:23:d9:b7:12:91:5b:26:3c:54:68:cc:
        13:9c:e4:1b:7c:4e:bf:a6:32:b9:e0:28:b3:c0:e3:ed:
        8f:b3:89:40:80:ea:b8:08:e5:15:35:a9:57:4a:57:c3:
        6f:02:7f:24:36:b0:d2:04:e7:ea:74:18:53:7a:85:46:
        d1:43:18:7d:05:7c:f2:33:ed:5a:ff:3f:25:b5:f7:a0:
        c8:fa:cb:ec:e3:34:25:23:85:b9:ab:36:b6:88:0b:94:
        b5:77:b5:3d:53:cb:69:27:65:d6:85:eb:e7:88:47:69:
        57:0b:91:9a:c8:8c:e9:96:48:28:f9:77:5a:15:f1:4e:
        22:f4:83:a4:a1:7f:49:d3:8c:fa:8e:7c:ea:40:fa:d2:
        91:43:83:7c:be:4a:8d:f0:4a:70:f6:8e:71:fc:31:f9
    Fingerprint (SHA-256):
        22:47:F8:DA:02:4C:63:4F:5B:97:A1:44:D5:FC:29:B0:25:8C:0B:A8:77:5B:D5:B2:B3:07:F9:9E:D2:11:6F:6E
    Fingerprint (SHA1):
        12:82:90:D8:D4:38:38:94:83:45:B4:02:A1:04:90:42:5E:73:4C:2B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11090: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154532 (0x1dee4524)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:46:14 2017
            Not After : Mon May 02 15:46:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5d:b6:db:ac:08:89:8a:f3:63:38:a1:79:b5:9e:bc:
                    2a:e9:64:61:8a:c5:a6:1d:8b:9f:04:76:71:8f:d5:1b:
                    98:2e:69:0a:95:f4:d9:fa:cd:30:3a:e2:68:12:b1:64:
                    fc:e5:2a:99:3f:f7:69:ba:f6:83:aa:29:5b:67:bc:6d:
                    70:46:ab:68:a7:19:9c:0e:7f:db:4d:51:77:79:ed:14:
                    5b:06:c6:31:74:e9:5a:20:aa:23:4d:41:d6:c9:ca:f9:
                    a5:08:c4:97:e7:f0:3b:c3:1f:b0:da:83:fa:b6:4a:23:
                    62:4c:d2:82:f4:2c:9a:15:22:65:18:86:57:03:e4:d3:
                    a6:26:95:d4:ee:82:d6:0e:b6:a7:3f:2f:76:00:2f:d4:
                    bf:82:01:92:0d:5a:0d:6c:03:12:43:3d:fe:cb:64:5e:
                    d3:a8:0d:1f:b3:2b:6d:4b:87:f4:86:29:13:00:a9:64:
                    9e:3f:17:83:4d:cc:20:66:54:68:00:29:5e:5b:74:b9:
                    8a:60:92:3d:6e:08:99:e7:5e:da:62:1f:35:b4:90:9b:
                    fe:5c:0b:a8:48:3e:6c:cf:4a:fc:7c:fd:b3:88:b9:1c:
                    95:77:35:2d:eb:c1:f9:7d:ea:37:fc:09:51:35:13:b7:
                    b6:1f:d6:25:2c:89:cd:08:d1:98:dc:25:e2:7c:76:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:fe:4a:ba:cd:da:1b:24:57:c7:4e:5c:c0:e7:4e:9a:
        93:fe:ec:2f:d8:ae:51:00:b1:9e:ea:eb:67:e0:d9:01:
        02:74:d2:8d:df:ce:25:01:6b:d9:39:36:a1:38:78:54:
        c5:07:e4:cd:3f:d2:aa:bf:71:f2:5e:b5:97:3b:b5:db:
        31:6c:c5:39:1d:45:f3:03:68:1a:26:31:65:5c:e1:d9:
        84:aa:88:f2:1b:37:a7:66:32:b4:f6:7d:63:fd:5a:db:
        dc:83:95:6d:49:23:d9:b7:12:91:5b:26:3c:54:68:cc:
        13:9c:e4:1b:7c:4e:bf:a6:32:b9:e0:28:b3:c0:e3:ed:
        8f:b3:89:40:80:ea:b8:08:e5:15:35:a9:57:4a:57:c3:
        6f:02:7f:24:36:b0:d2:04:e7:ea:74:18:53:7a:85:46:
        d1:43:18:7d:05:7c:f2:33:ed:5a:ff:3f:25:b5:f7:a0:
        c8:fa:cb:ec:e3:34:25:23:85:b9:ab:36:b6:88:0b:94:
        b5:77:b5:3d:53:cb:69:27:65:d6:85:eb:e7:88:47:69:
        57:0b:91:9a:c8:8c:e9:96:48:28:f9:77:5a:15:f1:4e:
        22:f4:83:a4:a1:7f:49:d3:8c:fa:8e:7c:ea:40:fa:d2:
        91:43:83:7c:be:4a:8d:f0:4a:70:f6:8e:71:fc:31:f9
    Fingerprint (SHA-256):
        22:47:F8:DA:02:4C:63:4F:5B:97:A1:44:D5:FC:29:B0:25:8C:0B:A8:77:5B:D5:B2:B3:07:F9:9E:D2:11:6F:6E
    Fingerprint (SHA1):
        12:82:90:D8:D4:38:38:94:83:45:B4:02:A1:04:90:42:5E:73:4C:2B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11091: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11092: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154539 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11093: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11094: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11095: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154540 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11096: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11097: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #11098: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11099: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502154541   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11100: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11101: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #11102: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11103: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502154542   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11104: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11105: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11106: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11107: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502154543 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11108: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11109: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502154544 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11110: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11111: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #11112: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11113: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11114: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154545   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11115: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11116: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11117: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11118: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154546   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11119: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11120: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11121: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11122: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154547   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11123: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11124: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11125: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11126: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154548   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11127: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11128: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11129: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154539 (0x1dee452b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:46:20 2017
            Not After : Mon May 02 15:46:20 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:5f:88:90:0a:e0:76:e5:d1:e5:0d:c9:99:f0:db:e8:
                    a5:26:9f:4b:4d:9e:8b:36:78:bc:ac:7d:e7:1d:46:c7:
                    7a:77:51:52:09:1b:ad:b3:aa:12:2b:9e:ee:76:29:23:
                    22:bf:81:a0:df:a3:e3:ca:cc:56:c2:f2:8a:8e:5e:9f:
                    66:fc:f8:58:15:ff:19:0a:25:6d:77:0d:5c:ab:79:11:
                    8c:70:1d:5b:dc:55:4c:77:e9:69:f9:f2:1c:4c:8c:66:
                    2f:b0:8c:aa:09:3e:32:ac:26:32:ba:5e:94:1b:9f:f9:
                    a4:f9:6c:41:20:70:bd:5b:28:37:ae:da:30:cb:c0:9f:
                    65:71:31:df:2a:6e:57:9d:86:d9:b5:bc:b7:30:24:04:
                    5a:43:4e:35:1c:25:59:70:59:5b:94:89:2d:c3:e3:bb:
                    66:36:e3:8c:3d:77:16:f5:4c:0c:1c:dc:04:f5:44:e7:
                    45:a0:f1:e3:b2:cd:a0:c0:b7:24:d4:47:42:f6:7e:e1:
                    22:fd:4a:9c:bd:f6:01:2d:1d:a9:d5:3f:fa:7a:ec:74:
                    79:aa:e3:e4:cc:98:b8:ca:5a:76:8d:32:c7:2f:38:ea:
                    6c:f7:1f:25:01:d6:4f:02:b8:a5:0b:13:4e:13:8f:8c:
                    07:ef:93:5e:30:f7:d8:b8:19:c9:4d:1b:3c:b6:48:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:d5:42:3f:61:ce:33:0b:07:3a:05:33:84:62:70:73:
        09:13:54:d6:8d:21:13:6c:95:90:da:11:55:c1:c8:53:
        93:fe:ee:bf:92:13:56:8c:8d:d8:b3:66:55:17:ee:5c:
        d9:51:f6:d1:0a:23:bf:68:89:45:53:62:e0:12:df:9d:
        da:a8:6c:d1:2f:74:d9:7b:49:77:97:b7:47:f5:36:44:
        1d:c3:17:9e:8e:71:2f:d3:b7:c3:82:31:cf:8c:a4:86:
        b8:14:61:69:cd:b1:b9:64:16:ce:b1:5d:c6:97:2e:6b:
        c2:1b:a7:98:52:ea:18:dc:0c:8a:8a:88:82:9c:69:03:
        6c:f0:5d:65:5c:2b:bd:d2:6a:10:8b:3a:a7:6a:f6:48:
        a7:f2:a8:09:8c:b3:5d:a2:fb:13:eb:5c:89:0d:fd:13:
        97:52:88:3a:21:c3:9b:9a:70:08:36:4f:29:b3:10:65:
        b0:69:2c:3c:d9:5e:0c:20:52:d9:2d:7c:c3:8b:16:1d:
        58:c3:95:d7:e1:da:54:3b:c8:eb:55:2b:e4:71:b8:74:
        6d:46:97:6e:ec:9d:e1:86:df:09:77:f7:27:8a:b1:95:
        3c:43:20:e1:f1:2c:47:5c:10:e0:1b:a4:b9:ec:f0:5e:
        66:2a:4a:76:59:2a:38:52:ab:98:aa:99:28:c3:3e:df
    Fingerprint (SHA-256):
        53:30:C8:A8:35:BD:91:18:21:C9:BE:DC:CE:4E:E3:13:6A:FF:A9:74:C5:62:47:E3:48:E3:74:FA:D7:74:C8:41
    Fingerprint (SHA1):
        10:27:82:74:BD:49:CF:A1:F3:37:AC:50:48:6D:B0:D3:CF:E7:FF:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11130: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11131: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11132: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11133: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11134: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11135: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11136: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11137: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11138: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154540 (0x1dee452c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:46:21 2017
            Not After : Mon May 02 15:46:21 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:dd:68:b9:2e:50:94:38:d8:d9:46:7e:2b:97:78:87:
                    a6:02:f5:7d:75:e2:0d:12:58:57:df:6d:dd:c1:f4:4b:
                    f3:ed:94:d9:78:15:12:01:ba:34:d4:8a:07:9d:ce:5c:
                    14:b4:41:d9:e3:3c:a8:04:2a:0f:4c:f3:6d:7b:de:ff:
                    c2:d1:da:9f:72:26:ea:bb:44:c4:c4:bf:8c:27:2d:1d:
                    a7:5f:dc:d3:5f:ce:cf:20:c1:0d:06:eb:a3:6a:d3:6c:
                    7f:67:ed:56:85:d3:ff:42:18:33:14:19:06:f2:a5:8a:
                    73:e0:8d:9c:d8:d8:d4:43:1c:be:55:a0:2f:45:a3:51:
                    e5:ac:73:03:f5:97:61:31:d6:e8:be:ed:99:f9:be:00:
                    9d:27:bd:c6:60:9c:d6:c9:78:13:85:25:29:3a:2c:0e:
                    8c:24:6b:d9:e8:89:5e:f5:08:32:64:ab:d5:34:ad:ae:
                    4a:8f:51:2f:8c:89:7d:a9:84:bc:b2:5a:b8:12:be:8c:
                    9a:8c:e5:c6:d7:04:2b:e3:78:7e:b6:80:d4:67:da:5d:
                    41:bd:fa:f2:eb:a3:e6:1d:44:07:7e:9b:5d:66:5e:52:
                    6b:d3:ab:9e:46:99:5f:66:9a:0d:2a:a3:99:19:ae:1d:
                    7d:dc:66:0e:d8:b7:2e:71:e0:f5:5c:d5:d7:59:30:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:ec:f8:89:f9:51:c5:53:ea:eb:05:04:8a:97:0c:39:
        52:a2:05:8b:78:87:6b:ac:df:8c:8a:e9:25:d7:30:68:
        db:5c:c4:1b:bd:ed:77:2b:65:25:69:4a:a9:96:28:02:
        1c:59:e6:2b:86:d7:64:1e:18:c3:48:61:41:7a:a4:f2:
        de:6a:fb:bb:35:27:b2:43:7a:9a:06:0f:72:1f:5d:0b:
        2f:a5:ca:7c:38:1a:6b:9a:ac:3e:40:cb:dc:9a:1c:2e:
        fb:07:4b:a3:ac:f4:1d:5a:a8:7c:eb:2f:61:3c:09:bd:
        dd:bc:bb:15:3c:1a:a8:49:4e:6b:9a:54:e2:49:3c:5c:
        09:70:04:ee:a2:21:94:de:9f:e3:15:1c:dc:b9:af:b3:
        37:a3:56:74:ce:1f:de:f5:58:e7:15:95:43:d1:e1:79:
        f9:ef:c6:fe:c3:47:03:83:25:17:6a:c8:65:33:3a:c8:
        72:b9:03:71:6e:4f:be:a7:e6:3b:d4:92:b8:fd:a8:66:
        41:6a:92:b8:78:ae:09:73:0b:5b:f8:b1:e6:69:69:a9:
        fe:ad:d4:bc:6f:9f:c6:0f:3c:00:00:b1:46:59:ec:f8:
        1b:01:be:e9:ab:c2:5b:9b:b3:90:35:cd:86:51:79:f3:
        9c:05:0c:9f:da:4a:40:d8:52:18:70:39:e2:d3:fe:b2
    Fingerprint (SHA-256):
        11:65:4C:90:65:0F:1D:48:B3:8E:4D:88:A2:46:0E:2A:2B:38:E1:D5:37:55:41:B6:FB:06:64:37:71:C4:9B:6E
    Fingerprint (SHA1):
        AB:AC:62:E6:3B:63:C5:AF:DF:C8:68:A8:19:04:07:3C:29:76:00:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11139: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11140: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11141: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11142: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11143: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11144: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11145: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #11146: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #11147: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #11148: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #11149: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #11150: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #11151: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #11152: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11153: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11154: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #11155: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #11156: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11157: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154549 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11158: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11159: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11160: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11161: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154550   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11162: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11163: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11164: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11165: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154551   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11166: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11167: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11168: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11169: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502154552   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11170: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11171: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11172: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11173: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154553   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11174: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11175: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11176: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11177: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502154554   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11178: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11179: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11180: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11181: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502154555   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11182: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11183: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #11184: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11185: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502154556   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11186: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11187: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11188: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11189: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502154557   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11190: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11191: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11192: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154549 (0x1dee4535)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:29 2017
            Not After : Mon May 02 15:46:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    1e:d1:bc:d4:b4:78:cc:37:6b:d4:5e:ef:73:7b:a3:7c:
                    fb:ef:91:7f:f2:57:25:5d:e6:50:b6:09:08:a2:b6:79:
                    62:a2:70:00:49:17:47:db:a8:98:50:4e:5d:e0:a2:30:
                    a8:b5:74:7f:03:af:2a:f5:84:4f:ae:7b:ff:7a:8e:dc:
                    c8:27:5b:36:5d:94:ba:e0:79:33:98:96:59:f9:51:02:
                    35:d7:37:96:9d:ec:62:02:1c:f6:b8:2c:ad:a8:78:f2:
                    8d:ce:40:71:48:dc:db:81:09:94:7b:e8:7a:1f:5e:d8:
                    36:72:d2:f4:6e:67:5a:0a:cc:3c:67:05:bb:f9:73:41:
                    bb:eb:ac:e7:dc:2b:d5:d5:38:9a:ef:57:f1:6c:73:3f:
                    2f:b6:72:36:dd:6b:bd:14:17:6c:e1:29:43:35:96:a6:
                    c2:57:59:0b:3d:89:b6:52:a9:eb:eb:5c:a3:ef:26:84:
                    6b:fd:69:20:c0:e7:3c:3c:fa:0e:6c:19:04:f9:81:15:
                    11:79:b5:be:41:44:11:ee:9b:87:15:43:31:eb:97:a3:
                    fc:af:e2:00:11:e0:77:47:d8:22:05:2e:f6:a9:77:50:
                    f2:04:0c:b8:38:af:f4:96:97:7d:92:69:72:52:dd:e1:
                    c7:09:99:f9:25:3f:f6:08:65:8d:e5:f7:bd:39:7a:57
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:7e:64:10:c0:22:b2:71:17:57:11:b0:75:
        9e:81:dc:65:24:1d:f1:d6:5e:65:2c:90:ae:15:11:09:
        02:1c:12:fe:4f:af:47:74:02:99:1b:be:81:31:e4:48:
        97:f7:ca:9e:bb:37:7e:2b:32:47:90:33:a5:fb
    Fingerprint (SHA-256):
        01:5C:61:A1:BF:D6:A8:37:7C:B4:0A:FE:71:89:7C:80:BA:9B:4E:F4:A1:49:EE:08:9C:DE:B7:2E:61:51:B1:99
    Fingerprint (SHA1):
        25:60:8E:B3:0B:EF:46:D8:D2:CC:69:26:4F:08:DE:EA:F3:E6:BA:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11193: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154549 (0x1dee4535)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:29 2017
            Not After : Mon May 02 15:46:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    1e:d1:bc:d4:b4:78:cc:37:6b:d4:5e:ef:73:7b:a3:7c:
                    fb:ef:91:7f:f2:57:25:5d:e6:50:b6:09:08:a2:b6:79:
                    62:a2:70:00:49:17:47:db:a8:98:50:4e:5d:e0:a2:30:
                    a8:b5:74:7f:03:af:2a:f5:84:4f:ae:7b:ff:7a:8e:dc:
                    c8:27:5b:36:5d:94:ba:e0:79:33:98:96:59:f9:51:02:
                    35:d7:37:96:9d:ec:62:02:1c:f6:b8:2c:ad:a8:78:f2:
                    8d:ce:40:71:48:dc:db:81:09:94:7b:e8:7a:1f:5e:d8:
                    36:72:d2:f4:6e:67:5a:0a:cc:3c:67:05:bb:f9:73:41:
                    bb:eb:ac:e7:dc:2b:d5:d5:38:9a:ef:57:f1:6c:73:3f:
                    2f:b6:72:36:dd:6b:bd:14:17:6c:e1:29:43:35:96:a6:
                    c2:57:59:0b:3d:89:b6:52:a9:eb:eb:5c:a3:ef:26:84:
                    6b:fd:69:20:c0:e7:3c:3c:fa:0e:6c:19:04:f9:81:15:
                    11:79:b5:be:41:44:11:ee:9b:87:15:43:31:eb:97:a3:
                    fc:af:e2:00:11:e0:77:47:d8:22:05:2e:f6:a9:77:50:
                    f2:04:0c:b8:38:af:f4:96:97:7d:92:69:72:52:dd:e1:
                    c7:09:99:f9:25:3f:f6:08:65:8d:e5:f7:bd:39:7a:57
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:7e:64:10:c0:22:b2:71:17:57:11:b0:75:
        9e:81:dc:65:24:1d:f1:d6:5e:65:2c:90:ae:15:11:09:
        02:1c:12:fe:4f:af:47:74:02:99:1b:be:81:31:e4:48:
        97:f7:ca:9e:bb:37:7e:2b:32:47:90:33:a5:fb
    Fingerprint (SHA-256):
        01:5C:61:A1:BF:D6:A8:37:7C:B4:0A:FE:71:89:7C:80:BA:9B:4E:F4:A1:49:EE:08:9C:DE:B7:2E:61:51:B1:99
    Fingerprint (SHA1):
        25:60:8E:B3:0B:EF:46:D8:D2:CC:69:26:4F:08:DE:EA:F3:E6:BA:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11194: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154549 (0x1dee4535)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:29 2017
            Not After : Mon May 02 15:46:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    1e:d1:bc:d4:b4:78:cc:37:6b:d4:5e:ef:73:7b:a3:7c:
                    fb:ef:91:7f:f2:57:25:5d:e6:50:b6:09:08:a2:b6:79:
                    62:a2:70:00:49:17:47:db:a8:98:50:4e:5d:e0:a2:30:
                    a8:b5:74:7f:03:af:2a:f5:84:4f:ae:7b:ff:7a:8e:dc:
                    c8:27:5b:36:5d:94:ba:e0:79:33:98:96:59:f9:51:02:
                    35:d7:37:96:9d:ec:62:02:1c:f6:b8:2c:ad:a8:78:f2:
                    8d:ce:40:71:48:dc:db:81:09:94:7b:e8:7a:1f:5e:d8:
                    36:72:d2:f4:6e:67:5a:0a:cc:3c:67:05:bb:f9:73:41:
                    bb:eb:ac:e7:dc:2b:d5:d5:38:9a:ef:57:f1:6c:73:3f:
                    2f:b6:72:36:dd:6b:bd:14:17:6c:e1:29:43:35:96:a6:
                    c2:57:59:0b:3d:89:b6:52:a9:eb:eb:5c:a3:ef:26:84:
                    6b:fd:69:20:c0:e7:3c:3c:fa:0e:6c:19:04:f9:81:15:
                    11:79:b5:be:41:44:11:ee:9b:87:15:43:31:eb:97:a3:
                    fc:af:e2:00:11:e0:77:47:d8:22:05:2e:f6:a9:77:50:
                    f2:04:0c:b8:38:af:f4:96:97:7d:92:69:72:52:dd:e1:
                    c7:09:99:f9:25:3f:f6:08:65:8d:e5:f7:bd:39:7a:57
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:7e:64:10:c0:22:b2:71:17:57:11:b0:75:
        9e:81:dc:65:24:1d:f1:d6:5e:65:2c:90:ae:15:11:09:
        02:1c:12:fe:4f:af:47:74:02:99:1b:be:81:31:e4:48:
        97:f7:ca:9e:bb:37:7e:2b:32:47:90:33:a5:fb
    Fingerprint (SHA-256):
        01:5C:61:A1:BF:D6:A8:37:7C:B4:0A:FE:71:89:7C:80:BA:9B:4E:F4:A1:49:EE:08:9C:DE:B7:2E:61:51:B1:99
    Fingerprint (SHA1):
        25:60:8E:B3:0B:EF:46:D8:D2:CC:69:26:4F:08:DE:EA:F3:E6:BA:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11195: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154549 (0x1dee4535)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:29 2017
            Not After : Mon May 02 15:46:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    1e:d1:bc:d4:b4:78:cc:37:6b:d4:5e:ef:73:7b:a3:7c:
                    fb:ef:91:7f:f2:57:25:5d:e6:50:b6:09:08:a2:b6:79:
                    62:a2:70:00:49:17:47:db:a8:98:50:4e:5d:e0:a2:30:
                    a8:b5:74:7f:03:af:2a:f5:84:4f:ae:7b:ff:7a:8e:dc:
                    c8:27:5b:36:5d:94:ba:e0:79:33:98:96:59:f9:51:02:
                    35:d7:37:96:9d:ec:62:02:1c:f6:b8:2c:ad:a8:78:f2:
                    8d:ce:40:71:48:dc:db:81:09:94:7b:e8:7a:1f:5e:d8:
                    36:72:d2:f4:6e:67:5a:0a:cc:3c:67:05:bb:f9:73:41:
                    bb:eb:ac:e7:dc:2b:d5:d5:38:9a:ef:57:f1:6c:73:3f:
                    2f:b6:72:36:dd:6b:bd:14:17:6c:e1:29:43:35:96:a6:
                    c2:57:59:0b:3d:89:b6:52:a9:eb:eb:5c:a3:ef:26:84:
                    6b:fd:69:20:c0:e7:3c:3c:fa:0e:6c:19:04:f9:81:15:
                    11:79:b5:be:41:44:11:ee:9b:87:15:43:31:eb:97:a3:
                    fc:af:e2:00:11:e0:77:47:d8:22:05:2e:f6:a9:77:50:
                    f2:04:0c:b8:38:af:f4:96:97:7d:92:69:72:52:dd:e1:
                    c7:09:99:f9:25:3f:f6:08:65:8d:e5:f7:bd:39:7a:57
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:7e:64:10:c0:22:b2:71:17:57:11:b0:75:
        9e:81:dc:65:24:1d:f1:d6:5e:65:2c:90:ae:15:11:09:
        02:1c:12:fe:4f:af:47:74:02:99:1b:be:81:31:e4:48:
        97:f7:ca:9e:bb:37:7e:2b:32:47:90:33:a5:fb
    Fingerprint (SHA-256):
        01:5C:61:A1:BF:D6:A8:37:7C:B4:0A:FE:71:89:7C:80:BA:9B:4E:F4:A1:49:EE:08:9C:DE:B7:2E:61:51:B1:99
    Fingerprint (SHA1):
        25:60:8E:B3:0B:EF:46:D8:D2:CC:69:26:4F:08:DE:EA:F3:E6:BA:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #11196: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11197: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11198: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11199: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11200: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11201: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11202: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11203: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11204: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11205: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11206: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11207: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11208: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11209: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11210: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11211: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #11212: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11213: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11214: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11215: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11216: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11217: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11218: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11219: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11220: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11221: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11222: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11223: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154639Z
nextupdate=20180502154639Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:46:39 2017
    Next Update: Wed May 02 15:46:39 2018
    CRL Extensions:
chains.sh: #11224: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154639Z
nextupdate=20180502154639Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:46:39 2017
    Next Update: Wed May 02 15:46:39 2018
    CRL Extensions:
chains.sh: #11225: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154639Z
nextupdate=20180502154639Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:46:39 2017
    Next Update: Wed May 02 15:46:39 2018
    CRL Extensions:
chains.sh: #11226: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154639Z
nextupdate=20180502154639Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:46:39 2017
    Next Update: Wed May 02 15:46:39 2018
    CRL Extensions:
chains.sh: #11227: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154640Z
addcert 14 20170502154640Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:46:40 2017
    Next Update: Wed May 02 15:46:39 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:46:40 2017
    CRL Extensions:
chains.sh: #11228: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154641Z
addcert 15 20170502154641Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:46:41 2017
    Next Update: Wed May 02 15:46:39 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:46:41 2017
    CRL Extensions:
chains.sh: #11229: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11230: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11231: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11232: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #11233: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #11234: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #11235: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #11236: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #11237: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #11238: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:34 2017
            Not After : Mon May 02 15:46:34 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:60:3d:ab:b0:50:14:2b:db:2f:73:8e:f8:5a:84:03:
                    ca:30:56:44:a5:51:3d:ad:33:33:e9:f7:b0:44:d8:2b:
                    ee:22:bf:b5:1e:9a:43:bd:e4:c5:38:cd:37:59:18:f3:
                    67:ec:17:10:48:c8:28:86:4b:32:a9:10:6a:c1:b7:17:
                    dd:b2:fd:0c:98:0e:c8:80:a6:21:99:2a:af:af:f8:57:
                    78:cc:c2:a4:51:06:d4:74:b7:ce:28:66:0d:e1:fd:46:
                    f2:b3:71:ed:b6:1a:9f:5b:be:a2:63:93:22:df:22:3c:
                    2a:21:6d:e6:e4:28:20:ad:92:96:48:76:9a:0f:21:b4:
                    ff:4a:38:43:bc:22:99:2a:7c:89:3b:5f:48:fa:60:2b:
                    49:c9:84:81:00:e7:e9:b8:c9:88:a4:b5:84:16:84:06:
                    4f:21:3f:16:17:c4:2a:bd:cc:df:d0:54:1e:f2:a8:1c:
                    6a:50:9f:d2:28:b1:af:93:a5:d1:e6:54:fa:84:f5:12:
                    8d:0b:e3:7d:6d:91:61:05:57:6e:dd:6a:1f:4c:0a:a3:
                    4e:08:56:fc:ce:6d:74:cb:10:c8:7a:fe:82:42:16:84:
                    fa:cb:02:06:97:d4:1d:03:33:04:f6:c3:0d:6b:71:9c:
                    d8:27:2e:5a:26:61:95:83:71:68:7a:5d:f6:f9:40:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d1:00:b1:d3:28:fa:58:20:73:99:e1:c3:d9:25:81:a9:
        3d:71:91:dd:15:4b:f5:dc:96:e7:92:7e:1e:5d:07:a1:
        1a:9a:e8:13:74:10:b2:3d:2e:35:9a:a0:67:c3:a6:8c:
        bb:18:ad:23:20:e6:0c:a0:9b:4a:e8:85:de:8d:08:ef:
        e4:3d:a7:aa:6a:c0:c2:4e:ee:1d:5d:4b:ad:4e:0e:82:
        de:a4:00:79:ea:78:2d:35:49:61:de:3b:a8:f3:31:01:
        7b:07:b1:a9:be:42:18:06:be:e3:89:e6:f9:8a:80:03:
        6d:0f:a2:ce:f4:83:f7:3a:84:fb:5a:11:75:90:4b:eb:
        ce:ef:63:13:fb:5f:0c:db:37:a7:51:11:a2:52:be:61:
        f2:17:0d:9f:4b:43:37:34:c9:7e:3b:00:56:e3:25:02:
        49:c4:27:5e:e1:5f:5b:b5:28:ce:7b:64:36:a6:23:82:
        ca:16:32:42:dc:f5:7b:fb:02:3e:e4:81:92:50:70:f5:
        c1:e5:d3:0b:be:6e:f8:9d:47:c7:b9:50:0e:9c:72:2e:
        38:c9:d8:7e:68:cf:84:9d:4e:3b:fd:c3:80:e9:85:83:
        63:04:d2:cf:f1:79:e7:a8:dc:d0:27:dc:22:be:d5:97:
        92:1d:2f:b8:eb:34:56:0b:89:a6:12:ac:d5:d0:55:0a
    Fingerprint (SHA-256):
        E0:4A:39:DB:FA:7A:53:3F:15:87:75:A6:CB:4C:40:05:87:2E:F7:5C:CF:FF:58:94:72:43:6C:09:D1:90:FB:BF
    Fingerprint (SHA1):
        7B:29:74:27:AC:A0:E1:19:C2:DF:DF:1E:CD:FD:A1:94:61:15:75:C3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11239: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11240: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:34 2017
            Not After : Mon May 02 15:46:34 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:60:3d:ab:b0:50:14:2b:db:2f:73:8e:f8:5a:84:03:
                    ca:30:56:44:a5:51:3d:ad:33:33:e9:f7:b0:44:d8:2b:
                    ee:22:bf:b5:1e:9a:43:bd:e4:c5:38:cd:37:59:18:f3:
                    67:ec:17:10:48:c8:28:86:4b:32:a9:10:6a:c1:b7:17:
                    dd:b2:fd:0c:98:0e:c8:80:a6:21:99:2a:af:af:f8:57:
                    78:cc:c2:a4:51:06:d4:74:b7:ce:28:66:0d:e1:fd:46:
                    f2:b3:71:ed:b6:1a:9f:5b:be:a2:63:93:22:df:22:3c:
                    2a:21:6d:e6:e4:28:20:ad:92:96:48:76:9a:0f:21:b4:
                    ff:4a:38:43:bc:22:99:2a:7c:89:3b:5f:48:fa:60:2b:
                    49:c9:84:81:00:e7:e9:b8:c9:88:a4:b5:84:16:84:06:
                    4f:21:3f:16:17:c4:2a:bd:cc:df:d0:54:1e:f2:a8:1c:
                    6a:50:9f:d2:28:b1:af:93:a5:d1:e6:54:fa:84:f5:12:
                    8d:0b:e3:7d:6d:91:61:05:57:6e:dd:6a:1f:4c:0a:a3:
                    4e:08:56:fc:ce:6d:74:cb:10:c8:7a:fe:82:42:16:84:
                    fa:cb:02:06:97:d4:1d:03:33:04:f6:c3:0d:6b:71:9c:
                    d8:27:2e:5a:26:61:95:83:71:68:7a:5d:f6:f9:40:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d1:00:b1:d3:28:fa:58:20:73:99:e1:c3:d9:25:81:a9:
        3d:71:91:dd:15:4b:f5:dc:96:e7:92:7e:1e:5d:07:a1:
        1a:9a:e8:13:74:10:b2:3d:2e:35:9a:a0:67:c3:a6:8c:
        bb:18:ad:23:20:e6:0c:a0:9b:4a:e8:85:de:8d:08:ef:
        e4:3d:a7:aa:6a:c0:c2:4e:ee:1d:5d:4b:ad:4e:0e:82:
        de:a4:00:79:ea:78:2d:35:49:61:de:3b:a8:f3:31:01:
        7b:07:b1:a9:be:42:18:06:be:e3:89:e6:f9:8a:80:03:
        6d:0f:a2:ce:f4:83:f7:3a:84:fb:5a:11:75:90:4b:eb:
        ce:ef:63:13:fb:5f:0c:db:37:a7:51:11:a2:52:be:61:
        f2:17:0d:9f:4b:43:37:34:c9:7e:3b:00:56:e3:25:02:
        49:c4:27:5e:e1:5f:5b:b5:28:ce:7b:64:36:a6:23:82:
        ca:16:32:42:dc:f5:7b:fb:02:3e:e4:81:92:50:70:f5:
        c1:e5:d3:0b:be:6e:f8:9d:47:c7:b9:50:0e:9c:72:2e:
        38:c9:d8:7e:68:cf:84:9d:4e:3b:fd:c3:80:e9:85:83:
        63:04:d2:cf:f1:79:e7:a8:dc:d0:27:dc:22:be:d5:97:
        92:1d:2f:b8:eb:34:56:0b:89:a6:12:ac:d5:d0:55:0a
    Fingerprint (SHA-256):
        E0:4A:39:DB:FA:7A:53:3F:15:87:75:A6:CB:4C:40:05:87:2E:F7:5C:CF:FF:58:94:72:43:6C:09:D1:90:FB:BF
    Fingerprint (SHA1):
        7B:29:74:27:AC:A0:E1:19:C2:DF:DF:1E:CD:FD:A1:94:61:15:75:C3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11241: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11242: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11243: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154558 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11244: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11245: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11246: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11247: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502154559   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11248: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11249: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11250: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154449.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11251: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502154434.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11252: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11253: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11254: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154449.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11255: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502154560   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11256: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11257: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11258: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154449.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11259: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502154435.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11260: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11261: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11262: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11263: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502154561   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11264: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11265: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11266: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154449.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11267: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502154436.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11268: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11269: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11270: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154449.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11271: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502154437.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11272: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11273: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154647Z
nextupdate=20180502154647Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:46:47 2017
    Next Update: Wed May 02 15:46:47 2018
    CRL Extensions:
chains.sh: #11274: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154647Z
nextupdate=20180502154647Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:46:47 2017
    Next Update: Wed May 02 15:46:47 2018
    CRL Extensions:
chains.sh: #11275: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154647Z
nextupdate=20180502154647Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:46:47 2017
    Next Update: Wed May 02 15:46:47 2018
    CRL Extensions:
chains.sh: #11276: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154647Z
nextupdate=20180502154647Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:46:47 2017
    Next Update: Wed May 02 15:46:47 2018
    CRL Extensions:
chains.sh: #11277: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154648Z
addcert 20 20170502154648Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:46:48 2017
    Next Update: Wed May 02 15:46:47 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:46:48 2017
    CRL Extensions:
chains.sh: #11278: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154649Z
addcert 40 20170502154649Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:46:49 2017
    Next Update: Wed May 02 15:46:47 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:46:48 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:46:49 2017
    CRL Extensions:
chains.sh: #11279: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11280: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11281: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11282: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154558 (0x1dee453e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:42 2017
            Not After : Mon May 02 15:46:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:75:42:84:3d:d6:3d:18:00:a5:fc:ef:91:e9:53:cb:
                    3c:c0:59:1d:ae:65:b4:f8:a5:8d:03:ef:8d:d3:bb:b2:
                    59:7d:89:bf:b8:87:df:f4:52:07:e5:00:b5:f9:7d:f2:
                    1e:18:f7:5b:6a:d1:29:ce:fd:b4:02:e0:6a:89:a9:32:
                    ba:dd:a3:25:9a:83:48:f3:9b:ea:df:b2:f3:27:ec:be:
                    99:98:7a:4f:20:0f:8e:06:e2:b0:99:51:77:3b:8e:b8:
                    6e:05:eb:0e:4b:79:12:92:d6:41:93:b2:94:44:5b:9e:
                    6d:0e:4f:45:d4:d8:c7:40:0e:be:35:3a:8a:05:32:17:
                    1d:27:20:89:ce:e7:12:c6:03:2a:f1:26:37:7f:26:30:
                    6b:4d:14:04:95:67:f4:ed:e1:d9:e4:48:d1:04:bf:f8:
                    e8:c5:c0:8e:3e:43:bf:c2:b2:fb:a0:a2:ce:fc:f3:54:
                    e3:53:fa:7f:c7:11:81:ae:8e:b7:31:d0:44:9c:54:0b:
                    db:78:82:e0:36:57:cb:bc:bf:48:69:fc:18:4c:28:ff:
                    9a:dd:a0:e6:59:a5:8f:9f:91:ae:a0:20:8e:81:68:33:
                    bb:89:ca:42:55:92:58:74:8f:df:de:fb:5d:28:88:89:
                    3a:22:49:f2:ce:bb:7b:5e:5a:01:38:4b:ed:4e:3e:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:47:04:56:0a:13:ed:28:6b:7f:47:16:66:2d:bf:36:
        f5:26:34:ab:b8:8d:d3:a3:a5:e9:2f:3a:6a:03:b0:48:
        bd:20:e1:a9:44:fd:98:e4:d5:26:1f:07:3f:12:46:22:
        a3:70:01:19:44:75:14:1c:4b:58:81:ae:e9:4b:77:bf:
        d6:fa:da:ca:39:58:a8:91:d5:3a:4d:e7:aa:e0:b1:8e:
        7f:ad:38:82:66:62:89:97:d0:05:e4:26:e2:74:d5:ea:
        10:63:f8:95:e9:f3:d4:0d:8d:0c:9e:f6:a5:98:04:73:
        58:b9:93:2c:f3:64:f2:62:25:f6:5b:88:9d:01:26:1a:
        04:31:a7:8c:d4:00:38:1f:de:d4:57:65:d6:7f:37:8f:
        e0:a9:e9:d0:d7:b2:5b:a8:45:34:99:cf:59:4e:a3:92:
        8c:cd:d6:1c:5a:b6:88:66:a3:31:57:52:af:e2:e7:ec:
        64:2f:af:47:c7:2a:a1:29:ac:35:71:5a:bc:7c:c5:f6:
        fc:14:08:a8:c5:18:40:b6:18:85:25:78:c1:44:18:f6:
        f3:46:d9:84:5c:eb:73:1e:03:7d:29:6b:43:be:83:ce:
        b8:8d:b8:08:0e:1e:5b:34:4f:e9:de:ac:dc:cf:45:b6:
        32:26:63:11:ae:3c:0e:b1:28:c5:39:23:a6:3e:50:eb
    Fingerprint (SHA-256):
        5F:BD:5A:A2:7E:7E:8E:DA:7F:9C:42:BF:98:DE:A8:BE:2B:D9:53:4E:1A:9C:45:7C:DD:35:F1:98:C3:F2:B3:E3
    Fingerprint (SHA1):
        8B:E3:64:8B:AB:DD:F1:67:60:D0:FE:A4:68:FE:84:19:8D:C9:88:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11283: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11284: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154558 (0x1dee453e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:46:42 2017
            Not After : Mon May 02 15:46:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:75:42:84:3d:d6:3d:18:00:a5:fc:ef:91:e9:53:cb:
                    3c:c0:59:1d:ae:65:b4:f8:a5:8d:03:ef:8d:d3:bb:b2:
                    59:7d:89:bf:b8:87:df:f4:52:07:e5:00:b5:f9:7d:f2:
                    1e:18:f7:5b:6a:d1:29:ce:fd:b4:02:e0:6a:89:a9:32:
                    ba:dd:a3:25:9a:83:48:f3:9b:ea:df:b2:f3:27:ec:be:
                    99:98:7a:4f:20:0f:8e:06:e2:b0:99:51:77:3b:8e:b8:
                    6e:05:eb:0e:4b:79:12:92:d6:41:93:b2:94:44:5b:9e:
                    6d:0e:4f:45:d4:d8:c7:40:0e:be:35:3a:8a:05:32:17:
                    1d:27:20:89:ce:e7:12:c6:03:2a:f1:26:37:7f:26:30:
                    6b:4d:14:04:95:67:f4:ed:e1:d9:e4:48:d1:04:bf:f8:
                    e8:c5:c0:8e:3e:43:bf:c2:b2:fb:a0:a2:ce:fc:f3:54:
                    e3:53:fa:7f:c7:11:81:ae:8e:b7:31:d0:44:9c:54:0b:
                    db:78:82:e0:36:57:cb:bc:bf:48:69:fc:18:4c:28:ff:
                    9a:dd:a0:e6:59:a5:8f:9f:91:ae:a0:20:8e:81:68:33:
                    bb:89:ca:42:55:92:58:74:8f:df:de:fb:5d:28:88:89:
                    3a:22:49:f2:ce:bb:7b:5e:5a:01:38:4b:ed:4e:3e:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:47:04:56:0a:13:ed:28:6b:7f:47:16:66:2d:bf:36:
        f5:26:34:ab:b8:8d:d3:a3:a5:e9:2f:3a:6a:03:b0:48:
        bd:20:e1:a9:44:fd:98:e4:d5:26:1f:07:3f:12:46:22:
        a3:70:01:19:44:75:14:1c:4b:58:81:ae:e9:4b:77:bf:
        d6:fa:da:ca:39:58:a8:91:d5:3a:4d:e7:aa:e0:b1:8e:
        7f:ad:38:82:66:62:89:97:d0:05:e4:26:e2:74:d5:ea:
        10:63:f8:95:e9:f3:d4:0d:8d:0c:9e:f6:a5:98:04:73:
        58:b9:93:2c:f3:64:f2:62:25:f6:5b:88:9d:01:26:1a:
        04:31:a7:8c:d4:00:38:1f:de:d4:57:65:d6:7f:37:8f:
        e0:a9:e9:d0:d7:b2:5b:a8:45:34:99:cf:59:4e:a3:92:
        8c:cd:d6:1c:5a:b6:88:66:a3:31:57:52:af:e2:e7:ec:
        64:2f:af:47:c7:2a:a1:29:ac:35:71:5a:bc:7c:c5:f6:
        fc:14:08:a8:c5:18:40:b6:18:85:25:78:c1:44:18:f6:
        f3:46:d9:84:5c:eb:73:1e:03:7d:29:6b:43:be:83:ce:
        b8:8d:b8:08:0e:1e:5b:34:4f:e9:de:ac:dc:cf:45:b6:
        32:26:63:11:ae:3c:0e:b1:28:c5:39:23:a6:3e:50:eb
    Fingerprint (SHA-256):
        5F:BD:5A:A2:7E:7E:8E:DA:7F:9C:42:BF:98:DE:A8:BE:2B:D9:53:4E:1A:9C:45:7C:DD:35:F1:98:C3:F2:B3:E3
    Fingerprint (SHA1):
        8B:E3:64:8B:AB:DD:F1:67:60:D0:FE:A4:68:FE:84:19:8D:C9:88:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11285: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11286: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11287: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154562 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11288: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11289: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11290: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11291: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154563   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11292: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11293: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11294: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11295: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154564   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11296: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11297: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11298: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11299: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502154565   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11300: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11301: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #11302: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154566 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11303: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #11304: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #11305: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11306: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502154567   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11307: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11308: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11309: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11310: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502154568   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11311: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11312: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #11313: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #11314: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #11315: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154562 (0x1dee4542)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:46:51 2017
            Not After : Mon May 02 15:46:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:51:41:7b:f1:1c:05:bf:44:f2:5e:74:24:4c:70:9c:
                    7d:08:f7:a1:cb:db:b1:70:3c:10:fe:44:0c:61:85:84:
                    6c:e1:00:9b:be:7f:1d:1f:4b:a9:35:0a:27:d7:e0:b0:
                    2e:26:3f:7e:96:1a:f7:4c:f3:ef:0d:97:ab:21:5d:83:
                    08:7c:35:78:91:30:2b:76:12:53:ac:f2:dd:25:0b:e8:
                    9a:29:af:30:ab:0a:3e:03:08:23:ad:a9:bb:85:1c:c5:
                    10:c3:f3:73:0d:fa:79:e5:ef:ee:b9:d0:dc:d8:0e:5a:
                    50:46:74:60:0d:dc:74:6c:fa:ac:a8:17:c8:d7:77:c8:
                    65:85:0b:98:8f:1b:cb:32:89:60:a1:77:08:13:67:e2:
                    6f:1f:a6:3e:72:ed:d1:fd:09:a7:02:de:b3:6a:74:5b:
                    4f:ce:a3:19:ad:15:fe:b8:39:d4:3f:6c:c7:b7:a6:c9:
                    ab:33:8a:9a:2f:d9:4d:ab:8e:11:24:e9:f8:57:86:1a:
                    92:34:f2:30:f5:2c:69:10:3e:84:9c:be:3e:a7:5f:63:
                    f2:bd:b9:65:70:7b:ea:9b:2f:b7:08:87:4c:4e:54:d0:
                    0b:3d:27:53:bc:61:60:67:5b:60:40:0f:5b:28:c6:49:
                    57:35:d6:48:45:32:d8:c4:ed:0f:68:68:54:a2:30:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:cf:66:2f:11:b9:23:fc:03:49:e4:df:47:8e:ef:b6:
        63:db:e2:29:cd:f5:d8:9a:bf:05:73:61:81:62:04:12:
        5a:60:6a:4c:38:77:68:97:b4:ad:d4:80:28:3e:58:e5:
        69:57:29:77:2e:9e:2a:56:f4:a9:7a:b8:54:60:e9:eb:
        90:90:8b:76:95:8c:81:6c:54:a0:c9:d9:3c:42:09:88:
        43:db:d6:9e:36:cd:c9:33:ea:6d:a6:ad:2b:4c:fe:e9:
        4d:3a:d1:b4:7e:4d:54:fc:1a:f4:40:50:75:4b:91:d1:
        62:5c:67:d9:f7:e1:87:c9:78:d7:24:56:25:24:13:98:
        63:51:f0:3f:83:c3:df:ad:7c:74:44:c9:44:8c:76:92:
        d7:e6:e2:2b:a1:44:dd:7b:3a:ff:86:42:97:99:86:05:
        df:dc:3d:3b:90:b2:f0:4c:b0:27:80:d7:69:61:ad:14:
        45:05:2e:0a:23:12:50:07:b6:bd:62:ca:50:99:3a:1e:
        81:85:78:ce:4d:54:6e:11:5b:28:f7:77:d2:98:5d:7a:
        e5:0e:5e:08:67:80:ce:4e:bd:26:a5:b4:c4:4a:80:78:
        50:e2:7c:28:12:00:94:33:d0:c4:c6:9c:71:ec:cd:a9:
        82:06:ef:d4:20:4e:87:cf:4b:dd:fb:ed:9e:59:c7:b2
    Fingerprint (SHA-256):
        19:E2:0A:54:53:44:85:0D:0F:65:99:F8:63:57:D8:61:6B:96:B5:EA:34:E4:4C:E0:3E:F5:99:AA:35:A2:66:32
    Fingerprint (SHA1):
        2F:B7:85:D1:C4:38:28:B8:9F:2D:1C:15:1E:B5:48:AD:16:6D:DC:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11316: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154564 (0x1dee4544)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:46:52 2017
            Not After : Mon May 02 15:46:52 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:27:40:d7:bd:3c:76:3f:81:c1:c1:83:f9:29:a2:b1:
                    d8:56:34:c2:f4:23:df:a6:65:bb:67:cc:cd:90:86:ad:
                    cf:0e:31:c3:be:46:d2:62:35:c6:02:3e:8c:ab:4d:ad:
                    43:00:c4:e9:2f:4f:63:61:18:49:c6:9c:9d:f8:4a:fc:
                    da:3d:24:44:2b:9d:f2:77:8c:ec:aa:a8:b2:c2:d9:84:
                    91:18:b4:21:c5:10:21:93:52:e2:19:a5:69:ca:01:c4:
                    0f:15:37:cb:a0:0b:8c:80:61:a5:a7:01:8e:2e:32:06:
                    30:1e:ff:54:ec:fe:ef:4a:d4:fd:e8:4c:47:93:a7:34:
                    1f:dd:60:fb:08:95:04:c9:0c:b2:77:e2:26:f8:e2:5b:
                    84:e9:3f:05:92:55:c8:75:16:6c:c0:7d:ed:5e:60:60:
                    c9:35:89:32:61:c6:12:4d:e6:d6:9d:bb:e6:e3:ab:1a:
                    f6:69:fd:25:a2:b2:7a:a0:6c:3d:9c:58:9f:c0:87:f9:
                    80:f9:81:d2:9f:0d:a8:2a:b9:cb:f4:34:02:b0:d1:f9:
                    a6:a3:c0:7a:26:5f:09:f6:17:8f:da:ec:6a:fa:2d:21:
                    61:5f:1c:4e:6c:88:b4:d3:90:a5:75:da:e2:d0:68:e6:
                    f9:6e:91:7e:f0:11:a6:cb:9e:f4:e0:aa:62:34:a0:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:73:b5:b5:9d:2a:7d:83:22:3a:e0:83:4b:45:72:df:
        98:70:a5:21:a2:cb:c4:3b:9c:a0:dc:6c:aa:47:ed:93:
        ad:43:50:9a:c3:64:93:25:55:91:c8:ef:0f:87:03:83:
        76:ce:7b:d3:16:6d:c4:de:d5:cd:c8:20:bc:88:93:cd:
        4c:f9:32:60:a5:09:ea:b9:aa:10:55:c7:d5:2e:07:ec:
        57:3b:ba:50:f8:83:79:64:b9:20:c6:3d:73:29:e2:31:
        75:ea:58:ec:b3:6f:82:ce:f9:fd:99:e4:e2:7a:c2:7b:
        4e:65:d2:6e:e0:8e:5a:e3:0b:62:63:10:b6:6a:39:ab:
        08:bd:db:4f:26:66:48:0d:6a:2c:f5:53:c6:df:ac:ae:
        46:11:9e:04:b0:6c:0c:cd:a1:69:62:2b:7f:74:6a:19:
        81:a6:35:31:62:a4:0c:2b:aa:1d:3b:78:b4:47:a0:d8:
        d1:9d:1e:4a:ff:bc:84:65:0b:e5:8c:3d:0a:26:35:90:
        2c:17:ab:05:f3:74:4a:23:8a:35:a6:6b:19:ac:b4:be:
        9c:bd:36:48:52:c0:0b:d9:0e:58:f2:aa:e8:92:bb:29:
        6a:7b:a7:82:7f:df:e5:3b:ef:d3:38:b4:1b:f0:c7:77:
        94:07:41:68:f7:ae:8d:c3:a1:c0:2e:9c:fc:0b:41:be
    Fingerprint (SHA-256):
        58:A8:2D:40:B1:BD:3C:E9:6F:9D:0E:81:BC:BB:B2:A0:BF:AC:62:45:C9:C8:0A:AD:C8:2A:A7:D0:0C:7F:D2:61
    Fingerprint (SHA1):
        C6:BF:C9:DD:CB:CE:C3:A0:27:17:6C:AA:09:D9:C7:B0:FC:6F:52:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11317: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154562 (0x1dee4542)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:46:51 2017
            Not After : Mon May 02 15:46:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:51:41:7b:f1:1c:05:bf:44:f2:5e:74:24:4c:70:9c:
                    7d:08:f7:a1:cb:db:b1:70:3c:10:fe:44:0c:61:85:84:
                    6c:e1:00:9b:be:7f:1d:1f:4b:a9:35:0a:27:d7:e0:b0:
                    2e:26:3f:7e:96:1a:f7:4c:f3:ef:0d:97:ab:21:5d:83:
                    08:7c:35:78:91:30:2b:76:12:53:ac:f2:dd:25:0b:e8:
                    9a:29:af:30:ab:0a:3e:03:08:23:ad:a9:bb:85:1c:c5:
                    10:c3:f3:73:0d:fa:79:e5:ef:ee:b9:d0:dc:d8:0e:5a:
                    50:46:74:60:0d:dc:74:6c:fa:ac:a8:17:c8:d7:77:c8:
                    65:85:0b:98:8f:1b:cb:32:89:60:a1:77:08:13:67:e2:
                    6f:1f:a6:3e:72:ed:d1:fd:09:a7:02:de:b3:6a:74:5b:
                    4f:ce:a3:19:ad:15:fe:b8:39:d4:3f:6c:c7:b7:a6:c9:
                    ab:33:8a:9a:2f:d9:4d:ab:8e:11:24:e9:f8:57:86:1a:
                    92:34:f2:30:f5:2c:69:10:3e:84:9c:be:3e:a7:5f:63:
                    f2:bd:b9:65:70:7b:ea:9b:2f:b7:08:87:4c:4e:54:d0:
                    0b:3d:27:53:bc:61:60:67:5b:60:40:0f:5b:28:c6:49:
                    57:35:d6:48:45:32:d8:c4:ed:0f:68:68:54:a2:30:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:cf:66:2f:11:b9:23:fc:03:49:e4:df:47:8e:ef:b6:
        63:db:e2:29:cd:f5:d8:9a:bf:05:73:61:81:62:04:12:
        5a:60:6a:4c:38:77:68:97:b4:ad:d4:80:28:3e:58:e5:
        69:57:29:77:2e:9e:2a:56:f4:a9:7a:b8:54:60:e9:eb:
        90:90:8b:76:95:8c:81:6c:54:a0:c9:d9:3c:42:09:88:
        43:db:d6:9e:36:cd:c9:33:ea:6d:a6:ad:2b:4c:fe:e9:
        4d:3a:d1:b4:7e:4d:54:fc:1a:f4:40:50:75:4b:91:d1:
        62:5c:67:d9:f7:e1:87:c9:78:d7:24:56:25:24:13:98:
        63:51:f0:3f:83:c3:df:ad:7c:74:44:c9:44:8c:76:92:
        d7:e6:e2:2b:a1:44:dd:7b:3a:ff:86:42:97:99:86:05:
        df:dc:3d:3b:90:b2:f0:4c:b0:27:80:d7:69:61:ad:14:
        45:05:2e:0a:23:12:50:07:b6:bd:62:ca:50:99:3a:1e:
        81:85:78:ce:4d:54:6e:11:5b:28:f7:77:d2:98:5d:7a:
        e5:0e:5e:08:67:80:ce:4e:bd:26:a5:b4:c4:4a:80:78:
        50:e2:7c:28:12:00:94:33:d0:c4:c6:9c:71:ec:cd:a9:
        82:06:ef:d4:20:4e:87:cf:4b:dd:fb:ed:9e:59:c7:b2
    Fingerprint (SHA-256):
        19:E2:0A:54:53:44:85:0D:0F:65:99:F8:63:57:D8:61:6B:96:B5:EA:34:E4:4C:E0:3E:F5:99:AA:35:A2:66:32
    Fingerprint (SHA1):
        2F:B7:85:D1:C4:38:28:B8:9F:2D:1C:15:1E:B5:48:AD:16:6D:DC:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11318: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #11319: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154562 (0x1dee4542)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:46:51 2017
            Not After : Mon May 02 15:46:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:51:41:7b:f1:1c:05:bf:44:f2:5e:74:24:4c:70:9c:
                    7d:08:f7:a1:cb:db:b1:70:3c:10:fe:44:0c:61:85:84:
                    6c:e1:00:9b:be:7f:1d:1f:4b:a9:35:0a:27:d7:e0:b0:
                    2e:26:3f:7e:96:1a:f7:4c:f3:ef:0d:97:ab:21:5d:83:
                    08:7c:35:78:91:30:2b:76:12:53:ac:f2:dd:25:0b:e8:
                    9a:29:af:30:ab:0a:3e:03:08:23:ad:a9:bb:85:1c:c5:
                    10:c3:f3:73:0d:fa:79:e5:ef:ee:b9:d0:dc:d8:0e:5a:
                    50:46:74:60:0d:dc:74:6c:fa:ac:a8:17:c8:d7:77:c8:
                    65:85:0b:98:8f:1b:cb:32:89:60:a1:77:08:13:67:e2:
                    6f:1f:a6:3e:72:ed:d1:fd:09:a7:02:de:b3:6a:74:5b:
                    4f:ce:a3:19:ad:15:fe:b8:39:d4:3f:6c:c7:b7:a6:c9:
                    ab:33:8a:9a:2f:d9:4d:ab:8e:11:24:e9:f8:57:86:1a:
                    92:34:f2:30:f5:2c:69:10:3e:84:9c:be:3e:a7:5f:63:
                    f2:bd:b9:65:70:7b:ea:9b:2f:b7:08:87:4c:4e:54:d0:
                    0b:3d:27:53:bc:61:60:67:5b:60:40:0f:5b:28:c6:49:
                    57:35:d6:48:45:32:d8:c4:ed:0f:68:68:54:a2:30:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:cf:66:2f:11:b9:23:fc:03:49:e4:df:47:8e:ef:b6:
        63:db:e2:29:cd:f5:d8:9a:bf:05:73:61:81:62:04:12:
        5a:60:6a:4c:38:77:68:97:b4:ad:d4:80:28:3e:58:e5:
        69:57:29:77:2e:9e:2a:56:f4:a9:7a:b8:54:60:e9:eb:
        90:90:8b:76:95:8c:81:6c:54:a0:c9:d9:3c:42:09:88:
        43:db:d6:9e:36:cd:c9:33:ea:6d:a6:ad:2b:4c:fe:e9:
        4d:3a:d1:b4:7e:4d:54:fc:1a:f4:40:50:75:4b:91:d1:
        62:5c:67:d9:f7:e1:87:c9:78:d7:24:56:25:24:13:98:
        63:51:f0:3f:83:c3:df:ad:7c:74:44:c9:44:8c:76:92:
        d7:e6:e2:2b:a1:44:dd:7b:3a:ff:86:42:97:99:86:05:
        df:dc:3d:3b:90:b2:f0:4c:b0:27:80:d7:69:61:ad:14:
        45:05:2e:0a:23:12:50:07:b6:bd:62:ca:50:99:3a:1e:
        81:85:78:ce:4d:54:6e:11:5b:28:f7:77:d2:98:5d:7a:
        e5:0e:5e:08:67:80:ce:4e:bd:26:a5:b4:c4:4a:80:78:
        50:e2:7c:28:12:00:94:33:d0:c4:c6:9c:71:ec:cd:a9:
        82:06:ef:d4:20:4e:87:cf:4b:dd:fb:ed:9e:59:c7:b2
    Fingerprint (SHA-256):
        19:E2:0A:54:53:44:85:0D:0F:65:99:F8:63:57:D8:61:6B:96:B5:EA:34:E4:4C:E0:3E:F5:99:AA:35:A2:66:32
    Fingerprint (SHA1):
        2F:B7:85:D1:C4:38:28:B8:9F:2D:1C:15:1E:B5:48:AD:16:6D:DC:96
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11320: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154564 (0x1dee4544)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:46:52 2017
            Not After : Mon May 02 15:46:52 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:27:40:d7:bd:3c:76:3f:81:c1:c1:83:f9:29:a2:b1:
                    d8:56:34:c2:f4:23:df:a6:65:bb:67:cc:cd:90:86:ad:
                    cf:0e:31:c3:be:46:d2:62:35:c6:02:3e:8c:ab:4d:ad:
                    43:00:c4:e9:2f:4f:63:61:18:49:c6:9c:9d:f8:4a:fc:
                    da:3d:24:44:2b:9d:f2:77:8c:ec:aa:a8:b2:c2:d9:84:
                    91:18:b4:21:c5:10:21:93:52:e2:19:a5:69:ca:01:c4:
                    0f:15:37:cb:a0:0b:8c:80:61:a5:a7:01:8e:2e:32:06:
                    30:1e:ff:54:ec:fe:ef:4a:d4:fd:e8:4c:47:93:a7:34:
                    1f:dd:60:fb:08:95:04:c9:0c:b2:77:e2:26:f8:e2:5b:
                    84:e9:3f:05:92:55:c8:75:16:6c:c0:7d:ed:5e:60:60:
                    c9:35:89:32:61:c6:12:4d:e6:d6:9d:bb:e6:e3:ab:1a:
                    f6:69:fd:25:a2:b2:7a:a0:6c:3d:9c:58:9f:c0:87:f9:
                    80:f9:81:d2:9f:0d:a8:2a:b9:cb:f4:34:02:b0:d1:f9:
                    a6:a3:c0:7a:26:5f:09:f6:17:8f:da:ec:6a:fa:2d:21:
                    61:5f:1c:4e:6c:88:b4:d3:90:a5:75:da:e2:d0:68:e6:
                    f9:6e:91:7e:f0:11:a6:cb:9e:f4:e0:aa:62:34:a0:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:73:b5:b5:9d:2a:7d:83:22:3a:e0:83:4b:45:72:df:
        98:70:a5:21:a2:cb:c4:3b:9c:a0:dc:6c:aa:47:ed:93:
        ad:43:50:9a:c3:64:93:25:55:91:c8:ef:0f:87:03:83:
        76:ce:7b:d3:16:6d:c4:de:d5:cd:c8:20:bc:88:93:cd:
        4c:f9:32:60:a5:09:ea:b9:aa:10:55:c7:d5:2e:07:ec:
        57:3b:ba:50:f8:83:79:64:b9:20:c6:3d:73:29:e2:31:
        75:ea:58:ec:b3:6f:82:ce:f9:fd:99:e4:e2:7a:c2:7b:
        4e:65:d2:6e:e0:8e:5a:e3:0b:62:63:10:b6:6a:39:ab:
        08:bd:db:4f:26:66:48:0d:6a:2c:f5:53:c6:df:ac:ae:
        46:11:9e:04:b0:6c:0c:cd:a1:69:62:2b:7f:74:6a:19:
        81:a6:35:31:62:a4:0c:2b:aa:1d:3b:78:b4:47:a0:d8:
        d1:9d:1e:4a:ff:bc:84:65:0b:e5:8c:3d:0a:26:35:90:
        2c:17:ab:05:f3:74:4a:23:8a:35:a6:6b:19:ac:b4:be:
        9c:bd:36:48:52:c0:0b:d9:0e:58:f2:aa:e8:92:bb:29:
        6a:7b:a7:82:7f:df:e5:3b:ef:d3:38:b4:1b:f0:c7:77:
        94:07:41:68:f7:ae:8d:c3:a1:c0:2e:9c:fc:0b:41:be
    Fingerprint (SHA-256):
        58:A8:2D:40:B1:BD:3C:E9:6F:9D:0E:81:BC:BB:B2:A0:BF:AC:62:45:C9:C8:0A:AD:C8:2A:A7:D0:0C:7F:D2:61
    Fingerprint (SHA1):
        C6:BF:C9:DD:CB:CE:C3:A0:27:17:6C:AA:09:D9:C7:B0:FC:6F:52:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11321: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #11322: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #11323: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #11324: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154562 (0x1dee4542)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:46:51 2017
            Not After : Mon May 02 15:46:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:51:41:7b:f1:1c:05:bf:44:f2:5e:74:24:4c:70:9c:
                    7d:08:f7:a1:cb:db:b1:70:3c:10:fe:44:0c:61:85:84:
                    6c:e1:00:9b:be:7f:1d:1f:4b:a9:35:0a:27:d7:e0:b0:
                    2e:26:3f:7e:96:1a:f7:4c:f3:ef:0d:97:ab:21:5d:83:
                    08:7c:35:78:91:30:2b:76:12:53:ac:f2:dd:25:0b:e8:
                    9a:29:af:30:ab:0a:3e:03:08:23:ad:a9:bb:85:1c:c5:
                    10:c3:f3:73:0d:fa:79:e5:ef:ee:b9:d0:dc:d8:0e:5a:
                    50:46:74:60:0d:dc:74:6c:fa:ac:a8:17:c8:d7:77:c8:
                    65:85:0b:98:8f:1b:cb:32:89:60:a1:77:08:13:67:e2:
                    6f:1f:a6:3e:72:ed:d1:fd:09:a7:02:de:b3:6a:74:5b:
                    4f:ce:a3:19:ad:15:fe:b8:39:d4:3f:6c:c7:b7:a6:c9:
                    ab:33:8a:9a:2f:d9:4d:ab:8e:11:24:e9:f8:57:86:1a:
                    92:34:f2:30:f5:2c:69:10:3e:84:9c:be:3e:a7:5f:63:
                    f2:bd:b9:65:70:7b:ea:9b:2f:b7:08:87:4c:4e:54:d0:
                    0b:3d:27:53:bc:61:60:67:5b:60:40:0f:5b:28:c6:49:
                    57:35:d6:48:45:32:d8:c4:ed:0f:68:68:54:a2:30:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:cf:66:2f:11:b9:23:fc:03:49:e4:df:47:8e:ef:b6:
        63:db:e2:29:cd:f5:d8:9a:bf:05:73:61:81:62:04:12:
        5a:60:6a:4c:38:77:68:97:b4:ad:d4:80:28:3e:58:e5:
        69:57:29:77:2e:9e:2a:56:f4:a9:7a:b8:54:60:e9:eb:
        90:90:8b:76:95:8c:81:6c:54:a0:c9:d9:3c:42:09:88:
        43:db:d6:9e:36:cd:c9:33:ea:6d:a6:ad:2b:4c:fe:e9:
        4d:3a:d1:b4:7e:4d:54:fc:1a:f4:40:50:75:4b:91:d1:
        62:5c:67:d9:f7:e1:87:c9:78:d7:24:56:25:24:13:98:
        63:51:f0:3f:83:c3:df:ad:7c:74:44:c9:44:8c:76:92:
        d7:e6:e2:2b:a1:44:dd:7b:3a:ff:86:42:97:99:86:05:
        df:dc:3d:3b:90:b2:f0:4c:b0:27:80:d7:69:61:ad:14:
        45:05:2e:0a:23:12:50:07:b6:bd:62:ca:50:99:3a:1e:
        81:85:78:ce:4d:54:6e:11:5b:28:f7:77:d2:98:5d:7a:
        e5:0e:5e:08:67:80:ce:4e:bd:26:a5:b4:c4:4a:80:78:
        50:e2:7c:28:12:00:94:33:d0:c4:c6:9c:71:ec:cd:a9:
        82:06:ef:d4:20:4e:87:cf:4b:dd:fb:ed:9e:59:c7:b2
    Fingerprint (SHA-256):
        19:E2:0A:54:53:44:85:0D:0F:65:99:F8:63:57:D8:61:6B:96:B5:EA:34:E4:4C:E0:3E:F5:99:AA:35:A2:66:32
    Fingerprint (SHA1):
        2F:B7:85:D1:C4:38:28:B8:9F:2D:1C:15:1E:B5:48:AD:16:6D:DC:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11325: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154566 (0x1dee4546)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:46:53 2017
            Not After : Mon May 02 15:46:53 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:1a:58:c0:f2:ac:61:ee:20:f5:a3:aa:69:4d:8b:87:
                    8e:74:48:9a:3e:b2:d0:1e:8b:89:f0:96:d3:30:7d:58:
                    f9:26:ca:05:18:86:25:f6:a7:0c:9d:9a:45:6f:9c:71:
                    df:e7:a6:02:fa:69:81:a6:70:70:78:18:61:a2:4d:c6:
                    24:1c:0c:99:3a:98:dd:a9:14:95:14:ef:c6:02:d6:b2:
                    4a:52:48:78:12:7c:77:cb:c3:54:e9:53:a0:b3:ae:d8:
                    62:23:8b:da:8c:ce:b8:ee:4e:d8:82:68:e1:01:9d:d0:
                    67:f7:59:22:38:ce:91:f4:e7:63:8b:1a:4a:86:93:16:
                    33:dc:93:94:5f:89:c1:9a:b2:c5:10:d1:4d:3b:40:35:
                    e3:b4:28:d1:fc:0f:5f:57:71:e3:8b:3b:90:a3:48:ae:
                    5e:1b:f7:07:ab:ff:4f:1b:7a:24:e0:39:79:09:af:83:
                    7f:8e:3a:e7:ca:3a:0a:ef:5e:a6:2e:8c:f8:cb:fb:c5:
                    59:b5:87:89:34:df:50:12:bb:f6:a0:1b:26:98:1f:ef:
                    32:55:d6:97:e5:76:03:71:1c:d2:70:1c:e6:01:d9:64:
                    30:63:9d:c7:c1:c6:2d:a4:0a:bb:3d:8d:10:37:58:3b:
                    6b:33:c5:0e:46:79:3f:8d:5c:23:f2:b3:41:fd:f9:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:43:0c:5d:c1:8a:cf:d6:9c:f2:f7:f7:8d:7f:a5:fa:
        61:78:cc:b1:2e:cd:51:49:f9:cb:9a:03:5a:7c:70:cd:
        c3:41:fe:39:58:76:a9:51:a6:28:14:26:19:03:81:da:
        42:46:e4:43:65:92:d6:05:6e:ae:fb:2e:ec:a4:2d:58:
        6b:f6:af:52:cd:de:6d:bf:f6:2d:b3:34:44:e4:45:0a:
        f0:99:ae:f7:ee:9f:32:28:54:73:5e:eb:d2:f4:62:4b:
        02:e5:e0:86:34:cd:3b:f3:8c:d6:f3:18:ae:72:79:64:
        a5:27:45:58:60:47:ab:13:fb:40:a8:53:06:84:12:e1:
        86:8d:7b:66:3b:3c:c5:bf:28:07:96:b5:94:85:13:5e:
        6d:47:d6:28:dd:e0:37:9c:ea:e5:cb:b6:b5:fe:9b:67:
        74:46:43:45:e2:dd:35:c4:b7:44:53:ab:70:cf:79:54:
        5c:ab:37:c0:42:6f:52:26:2d:ee:5c:ed:8f:50:73:85:
        61:0d:d6:41:7a:58:12:70:07:dc:b9:92:fe:03:2c:29:
        72:9a:44:b2:d5:6c:b0:69:73:5e:92:b8:db:3b:75:7c:
        1f:bc:ee:f8:e7:01:53:1f:0e:bb:6e:70:aa:54:e7:c0:
        26:1d:a9:cd:16:cd:a2:3e:25:1b:9c:50:56:13:55:f0
    Fingerprint (SHA-256):
        19:2F:CC:F2:A2:6D:F1:27:1D:E4:E9:EB:BC:0D:BE:A6:8E:E6:E2:CD:E9:B5:58:E4:13:AD:B5:A3:AD:D2:F3:68
    Fingerprint (SHA1):
        FF:F4:68:3D:82:F1:6C:E4:79:F3:2A:C4:57:77:89:9E:7A:EC:B2:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #11326: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154562 (0x1dee4542)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:46:51 2017
            Not After : Mon May 02 15:46:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:51:41:7b:f1:1c:05:bf:44:f2:5e:74:24:4c:70:9c:
                    7d:08:f7:a1:cb:db:b1:70:3c:10:fe:44:0c:61:85:84:
                    6c:e1:00:9b:be:7f:1d:1f:4b:a9:35:0a:27:d7:e0:b0:
                    2e:26:3f:7e:96:1a:f7:4c:f3:ef:0d:97:ab:21:5d:83:
                    08:7c:35:78:91:30:2b:76:12:53:ac:f2:dd:25:0b:e8:
                    9a:29:af:30:ab:0a:3e:03:08:23:ad:a9:bb:85:1c:c5:
                    10:c3:f3:73:0d:fa:79:e5:ef:ee:b9:d0:dc:d8:0e:5a:
                    50:46:74:60:0d:dc:74:6c:fa:ac:a8:17:c8:d7:77:c8:
                    65:85:0b:98:8f:1b:cb:32:89:60:a1:77:08:13:67:e2:
                    6f:1f:a6:3e:72:ed:d1:fd:09:a7:02:de:b3:6a:74:5b:
                    4f:ce:a3:19:ad:15:fe:b8:39:d4:3f:6c:c7:b7:a6:c9:
                    ab:33:8a:9a:2f:d9:4d:ab:8e:11:24:e9:f8:57:86:1a:
                    92:34:f2:30:f5:2c:69:10:3e:84:9c:be:3e:a7:5f:63:
                    f2:bd:b9:65:70:7b:ea:9b:2f:b7:08:87:4c:4e:54:d0:
                    0b:3d:27:53:bc:61:60:67:5b:60:40:0f:5b:28:c6:49:
                    57:35:d6:48:45:32:d8:c4:ed:0f:68:68:54:a2:30:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:cf:66:2f:11:b9:23:fc:03:49:e4:df:47:8e:ef:b6:
        63:db:e2:29:cd:f5:d8:9a:bf:05:73:61:81:62:04:12:
        5a:60:6a:4c:38:77:68:97:b4:ad:d4:80:28:3e:58:e5:
        69:57:29:77:2e:9e:2a:56:f4:a9:7a:b8:54:60:e9:eb:
        90:90:8b:76:95:8c:81:6c:54:a0:c9:d9:3c:42:09:88:
        43:db:d6:9e:36:cd:c9:33:ea:6d:a6:ad:2b:4c:fe:e9:
        4d:3a:d1:b4:7e:4d:54:fc:1a:f4:40:50:75:4b:91:d1:
        62:5c:67:d9:f7:e1:87:c9:78:d7:24:56:25:24:13:98:
        63:51:f0:3f:83:c3:df:ad:7c:74:44:c9:44:8c:76:92:
        d7:e6:e2:2b:a1:44:dd:7b:3a:ff:86:42:97:99:86:05:
        df:dc:3d:3b:90:b2:f0:4c:b0:27:80:d7:69:61:ad:14:
        45:05:2e:0a:23:12:50:07:b6:bd:62:ca:50:99:3a:1e:
        81:85:78:ce:4d:54:6e:11:5b:28:f7:77:d2:98:5d:7a:
        e5:0e:5e:08:67:80:ce:4e:bd:26:a5:b4:c4:4a:80:78:
        50:e2:7c:28:12:00:94:33:d0:c4:c6:9c:71:ec:cd:a9:
        82:06:ef:d4:20:4e:87:cf:4b:dd:fb:ed:9e:59:c7:b2
    Fingerprint (SHA-256):
        19:E2:0A:54:53:44:85:0D:0F:65:99:F8:63:57:D8:61:6B:96:B5:EA:34:E4:4C:E0:3E:F5:99:AA:35:A2:66:32
    Fingerprint (SHA1):
        2F:B7:85:D1:C4:38:28:B8:9F:2D:1C:15:1E:B5:48:AD:16:6D:DC:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11327: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #11328: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #11329: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #11330: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #11331: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #11332: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154567 (0x1dee4547)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:46:54 2017
            Not After : Mon May 02 15:46:54 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:56:9a:61:46:dc:25:32:b3:ef:7a:91:b4:49:f0:eb:
                    a2:2c:1d:bd:5e:46:fc:e2:0a:52:31:8a:2a:be:22:50:
                    58:21:1f:b7:22:cf:1f:10:fa:e8:eb:81:7b:10:d7:94:
                    fb:f9:e5:7e:f8:7b:44:34:c0:16:f0:e2:ef:0b:51:d2:
                    d9:3d:3c:5e:bc:c8:fb:71:3a:a0:3e:af:fc:34:f4:c0:
                    ca:1b:d7:dd:df:be:fd:6e:b2:fe:d1:ab:08:a4:c1:bb:
                    d3:2d:32:0f:9e:98:ff:88:1b:46:e4:dc:0d:a9:34:4e:
                    44:93:da:e7:44:1c:0d:48:15:e7:01:92:ac:08:2e:70:
                    21:08:fd:84:23:2e:1a:8e:62:8f:0f:24:9d:d1:e5:bd:
                    c1:4d:2a:74:0d:e1:a4:4e:05:a7:a4:f5:6b:fd:f5:eb:
                    b1:ff:a5:c9:f1:07:d3:38:6e:a3:55:4d:87:92:7d:1e:
                    0c:98:2c:a4:4e:a0:e5:ad:51:f1:91:c2:16:42:d0:46:
                    ca:ab:a7:18:c3:78:d5:42:fc:5d:01:fd:32:46:72:49:
                    75:bc:75:63:01:e3:69:63:60:b1:f6:e2:e9:20:28:22:
                    72:14:c4:72:ab:6b:34:4d:4c:39:c3:8a:d7:6c:46:3d:
                    d9:ed:00:15:36:c4:13:02:be:c4:0f:c8:98:08:e9:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:f5:a2:c1:77:6f:f4:e9:8f:fb:81:87:89:1a:0b:81:
        38:c5:90:d4:30:d9:a0:32:3d:3a:26:ed:af:cb:53:6f:
        99:c2:7f:74:ca:75:d2:15:14:88:19:ba:c3:58:66:f5:
        5f:6a:8d:7c:d4:bd:4e:aa:37:b7:70:0c:56:0a:88:69:
        52:89:a3:d6:d9:0a:55:d5:c1:4a:ae:90:5e:e9:b2:df:
        7b:fc:2d:2c:a8:ba:3e:34:de:b2:06:c5:84:2f:8a:59:
        9e:ca:da:fe:02:1e:1c:f6:d4:bc:0d:6e:5b:17:53:48:
        c1:af:12:cd:00:65:31:db:43:54:b8:79:be:49:30:a9:
        06:66:57:62:88:5a:84:53:9b:14:36:ee:2b:fa:29:e0:
        7c:1b:b3:2d:47:15:6b:e6:70:03:9a:08:5e:2f:fc:a0:
        5b:31:f5:38:9a:73:52:c9:4d:10:e7:c5:05:49:d7:2f:
        5a:ae:41:de:da:f4:b2:51:46:ef:e4:c8:31:8e:7b:ff:
        40:41:57:fc:7c:36:f5:f7:cf:d6:e6:86:b8:d9:e2:bb:
        10:ca:e2:ee:f4:c1:ff:c3:0f:cf:89:17:f6:e1:fb:10:
        99:f6:a7:c9:41:22:bd:29:fb:75:fd:0d:af:b6:1b:2a:
        2c:5d:d6:c0:3d:2e:48:b8:aa:83:60:de:7d:a1:00:64
    Fingerprint (SHA-256):
        4B:5B:A0:01:13:70:A4:55:DC:6B:CB:F0:D5:71:52:DF:BA:6D:F0:14:EF:B3:D0:B9:FD:6A:C7:78:1D:31:CC:E8
    Fingerprint (SHA1):
        2E:87:D0:00:31:B1:36:95:2B:C0:FB:06:CC:A1:CF:6C:6F:1A:A8:C9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11333: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #11334: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #11335: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #11336: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #11337: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11338: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11339: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11340: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11341: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11342: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11343: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11344: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11345: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11346: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11347: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11348: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11349: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11350: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11351: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11352: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11353: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11354: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11355: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11356: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 5971 at Tue May  2 15:47:00 UTC 2017
kill -USR1 5971
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 5971 killed at Tue May  2 15:47:00 UTC 2017
httpserv starting at Tue May  2 15:47:00 UTC 2017
httpserv -D -p 9257  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.7616  &
trying to connect to httpserv at Tue May  2 15:47:00 UTC 2017
tstclnt -p 9257 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9257 (address=::1)
tstclnt: exiting with return code 0
kill -0 21411 >/dev/null 2>/dev/null
httpserv with PID 21411 found at Tue May  2 15:47:00 UTC 2017
httpserv with PID 21411 started at Tue May  2 15:47:00 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11357: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154569 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11358: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11359: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11360: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154570 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11361: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11362: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11363: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11364: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154571 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11365: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11366: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154572 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11367: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11368: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11369: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11370: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11371: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502154573   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11372: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11373: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11374: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #11375: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #11376: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154570 (0x1dee454a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:47:01 2017
            Not After : Mon May 02 15:47:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:9e:2d:01:3d:86:5c:4c:5b:e8:5f:5f:02:e9:59:7a:
                    47:67:28:04:2b:87:34:3e:66:1b:2f:6e:8e:7a:86:0c:
                    7a:2d:c5:7b:53:d7:a8:1d:1c:17:4c:9f:db:e3:d7:86:
                    e6:25:07:6a:c1:92:56:db:6e:3a:b4:6e:32:1e:ae:15:
                    d6:88:da:73:93:4e:7f:2b:c4:26:c2:68:76:f3:fc:89:
                    f2:3b:ca:d5:e2:08:bc:cc:88:5e:4e:09:9e:6f:80:3a:
                    5c:8f:a6:1f:68:e9:80:41:72:4b:3c:80:4c:c4:c1:35:
                    15:17:04:52:b6:9c:f0:f1:42:62:cb:57:e1:94:4d:af:
                    e9:e4:bf:fc:5f:24:09:2f:9d:6a:f4:08:27:84:58:6e:
                    cf:db:eb:9c:cb:a2:cf:ce:0d:0b:47:70:a5:d6:d3:d0:
                    88:83:84:a2:32:96:7a:f0:1f:fc:2b:9a:ed:93:14:8c:
                    c1:e9:af:94:70:e3:8d:da:ec:c8:c3:f2:03:ed:b1:2f:
                    a4:72:b2:b9:5a:c5:75:47:23:8a:a8:df:00:71:bb:67:
                    25:57:ca:b5:f4:a8:e7:21:a9:a9:60:f9:97:08:4a:f2:
                    e0:ef:d4:11:a0:f1:a8:e3:bc:23:97:44:bf:eb:a8:ce:
                    c9:c4:df:9e:ba:0b:30:00:18:3a:e8:34:2f:af:38:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:c7:e0:fa:c0:38:6c:42:85:d6:6d:0b:3b:c1:57:15:
        e9:6c:86:e1:d9:d2:4e:a1:aa:87:32:65:0f:30:84:94:
        38:eb:3a:18:fd:84:01:ab:2a:7e:7a:fa:86:0a:b6:d6:
        32:0d:f8:9a:e7:f5:1d:38:d6:f9:7f:35:db:59:22:62:
        23:5a:3f:05:f7:e6:62:31:d4:bc:c6:f3:81:03:c8:5b:
        1c:bf:69:8d:bd:09:d0:05:4e:b0:d5:6b:3f:e3:4d:81:
        b3:43:82:2c:1f:6b:cf:a1:53:b8:17:e8:a4:12:8c:95:
        ee:bc:b1:16:5a:3d:75:ec:ce:22:80:b8:76:f8:0f:19:
        2e:23:c3:50:f0:3a:73:d5:6f:33:01:43:c9:85:3f:40:
        eb:55:db:bc:48:8a:02:99:26:6c:05:04:85:48:bf:01:
        70:97:f7:e0:2d:4e:61:8c:b6:0d:85:4f:db:71:37:e3:
        85:bb:9a:21:99:50:87:df:71:55:3b:ca:80:be:95:e4:
        63:71:94:40:32:c6:3b:ca:fe:20:d0:40:fc:27:1f:b3:
        4c:35:3c:42:b8:f0:e9:ff:60:8f:59:2f:50:07:f5:93:
        31:0c:f8:91:82:e9:1b:be:98:66:0f:32:25:15:f9:5f:
        d6:d9:c5:b6:11:2f:61:5d:d3:88:33:97:49:7a:4c:3b
    Fingerprint (SHA-256):
        84:C9:7A:00:7D:BD:66:7B:4D:24:D1:21:EF:82:90:4B:AA:1C:59:16:40:CA:CE:0C:5B:54:EB:51:1B:C1:BD:B4
    Fingerprint (SHA1):
        6C:1D:6E:2A:66:A4:0B:2C:A3:04:56:5A:09:D9:D5:43:66:8F:9E:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11377: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154569 (0x1dee4549)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:47:01 2017
            Not After : Mon May 02 15:47:01 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:4e:5b:e9:52:b9:5c:bf:45:6b:74:21:a2:28:da:02:
                    52:bf:f5:42:92:0a:53:02:80:8c:16:a0:cb:c1:2e:70:
                    4a:8f:fd:1b:3d:22:9b:17:61:fb:26:af:cc:a3:64:e1:
                    ed:92:64:a3:54:db:c0:4d:32:c8:bd:e4:f8:19:d2:1d:
                    c2:99:44:dc:89:30:c1:ad:90:16:19:92:39:46:0a:d9:
                    15:c6:69:fa:5a:25:d2:57:03:a8:e7:95:8a:4e:b2:21:
                    b1:7b:86:b9:03:85:7e:9e:e2:00:55:1e:f6:fd:b2:79:
                    71:60:8c:44:fb:1e:31:5a:f1:c8:f3:0d:77:ce:88:6e:
                    92:e4:19:0c:b2:af:69:fc:fb:db:91:92:41:82:d4:a3:
                    e2:f8:56:15:91:0a:bd:d6:05:ca:74:b6:20:2a:93:ec:
                    5e:69:25:de:a3:17:b4:64:d4:bc:a4:d8:fa:56:d0:42:
                    d1:dd:e6:fa:24:f4:72:25:b2:98:05:9e:30:5b:e5:32:
                    a9:d2:ea:b9:d6:30:e6:64:8b:56:e4:ea:50:92:0a:d4:
                    c5:10:34:18:1d:68:89:81:34:44:c2:50:7d:d6:9d:ff:
                    5e:a5:36:d9:96:a2:cb:a0:ba:8f:92:d6:bb:20:ed:0a:
                    1d:77:a2:69:f1:41:5f:3c:58:31:cc:fa:f1:12:e3:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:2b:7f:18:5b:92:97:d2:14:c2:55:22:65:25:ca:67:
        8b:13:8d:8f:19:67:57:ed:0e:d8:c2:22:e0:d9:40:02:
        1e:cb:a1:c1:18:e3:5c:bf:31:ec:e0:e2:41:c9:b6:3c:
        53:62:92:2e:c4:2c:01:71:ee:e8:68:ba:c4:90:13:f1:
        44:e3:0c:00:73:8a:7d:2f:3d:02:bc:e4:e0:e2:fe:53:
        eb:5a:d9:ac:c8:f8:4e:0b:3b:e0:5b:84:b6:f2:2f:ba:
        62:82:33:7d:34:3c:32:6a:ae:a3:de:3a:3f:b1:05:ba:
        af:79:94:81:e3:a1:1b:bb:af:73:52:11:45:b0:5e:1f:
        b4:74:63:b4:90:46:74:00:e3:28:4c:8a:2f:c9:93:bc:
        8f:32:7b:64:56:60:7f:d1:cc:0c:4a:20:6f:c4:16:6b:
        98:7a:b9:8d:02:54:d9:08:93:4f:26:3f:5e:65:6c:a1:
        97:8a:d5:2d:68:c5:0f:4d:2a:81:a5:91:c8:ac:4c:70:
        23:f8:b6:8e:b9:ec:f2:4a:d6:6f:7f:1b:c9:56:b4:f8:
        b1:4b:1a:e0:56:23:7f:b2:98:04:e3:bb:33:d5:f9:74:
        33:fd:f9:32:b4:95:f8:71:61:9e:6a:ac:4f:01:65:5a:
        6a:8c:40:a9:80:c2:47:d8:82:7e:66:f4:a0:cb:bb:4f
    Fingerprint (SHA-256):
        1C:08:00:AB:5E:24:C2:9B:68:09:CA:87:86:D4:C1:5C:BE:C8:FE:E5:26:77:D0:EB:D4:F3:71:0D:B4:98:AB:F9
    Fingerprint (SHA1):
        11:A6:48:4F:13:4D:BA:D5:79:7F:88:0A:A8:71:A8:05:E7:E6:A2:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11378: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11379: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #11380: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #11381: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154569 (0x1dee4549)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:47:01 2017
            Not After : Mon May 02 15:47:01 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:4e:5b:e9:52:b9:5c:bf:45:6b:74:21:a2:28:da:02:
                    52:bf:f5:42:92:0a:53:02:80:8c:16:a0:cb:c1:2e:70:
                    4a:8f:fd:1b:3d:22:9b:17:61:fb:26:af:cc:a3:64:e1:
                    ed:92:64:a3:54:db:c0:4d:32:c8:bd:e4:f8:19:d2:1d:
                    c2:99:44:dc:89:30:c1:ad:90:16:19:92:39:46:0a:d9:
                    15:c6:69:fa:5a:25:d2:57:03:a8:e7:95:8a:4e:b2:21:
                    b1:7b:86:b9:03:85:7e:9e:e2:00:55:1e:f6:fd:b2:79:
                    71:60:8c:44:fb:1e:31:5a:f1:c8:f3:0d:77:ce:88:6e:
                    92:e4:19:0c:b2:af:69:fc:fb:db:91:92:41:82:d4:a3:
                    e2:f8:56:15:91:0a:bd:d6:05:ca:74:b6:20:2a:93:ec:
                    5e:69:25:de:a3:17:b4:64:d4:bc:a4:d8:fa:56:d0:42:
                    d1:dd:e6:fa:24:f4:72:25:b2:98:05:9e:30:5b:e5:32:
                    a9:d2:ea:b9:d6:30:e6:64:8b:56:e4:ea:50:92:0a:d4:
                    c5:10:34:18:1d:68:89:81:34:44:c2:50:7d:d6:9d:ff:
                    5e:a5:36:d9:96:a2:cb:a0:ba:8f:92:d6:bb:20:ed:0a:
                    1d:77:a2:69:f1:41:5f:3c:58:31:cc:fa:f1:12:e3:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:2b:7f:18:5b:92:97:d2:14:c2:55:22:65:25:ca:67:
        8b:13:8d:8f:19:67:57:ed:0e:d8:c2:22:e0:d9:40:02:
        1e:cb:a1:c1:18:e3:5c:bf:31:ec:e0:e2:41:c9:b6:3c:
        53:62:92:2e:c4:2c:01:71:ee:e8:68:ba:c4:90:13:f1:
        44:e3:0c:00:73:8a:7d:2f:3d:02:bc:e4:e0:e2:fe:53:
        eb:5a:d9:ac:c8:f8:4e:0b:3b:e0:5b:84:b6:f2:2f:ba:
        62:82:33:7d:34:3c:32:6a:ae:a3:de:3a:3f:b1:05:ba:
        af:79:94:81:e3:a1:1b:bb:af:73:52:11:45:b0:5e:1f:
        b4:74:63:b4:90:46:74:00:e3:28:4c:8a:2f:c9:93:bc:
        8f:32:7b:64:56:60:7f:d1:cc:0c:4a:20:6f:c4:16:6b:
        98:7a:b9:8d:02:54:d9:08:93:4f:26:3f:5e:65:6c:a1:
        97:8a:d5:2d:68:c5:0f:4d:2a:81:a5:91:c8:ac:4c:70:
        23:f8:b6:8e:b9:ec:f2:4a:d6:6f:7f:1b:c9:56:b4:f8:
        b1:4b:1a:e0:56:23:7f:b2:98:04:e3:bb:33:d5:f9:74:
        33:fd:f9:32:b4:95:f8:71:61:9e:6a:ac:4f:01:65:5a:
        6a:8c:40:a9:80:c2:47:d8:82:7e:66:f4:a0:cb:bb:4f
    Fingerprint (SHA-256):
        1C:08:00:AB:5E:24:C2:9B:68:09:CA:87:86:D4:C1:5C:BE:C8:FE:E5:26:77:D0:EB:D4:F3:71:0D:B4:98:AB:F9
    Fingerprint (SHA1):
        11:A6:48:4F:13:4D:BA:D5:79:7F:88:0A:A8:71:A8:05:E7:E6:A2:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11382: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154570 (0x1dee454a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:47:01 2017
            Not After : Mon May 02 15:47:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:9e:2d:01:3d:86:5c:4c:5b:e8:5f:5f:02:e9:59:7a:
                    47:67:28:04:2b:87:34:3e:66:1b:2f:6e:8e:7a:86:0c:
                    7a:2d:c5:7b:53:d7:a8:1d:1c:17:4c:9f:db:e3:d7:86:
                    e6:25:07:6a:c1:92:56:db:6e:3a:b4:6e:32:1e:ae:15:
                    d6:88:da:73:93:4e:7f:2b:c4:26:c2:68:76:f3:fc:89:
                    f2:3b:ca:d5:e2:08:bc:cc:88:5e:4e:09:9e:6f:80:3a:
                    5c:8f:a6:1f:68:e9:80:41:72:4b:3c:80:4c:c4:c1:35:
                    15:17:04:52:b6:9c:f0:f1:42:62:cb:57:e1:94:4d:af:
                    e9:e4:bf:fc:5f:24:09:2f:9d:6a:f4:08:27:84:58:6e:
                    cf:db:eb:9c:cb:a2:cf:ce:0d:0b:47:70:a5:d6:d3:d0:
                    88:83:84:a2:32:96:7a:f0:1f:fc:2b:9a:ed:93:14:8c:
                    c1:e9:af:94:70:e3:8d:da:ec:c8:c3:f2:03:ed:b1:2f:
                    a4:72:b2:b9:5a:c5:75:47:23:8a:a8:df:00:71:bb:67:
                    25:57:ca:b5:f4:a8:e7:21:a9:a9:60:f9:97:08:4a:f2:
                    e0:ef:d4:11:a0:f1:a8:e3:bc:23:97:44:bf:eb:a8:ce:
                    c9:c4:df:9e:ba:0b:30:00:18:3a:e8:34:2f:af:38:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:c7:e0:fa:c0:38:6c:42:85:d6:6d:0b:3b:c1:57:15:
        e9:6c:86:e1:d9:d2:4e:a1:aa:87:32:65:0f:30:84:94:
        38:eb:3a:18:fd:84:01:ab:2a:7e:7a:fa:86:0a:b6:d6:
        32:0d:f8:9a:e7:f5:1d:38:d6:f9:7f:35:db:59:22:62:
        23:5a:3f:05:f7:e6:62:31:d4:bc:c6:f3:81:03:c8:5b:
        1c:bf:69:8d:bd:09:d0:05:4e:b0:d5:6b:3f:e3:4d:81:
        b3:43:82:2c:1f:6b:cf:a1:53:b8:17:e8:a4:12:8c:95:
        ee:bc:b1:16:5a:3d:75:ec:ce:22:80:b8:76:f8:0f:19:
        2e:23:c3:50:f0:3a:73:d5:6f:33:01:43:c9:85:3f:40:
        eb:55:db:bc:48:8a:02:99:26:6c:05:04:85:48:bf:01:
        70:97:f7:e0:2d:4e:61:8c:b6:0d:85:4f:db:71:37:e3:
        85:bb:9a:21:99:50:87:df:71:55:3b:ca:80:be:95:e4:
        63:71:94:40:32:c6:3b:ca:fe:20:d0:40:fc:27:1f:b3:
        4c:35:3c:42:b8:f0:e9:ff:60:8f:59:2f:50:07:f5:93:
        31:0c:f8:91:82:e9:1b:be:98:66:0f:32:25:15:f9:5f:
        d6:d9:c5:b6:11:2f:61:5d:d3:88:33:97:49:7a:4c:3b
    Fingerprint (SHA-256):
        84:C9:7A:00:7D:BD:66:7B:4D:24:D1:21:EF:82:90:4B:AA:1C:59:16:40:CA:CE:0C:5B:54:EB:51:1B:C1:BD:B4
    Fingerprint (SHA1):
        6C:1D:6E:2A:66:A4:0B:2C:A3:04:56:5A:09:D9:D5:43:66:8F:9E:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11383: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #11384: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #11385: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11386: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11387: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11388: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154570 (0x1dee454a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:47:01 2017
            Not After : Mon May 02 15:47:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:9e:2d:01:3d:86:5c:4c:5b:e8:5f:5f:02:e9:59:7a:
                    47:67:28:04:2b:87:34:3e:66:1b:2f:6e:8e:7a:86:0c:
                    7a:2d:c5:7b:53:d7:a8:1d:1c:17:4c:9f:db:e3:d7:86:
                    e6:25:07:6a:c1:92:56:db:6e:3a:b4:6e:32:1e:ae:15:
                    d6:88:da:73:93:4e:7f:2b:c4:26:c2:68:76:f3:fc:89:
                    f2:3b:ca:d5:e2:08:bc:cc:88:5e:4e:09:9e:6f:80:3a:
                    5c:8f:a6:1f:68:e9:80:41:72:4b:3c:80:4c:c4:c1:35:
                    15:17:04:52:b6:9c:f0:f1:42:62:cb:57:e1:94:4d:af:
                    e9:e4:bf:fc:5f:24:09:2f:9d:6a:f4:08:27:84:58:6e:
                    cf:db:eb:9c:cb:a2:cf:ce:0d:0b:47:70:a5:d6:d3:d0:
                    88:83:84:a2:32:96:7a:f0:1f:fc:2b:9a:ed:93:14:8c:
                    c1:e9:af:94:70:e3:8d:da:ec:c8:c3:f2:03:ed:b1:2f:
                    a4:72:b2:b9:5a:c5:75:47:23:8a:a8:df:00:71:bb:67:
                    25:57:ca:b5:f4:a8:e7:21:a9:a9:60:f9:97:08:4a:f2:
                    e0:ef:d4:11:a0:f1:a8:e3:bc:23:97:44:bf:eb:a8:ce:
                    c9:c4:df:9e:ba:0b:30:00:18:3a:e8:34:2f:af:38:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:c7:e0:fa:c0:38:6c:42:85:d6:6d:0b:3b:c1:57:15:
        e9:6c:86:e1:d9:d2:4e:a1:aa:87:32:65:0f:30:84:94:
        38:eb:3a:18:fd:84:01:ab:2a:7e:7a:fa:86:0a:b6:d6:
        32:0d:f8:9a:e7:f5:1d:38:d6:f9:7f:35:db:59:22:62:
        23:5a:3f:05:f7:e6:62:31:d4:bc:c6:f3:81:03:c8:5b:
        1c:bf:69:8d:bd:09:d0:05:4e:b0:d5:6b:3f:e3:4d:81:
        b3:43:82:2c:1f:6b:cf:a1:53:b8:17:e8:a4:12:8c:95:
        ee:bc:b1:16:5a:3d:75:ec:ce:22:80:b8:76:f8:0f:19:
        2e:23:c3:50:f0:3a:73:d5:6f:33:01:43:c9:85:3f:40:
        eb:55:db:bc:48:8a:02:99:26:6c:05:04:85:48:bf:01:
        70:97:f7:e0:2d:4e:61:8c:b6:0d:85:4f:db:71:37:e3:
        85:bb:9a:21:99:50:87:df:71:55:3b:ca:80:be:95:e4:
        63:71:94:40:32:c6:3b:ca:fe:20:d0:40:fc:27:1f:b3:
        4c:35:3c:42:b8:f0:e9:ff:60:8f:59:2f:50:07:f5:93:
        31:0c:f8:91:82:e9:1b:be:98:66:0f:32:25:15:f9:5f:
        d6:d9:c5:b6:11:2f:61:5d:d3:88:33:97:49:7a:4c:3b
    Fingerprint (SHA-256):
        84:C9:7A:00:7D:BD:66:7B:4D:24:D1:21:EF:82:90:4B:AA:1C:59:16:40:CA:CE:0C:5B:54:EB:51:1B:C1:BD:B4
    Fingerprint (SHA1):
        6C:1D:6E:2A:66:A4:0B:2C:A3:04:56:5A:09:D9:D5:43:66:8F:9E:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11389: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154570 (0x1dee454a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:47:01 2017
            Not After : Mon May 02 15:47:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:9e:2d:01:3d:86:5c:4c:5b:e8:5f:5f:02:e9:59:7a:
                    47:67:28:04:2b:87:34:3e:66:1b:2f:6e:8e:7a:86:0c:
                    7a:2d:c5:7b:53:d7:a8:1d:1c:17:4c:9f:db:e3:d7:86:
                    e6:25:07:6a:c1:92:56:db:6e:3a:b4:6e:32:1e:ae:15:
                    d6:88:da:73:93:4e:7f:2b:c4:26:c2:68:76:f3:fc:89:
                    f2:3b:ca:d5:e2:08:bc:cc:88:5e:4e:09:9e:6f:80:3a:
                    5c:8f:a6:1f:68:e9:80:41:72:4b:3c:80:4c:c4:c1:35:
                    15:17:04:52:b6:9c:f0:f1:42:62:cb:57:e1:94:4d:af:
                    e9:e4:bf:fc:5f:24:09:2f:9d:6a:f4:08:27:84:58:6e:
                    cf:db:eb:9c:cb:a2:cf:ce:0d:0b:47:70:a5:d6:d3:d0:
                    88:83:84:a2:32:96:7a:f0:1f:fc:2b:9a:ed:93:14:8c:
                    c1:e9:af:94:70:e3:8d:da:ec:c8:c3:f2:03:ed:b1:2f:
                    a4:72:b2:b9:5a:c5:75:47:23:8a:a8:df:00:71:bb:67:
                    25:57:ca:b5:f4:a8:e7:21:a9:a9:60:f9:97:08:4a:f2:
                    e0:ef:d4:11:a0:f1:a8:e3:bc:23:97:44:bf:eb:a8:ce:
                    c9:c4:df:9e:ba:0b:30:00:18:3a:e8:34:2f:af:38:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:c7:e0:fa:c0:38:6c:42:85:d6:6d:0b:3b:c1:57:15:
        e9:6c:86:e1:d9:d2:4e:a1:aa:87:32:65:0f:30:84:94:
        38:eb:3a:18:fd:84:01:ab:2a:7e:7a:fa:86:0a:b6:d6:
        32:0d:f8:9a:e7:f5:1d:38:d6:f9:7f:35:db:59:22:62:
        23:5a:3f:05:f7:e6:62:31:d4:bc:c6:f3:81:03:c8:5b:
        1c:bf:69:8d:bd:09:d0:05:4e:b0:d5:6b:3f:e3:4d:81:
        b3:43:82:2c:1f:6b:cf:a1:53:b8:17:e8:a4:12:8c:95:
        ee:bc:b1:16:5a:3d:75:ec:ce:22:80:b8:76:f8:0f:19:
        2e:23:c3:50:f0:3a:73:d5:6f:33:01:43:c9:85:3f:40:
        eb:55:db:bc:48:8a:02:99:26:6c:05:04:85:48:bf:01:
        70:97:f7:e0:2d:4e:61:8c:b6:0d:85:4f:db:71:37:e3:
        85:bb:9a:21:99:50:87:df:71:55:3b:ca:80:be:95:e4:
        63:71:94:40:32:c6:3b:ca:fe:20:d0:40:fc:27:1f:b3:
        4c:35:3c:42:b8:f0:e9:ff:60:8f:59:2f:50:07:f5:93:
        31:0c:f8:91:82:e9:1b:be:98:66:0f:32:25:15:f9:5f:
        d6:d9:c5:b6:11:2f:61:5d:d3:88:33:97:49:7a:4c:3b
    Fingerprint (SHA-256):
        84:C9:7A:00:7D:BD:66:7B:4D:24:D1:21:EF:82:90:4B:AA:1C:59:16:40:CA:CE:0C:5B:54:EB:51:1B:C1:BD:B4
    Fingerprint (SHA1):
        6C:1D:6E:2A:66:A4:0B:2C:A3:04:56:5A:09:D9:D5:43:66:8F:9E:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11390: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #11391: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #11392: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11393: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11394: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11395: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154569 (0x1dee4549)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:47:01 2017
            Not After : Mon May 02 15:47:01 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:4e:5b:e9:52:b9:5c:bf:45:6b:74:21:a2:28:da:02:
                    52:bf:f5:42:92:0a:53:02:80:8c:16:a0:cb:c1:2e:70:
                    4a:8f:fd:1b:3d:22:9b:17:61:fb:26:af:cc:a3:64:e1:
                    ed:92:64:a3:54:db:c0:4d:32:c8:bd:e4:f8:19:d2:1d:
                    c2:99:44:dc:89:30:c1:ad:90:16:19:92:39:46:0a:d9:
                    15:c6:69:fa:5a:25:d2:57:03:a8:e7:95:8a:4e:b2:21:
                    b1:7b:86:b9:03:85:7e:9e:e2:00:55:1e:f6:fd:b2:79:
                    71:60:8c:44:fb:1e:31:5a:f1:c8:f3:0d:77:ce:88:6e:
                    92:e4:19:0c:b2:af:69:fc:fb:db:91:92:41:82:d4:a3:
                    e2:f8:56:15:91:0a:bd:d6:05:ca:74:b6:20:2a:93:ec:
                    5e:69:25:de:a3:17:b4:64:d4:bc:a4:d8:fa:56:d0:42:
                    d1:dd:e6:fa:24:f4:72:25:b2:98:05:9e:30:5b:e5:32:
                    a9:d2:ea:b9:d6:30:e6:64:8b:56:e4:ea:50:92:0a:d4:
                    c5:10:34:18:1d:68:89:81:34:44:c2:50:7d:d6:9d:ff:
                    5e:a5:36:d9:96:a2:cb:a0:ba:8f:92:d6:bb:20:ed:0a:
                    1d:77:a2:69:f1:41:5f:3c:58:31:cc:fa:f1:12:e3:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:2b:7f:18:5b:92:97:d2:14:c2:55:22:65:25:ca:67:
        8b:13:8d:8f:19:67:57:ed:0e:d8:c2:22:e0:d9:40:02:
        1e:cb:a1:c1:18:e3:5c:bf:31:ec:e0:e2:41:c9:b6:3c:
        53:62:92:2e:c4:2c:01:71:ee:e8:68:ba:c4:90:13:f1:
        44:e3:0c:00:73:8a:7d:2f:3d:02:bc:e4:e0:e2:fe:53:
        eb:5a:d9:ac:c8:f8:4e:0b:3b:e0:5b:84:b6:f2:2f:ba:
        62:82:33:7d:34:3c:32:6a:ae:a3:de:3a:3f:b1:05:ba:
        af:79:94:81:e3:a1:1b:bb:af:73:52:11:45:b0:5e:1f:
        b4:74:63:b4:90:46:74:00:e3:28:4c:8a:2f:c9:93:bc:
        8f:32:7b:64:56:60:7f:d1:cc:0c:4a:20:6f:c4:16:6b:
        98:7a:b9:8d:02:54:d9:08:93:4f:26:3f:5e:65:6c:a1:
        97:8a:d5:2d:68:c5:0f:4d:2a:81:a5:91:c8:ac:4c:70:
        23:f8:b6:8e:b9:ec:f2:4a:d6:6f:7f:1b:c9:56:b4:f8:
        b1:4b:1a:e0:56:23:7f:b2:98:04:e3:bb:33:d5:f9:74:
        33:fd:f9:32:b4:95:f8:71:61:9e:6a:ac:4f:01:65:5a:
        6a:8c:40:a9:80:c2:47:d8:82:7e:66:f4:a0:cb:bb:4f
    Fingerprint (SHA-256):
        1C:08:00:AB:5E:24:C2:9B:68:09:CA:87:86:D4:C1:5C:BE:C8:FE:E5:26:77:D0:EB:D4:F3:71:0D:B4:98:AB:F9
    Fingerprint (SHA1):
        11:A6:48:4F:13:4D:BA:D5:79:7F:88:0A:A8:71:A8:05:E7:E6:A2:18
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11396: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154569 (0x1dee4549)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:47:01 2017
            Not After : Mon May 02 15:47:01 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:4e:5b:e9:52:b9:5c:bf:45:6b:74:21:a2:28:da:02:
                    52:bf:f5:42:92:0a:53:02:80:8c:16:a0:cb:c1:2e:70:
                    4a:8f:fd:1b:3d:22:9b:17:61:fb:26:af:cc:a3:64:e1:
                    ed:92:64:a3:54:db:c0:4d:32:c8:bd:e4:f8:19:d2:1d:
                    c2:99:44:dc:89:30:c1:ad:90:16:19:92:39:46:0a:d9:
                    15:c6:69:fa:5a:25:d2:57:03:a8:e7:95:8a:4e:b2:21:
                    b1:7b:86:b9:03:85:7e:9e:e2:00:55:1e:f6:fd:b2:79:
                    71:60:8c:44:fb:1e:31:5a:f1:c8:f3:0d:77:ce:88:6e:
                    92:e4:19:0c:b2:af:69:fc:fb:db:91:92:41:82:d4:a3:
                    e2:f8:56:15:91:0a:bd:d6:05:ca:74:b6:20:2a:93:ec:
                    5e:69:25:de:a3:17:b4:64:d4:bc:a4:d8:fa:56:d0:42:
                    d1:dd:e6:fa:24:f4:72:25:b2:98:05:9e:30:5b:e5:32:
                    a9:d2:ea:b9:d6:30:e6:64:8b:56:e4:ea:50:92:0a:d4:
                    c5:10:34:18:1d:68:89:81:34:44:c2:50:7d:d6:9d:ff:
                    5e:a5:36:d9:96:a2:cb:a0:ba:8f:92:d6:bb:20:ed:0a:
                    1d:77:a2:69:f1:41:5f:3c:58:31:cc:fa:f1:12:e3:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:2b:7f:18:5b:92:97:d2:14:c2:55:22:65:25:ca:67:
        8b:13:8d:8f:19:67:57:ed:0e:d8:c2:22:e0:d9:40:02:
        1e:cb:a1:c1:18:e3:5c:bf:31:ec:e0:e2:41:c9:b6:3c:
        53:62:92:2e:c4:2c:01:71:ee:e8:68:ba:c4:90:13:f1:
        44:e3:0c:00:73:8a:7d:2f:3d:02:bc:e4:e0:e2:fe:53:
        eb:5a:d9:ac:c8:f8:4e:0b:3b:e0:5b:84:b6:f2:2f:ba:
        62:82:33:7d:34:3c:32:6a:ae:a3:de:3a:3f:b1:05:ba:
        af:79:94:81:e3:a1:1b:bb:af:73:52:11:45:b0:5e:1f:
        b4:74:63:b4:90:46:74:00:e3:28:4c:8a:2f:c9:93:bc:
        8f:32:7b:64:56:60:7f:d1:cc:0c:4a:20:6f:c4:16:6b:
        98:7a:b9:8d:02:54:d9:08:93:4f:26:3f:5e:65:6c:a1:
        97:8a:d5:2d:68:c5:0f:4d:2a:81:a5:91:c8:ac:4c:70:
        23:f8:b6:8e:b9:ec:f2:4a:d6:6f:7f:1b:c9:56:b4:f8:
        b1:4b:1a:e0:56:23:7f:b2:98:04:e3:bb:33:d5:f9:74:
        33:fd:f9:32:b4:95:f8:71:61:9e:6a:ac:4f:01:65:5a:
        6a:8c:40:a9:80:c2:47:d8:82:7e:66:f4:a0:cb:bb:4f
    Fingerprint (SHA-256):
        1C:08:00:AB:5E:24:C2:9B:68:09:CA:87:86:D4:C1:5C:BE:C8:FE:E5:26:77:D0:EB:D4:F3:71:0D:B4:98:AB:F9
    Fingerprint (SHA1):
        11:A6:48:4F:13:4D:BA:D5:79:7F:88:0A:A8:71:A8:05:E7:E6:A2:18
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11397: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #11398: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154574 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11399: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #11400: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #11401: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154575 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11402: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #11403: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #11404: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154576 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11405: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #11406: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #11407: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154577 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11408: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #11409: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #11410: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154578 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11411: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #11412: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #11413: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154579 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11414: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #11415: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #11416: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154580 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11417: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #11418: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #11419: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154581 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11420: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #11421: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #11422: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154582 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11423: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #11424: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #11425: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11426: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502154583 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11427: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11428: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502154584 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11429: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11430: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502154585 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11431: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11432: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #11433: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #11434: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11435: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502154586 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11436: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11437: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502154587 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11438: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11439: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502154588 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11440: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11441: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #11442: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #11443: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11444: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502154589 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11445: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11446: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502154590 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11447: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11448: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502154591 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11449: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11450: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #11451: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #11452: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11453: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502154592 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11454: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11455: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502154593 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11456: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11457: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502154594 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11458: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11459: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #11460: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11461: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11462: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502154595   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11463: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11464: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11465: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11466: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154596   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11467: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11468: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154574 (0x1dee454e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:47:06 2017
            Not After : Mon May 02 15:47:06 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:a4:b7:2e:3a:fe:a7:f0:cc:3f:92:45:95:b6:20:d7:
                    60:26:57:f9:d2:d9:86:93:6c:30:da:fc:3f:41:e0:05:
                    f4:8d:c6:9a:4a:0c:e6:b1:c3:54:54:f4:62:c5:db:85:
                    30:e5:aa:b7:31:5c:71:92:48:05:09:8c:fb:a3:4a:f5:
                    45:65:a3:87:a2:bd:d0:9b:46:d9:97:af:42:22:eb:c8:
                    17:70:5b:19:d1:ab:33:04:92:26:48:b5:b2:51:25:18:
                    60:31:2b:0d:36:9d:51:b3:88:40:0b:6b:85:af:58:80:
                    03:d2:c1:ad:5b:d9:9e:e0:02:e6:2e:23:9b:58:c8:a5:
                    92:ab:77:18:dd:b9:bc:0a:84:ef:61:2e:1c:79:0e:86:
                    a4:8f:bd:5b:4a:df:20:e7:2f:b5:92:7c:07:df:ef:12:
                    51:d6:2a:d7:ad:2d:83:25:a4:0e:ca:70:ec:31:1d:ad:
                    f2:62:83:45:a6:8b:f1:17:aa:a1:9a:e5:4d:c3:ae:b4:
                    5e:47:9c:f0:20:f7:13:1a:29:8d:c7:1a:41:5b:06:63:
                    9e:4a:2a:67:d8:16:55:49:9f:82:3b:fa:f1:b4:7d:63:
                    ab:3b:39:0d:e9:25:ed:c6:80:26:d8:46:91:4a:d6:af:
                    a5:94:bd:b1:84:1b:7f:9b:24:f7:72:de:3d:f2:c9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        39:27:d5:3d:ed:ea:2b:e1:7d:4c:5f:d4:f3:40:9c:81:
        c9:58:66:f7:ce:39:e8:60:68:b7:59:9d:e2:ed:0f:c1:
        26:a0:85:0d:a6:f5:e3:ba:b1:17:3d:48:6c:af:51:95:
        76:34:55:96:d5:d9:8e:07:b7:27:09:64:90:d8:e6:94:
        82:5a:b5:fe:3a:c7:47:64:53:6f:dd:e9:17:29:2d:e6:
        84:40:75:3e:79:4e:bc:57:4a:77:05:b8:4c:f1:40:bd:
        3a:d2:98:b1:15:f7:36:53:62:0e:f4:cf:f8:46:9c:e9:
        5e:5c:f2:45:bf:63:dc:68:13:25:e9:3b:8e:26:8e:eb:
        1c:11:6f:6c:06:a7:01:ad:8b:21:83:07:35:92:d5:81:
        61:a8:8c:b1:dd:35:41:96:73:5c:82:e7:5e:03:6f:d9:
        ec:0c:23:fe:58:40:49:61:f4:e7:11:d3:c1:ad:01:fe:
        cd:fc:88:e6:fa:e3:3a:73:63:e1:6e:5f:a2:f5:b7:71:
        79:5c:28:23:65:72:d7:ed:fc:9d:6c:21:0e:80:8f:87:
        51:14:7b:6e:a5:d8:cb:22:3e:75:ee:f7:2f:35:21:9e:
        fd:bf:45:5c:ce:ea:0e:8b:d1:14:be:c0:12:99:3a:d0:
        06:5a:4f:88:78:d0:41:0f:5f:15:39:4c:ee:17:0e:bc
    Fingerprint (SHA-256):
        1F:10:61:A2:CE:10:D4:58:82:3A:6B:C0:B6:6C:79:84:FA:D1:6A:2F:52:46:A1:08:82:A7:81:7A:8B:2B:28:B5
    Fingerprint (SHA1):
        5C:37:62:93:C9:1C:20:01:73:16:CF:BA:EC:82:E1:49:3B:E1:3C:1C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11469: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154575 (0x1dee454f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:47:06 2017
            Not After : Mon May 02 15:47:06 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:e7:42:9e:75:db:cc:83:a3:52:3b:df:48:25:56:e6:
                    ba:91:eb:b2:36:9b:0d:38:e4:68:66:29:92:e6:a7:cf:
                    9b:b3:89:aa:ae:6e:68:f0:54:9c:70:b2:e8:eb:8d:b2:
                    dc:96:28:65:96:fc:c3:64:44:ff:ff:59:a8:0d:d7:55:
                    bb:b7:83:25:90:6b:e9:4f:40:af:32:ad:85:5c:f1:f6:
                    1b:f4:82:75:f3:bb:1e:49:18:0f:6d:87:20:62:8d:8a:
                    95:e4:8b:f5:f5:38:0d:5e:c9:e4:2c:55:1d:c2:f8:ba:
                    1e:3d:5c:4a:7e:27:63:ac:4e:4b:ee:9a:a6:46:94:11:
                    0f:ba:e8:af:f0:86:49:7e:ad:38:1f:34:22:cd:dd:e1:
                    c7:69:d9:d8:2e:5e:58:d1:ce:23:3d:05:13:27:d4:ad:
                    58:ed:a8:c3:f7:55:1f:3c:cb:b8:e5:0c:84:c4:00:cc:
                    2c:80:c6:fe:c7:54:88:a8:9e:08:02:bd:78:73:09:08:
                    52:d8:7d:a3:6f:f4:f6:8b:44:f9:85:4e:d2:5a:34:d1:
                    91:8b:03:5d:4f:35:84:ed:12:f1:2d:5a:31:df:55:27:
                    e0:48:2c:24:de:30:9a:20:44:4e:f0:ca:d6:72:0c:01:
                    49:33:91:79:d5:1b:ec:92:8d:fd:d1:2e:47:b4:a9:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:c4:ca:f5:1f:9c:74:1a:41:58:9e:ea:0a:ee:79:8e:
        87:7a:98:9b:e4:90:c9:e6:80:ed:a8:1b:d3:42:d4:52:
        e9:9d:76:f4:17:aa:8e:e8:5f:14:c8:2c:35:b0:5d:d0:
        72:45:f7:c6:22:aa:60:61:a2:c6:4c:99:95:3f:da:b2:
        66:e7:8a:b8:f6:61:4f:d4:a9:ee:33:4d:5f:16:15:2b:
        01:db:30:ab:b3:09:32:b7:c1:34:94:4b:47:0a:c2:f7:
        24:00:f0:c4:7e:be:a3:84:c5:5f:c2:69:02:15:9e:33:
        6a:80:c1:ff:c8:a7:51:79:4a:ed:9b:eb:3d:d4:40:10:
        7f:78:c7:41:43:40:e2:d0:6f:d0:c0:d5:ed:61:aa:37:
        d7:ec:f9:a7:76:45:ee:af:60:2d:3d:30:e2:c6:fd:a6:
        c3:6a:85:29:87:af:18:c4:d5:ab:9b:f1:d9:b0:f6:88:
        94:f7:00:87:f1:fe:af:2c:f6:e2:50:a0:00:51:99:0b:
        65:1d:d9:3e:47:4b:88:3a:e9:ce:ac:85:0a:e7:54:10:
        22:1b:06:03:61:5a:05:66:f7:77:aa:cc:a8:39:f3:3e:
        17:83:bd:5b:82:03:7e:0b:f2:40:a8:ea:ff:ed:49:85:
        c3:c4:89:77:1f:48:32:15:24:70:fc:9b:2e:f7:c1:bf
    Fingerprint (SHA-256):
        19:AA:4D:97:D3:56:29:F2:0B:28:D2:CE:E1:C4:AC:BC:F5:F2:D5:B7:84:0B:73:DE:7B:E7:D7:94:63:92:F5:A4
    Fingerprint (SHA1):
        BD:80:6A:57:A5:06:EB:9E:02:37:C8:AD:42:30:B0:80:E3:37:0B:DC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11470: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154576 (0x1dee4550)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:47:07 2017
            Not After : Mon May 02 15:47:07 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:55:79:75:95:be:62:1e:ea:c9:19:82:d6:98:b8:45:
                    e9:b6:dc:62:40:74:37:bc:1b:ca:ab:8c:92:61:a2:80:
                    e7:08:b8:10:fe:10:77:f0:0c:41:94:02:3c:b3:3b:53:
                    43:12:11:b3:d2:57:c0:54:c7:bb:cd:15:9e:be:b3:20:
                    55:ec:b2:d5:b7:1c:87:b5:70:ae:32:a3:c9:84:69:ed:
                    39:79:eb:75:70:9d:53:68:28:d8:ec:7c:51:73:1e:93:
                    78:1d:b6:87:56:31:bb:b6:e6:7a:4e:c6:70:ce:c4:9f:
                    de:e2:2f:29:4a:5a:0d:1c:e4:57:d1:f1:4a:43:84:25:
                    0e:64:71:90:d2:83:1b:2c:3b:29:57:c7:a8:1e:5c:b6:
                    51:43:2f:7b:9b:6e:5a:c3:41:8e:a7:9e:c6:9b:25:a0:
                    7b:12:3e:44:fc:3e:24:1e:4d:f1:b6:f8:3d:3a:a2:15:
                    32:47:bb:b3:6f:ca:d4:d0:f5:f7:77:df:93:cb:36:2d:
                    15:b6:6d:4c:ba:df:a3:29:30:c7:ed:5c:45:47:3b:af:
                    25:dc:48:4b:ca:0f:71:38:c8:2b:fe:f9:05:a5:d2:38:
                    a0:47:59:ce:9f:d6:4c:40:ca:08:a1:d9:48:73:62:63:
                    d5:57:c0:20:e8:18:63:22:0b:4e:c1:18:97:99:6a:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:4e:78:b4:7b:6a:47:d5:2a:06:f5:69:66:5b:48:af:
        3b:67:9a:71:42:8f:d2:14:c3:97:6e:a9:a3:ea:ea:ec:
        44:11:58:10:bb:72:8b:3e:ce:7a:45:6c:76:d9:63:2c:
        c5:70:a4:fd:ce:c4:fb:fc:1a:27:a4:e7:b5:1a:53:26:
        9f:83:ce:80:9c:28:f7:96:09:1c:92:ef:0f:35:85:46:
        25:7d:0a:9b:c9:10:45:56:23:a0:86:51:81:28:aa:d0:
        9b:9e:08:f3:21:8c:94:65:d2:9d:00:f1:07:45:38:d1:
        b8:ac:65:95:c9:cd:62:d9:6e:d0:80:a5:2a:c4:ee:95:
        67:17:17:2d:79:10:77:54:80:d5:46:bf:25:e9:3b:98:
        23:55:55:70:b3:8b:18:9b:65:a3:b3:0a:b7:05:47:df:
        ee:04:0f:17:f6:c4:3c:ad:08:87:8d:77:63:7f:4b:35:
        d3:07:7c:d8:a5:ce:88:59:ff:f8:be:1f:8a:30:b1:31:
        13:fb:70:34:84:1f:7b:ec:a3:b4:a3:d8:79:52:fe:3f:
        f4:97:68:ae:22:26:68:da:9f:a9:d1:69:4d:91:8b:60:
        f9:26:4d:27:b9:78:e4:1d:8d:33:1c:84:7b:13:91:45:
        16:f1:03:3d:6f:fd:16:5d:6d:44:28:a6:7a:d5:6a:bd
    Fingerprint (SHA-256):
        E2:57:04:56:28:09:87:98:22:CB:60:B1:1E:E8:68:B9:AF:30:4F:0A:EC:E3:E8:5B:81:34:C9:AA:98:C6:BD:DB
    Fingerprint (SHA1):
        E3:2E:3E:47:B2:8E:5C:68:C3:56:43:49:62:84:26:BB:5F:82:73:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11471: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154577 (0x1dee4551)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:47:07 2017
            Not After : Mon May 02 15:47:07 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:7c:8c:72:cb:94:70:f5:44:8f:66:b3:a4:4b:cc:a7:
                    cf:42:f0:1e:ea:27:14:6a:26:c0:27:4d:98:64:dd:d3:
                    57:9c:d7:69:ec:f9:30:77:5b:73:20:99:f1:5b:79:17:
                    ee:a4:31:c7:73:5d:72:35:fa:6a:02:fb:cd:8e:93:5a:
                    17:04:1a:83:16:8e:bc:7a:80:bb:9a:84:92:5e:a1:1e:
                    b1:91:8a:90:55:91:dd:06:b3:82:52:0a:55:6e:6f:96:
                    67:62:c2:6b:c6:5d:c1:92:e7:70:bb:de:c9:fb:41:25:
                    3c:e0:08:ea:66:23:a8:05:48:a4:98:0f:d0:ec:30:df:
                    e7:dd:34:41:fb:2d:1c:1d:20:5e:87:31:85:e7:f2:09:
                    5a:d0:70:8e:4b:bc:c2:01:6f:bc:be:5f:8b:9d:4f:f8:
                    76:96:d6:9f:75:93:1a:eb:9d:d9:9e:b7:ef:47:f3:c4:
                    32:ec:4a:78:09:62:f3:b5:12:23:5b:46:87:1e:df:ee:
                    09:87:e1:b2:25:16:c6:5d:17:76:fd:cb:c4:59:1d:8a:
                    97:d3:3e:d1:90:48:57:8e:b7:b8:42:85:ce:9b:ee:2d:
                    ae:11:e2:da:b0:a5:a0:94:d3:18:ab:f4:24:b9:3d:61:
                    2b:f9:09:79:c3:e3:b3:45:3f:43:da:c2:6c:4e:4f:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:7e:da:4c:54:7c:03:1e:3b:99:dc:fd:ac:83:0b:b3:
        c3:55:b7:cb:d2:6e:08:72:df:6a:5e:08:34:18:56:18:
        2d:e8:ab:59:11:29:6e:a4:8e:42:ac:71:42:54:42:bb:
        de:9e:a7:65:1e:d4:16:22:ec:a9:b4:4f:cc:c3:82:c9:
        47:cc:71:f9:85:11:69:f2:16:cf:be:79:6e:e0:3d:26:
        d0:f6:9e:7a:3a:69:dd:6e:4d:aa:7d:05:1e:36:46:b9:
        df:ce:23:11:06:7d:3a:1c:5a:9d:e2:43:17:79:b3:43:
        74:41:8d:87:b1:cf:31:34:40:5c:c4:9a:5c:36:22:41:
        0a:06:e5:2a:c7:f4:e2:47:12:3c:14:06:eb:0c:e2:06:
        19:74:63:a4:7f:36:89:3e:eb:d6:e1:5b:66:63:b8:2f:
        65:49:1f:d9:bb:35:16:eb:98:36:71:c1:b8:e7:dd:04:
        d7:97:0f:cc:d4:30:6d:94:7e:72:10:78:c2:2b:2d:78:
        de:76:ee:b9:bb:d5:ab:a3:07:0f:bd:82:3f:e4:a2:7a:
        bb:de:cd:ab:ee:46:6d:f9:18:6e:b4:a1:1d:1e:89:34:
        4b:25:be:cd:c4:73:61:50:a0:f3:b3:80:69:f8:4d:8f:
        12:f8:c8:f6:c7:1c:af:b8:71:02:e3:83:6c:c2:84:16
    Fingerprint (SHA-256):
        AF:6E:6B:00:10:53:3A:21:8A:AA:E7:84:00:CD:55:2D:C7:B8:F0:9D:A1:16:51:79:08:1D:BD:82:C4:BD:EF:94
    Fingerprint (SHA1):
        AF:E0:80:A5:41:40:A1:4A:77:C9:A2:FC:D2:D8:0E:84:63:AE:AE:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11472: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154578 (0x1dee4552)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:47:08 2017
            Not After : Mon May 02 15:47:08 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:85:9a:3e:86:30:2a:0b:02:23:cd:ff:3a:ed:6a:9d:
                    78:ce:a5:03:3f:33:f4:6b:95:e3:84:e3:fa:a0:d5:d6:
                    f6:b8:af:a0:48:5e:fd:5a:44:d3:52:41:5f:79:89:9d:
                    e1:cc:4b:22:06:a5:18:a9:98:e5:bd:4d:c7:91:77:f0:
                    7c:02:ea:15:b7:9d:27:6d:67:bb:07:4d:f6:b2:44:d3:
                    d2:b4:c5:45:7c:1a:86:63:a4:de:a0:c0:12:4c:42:4a:
                    69:6a:5f:88:1a:1d:0b:4c:c5:e6:3b:5e:82:37:2a:67:
                    f6:9c:08:0e:b6:7d:32:9c:be:7c:f0:09:4b:a1:e4:59:
                    9a:88:46:68:88:0f:b9:e2:2a:66:c8:6b:08:4e:8e:18:
                    c6:9b:f2:d7:0b:76:d4:b8:af:6b:f7:0a:da:e9:c1:84:
                    c4:6a:b5:02:03:f7:a9:59:ff:e8:89:68:79:14:f2:66:
                    4e:b2:4b:34:ca:cc:6a:ee:4a:b0:da:7a:12:7f:08:96:
                    10:61:49:32:a7:cc:39:4f:f9:d9:9c:3b:b6:65:3c:dc:
                    bd:cf:59:f4:62:b9:be:cd:b0:77:1d:d2:7d:f2:d6:db:
                    05:a5:27:b2:08:98:f3:80:bc:4b:69:bd:b9:6c:84:8f:
                    f4:26:01:da:27:67:f3:29:a4:aa:77:ab:06:bf:61:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:0e:90:d1:c3:10:4b:22:71:95:3c:7c:f2:e4:45:10:
        a0:a3:2b:0a:ea:7d:4b:03:73:fb:47:9a:5b:ef:fa:ef:
        e6:17:d1:5d:40:99:d6:ca:2e:5e:1d:33:69:a7:a3:03:
        7f:80:b3:4e:1c:33:01:fc:8c:18:85:8b:a0:ae:0d:a8:
        77:02:30:1a:20:c6:2d:d7:6f:bf:30:fb:bc:74:d0:2a:
        d8:ed:87:e0:73:3b:b7:96:81:d8:d5:7b:5a:22:0d:91:
        30:d2:75:92:5a:c6:c4:53:4f:9e:32:fc:99:28:22:17:
        f4:d2:9e:1c:67:41:8f:f0:cc:31:78:ca:b0:38:8e:03:
        aa:32:3d:66:d8:ef:b7:52:bd:08:f2:c6:9e:3b:88:c8:
        d7:d4:d1:7b:0e:80:ca:72:f7:6c:82:00:ae:62:9a:48:
        64:48:a0:23:2e:96:26:56:60:e4:ec:0d:f1:d8:a0:38:
        f9:f8:de:fd:6b:93:f7:e5:bb:d4:f3:fb:38:21:5d:24:
        c7:15:ec:d9:c4:b4:1b:61:c3:43:4e:79:52:bf:d2:a0:
        50:b7:29:74:61:28:ed:16:18:d6:28:7a:62:93:87:21:
        0c:cc:21:fa:8a:f1:fe:0b:cc:69:fd:10:3c:cb:b9:72:
        eb:ab:9d:4c:b0:a2:14:47:1c:af:93:41:77:d3:33:1d
    Fingerprint (SHA-256):
        9F:92:4D:90:05:47:AF:E5:0A:8C:F6:03:54:A6:39:48:7B:C9:B7:BE:23:D8:95:E2:2C:3E:66:F2:C8:30:A8:83
    Fingerprint (SHA1):
        CF:3D:65:DB:8B:96:32:A2:FE:29:C4:4C:7F:38:2F:46:2B:F5:93:38
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11473: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154579 (0x1dee4553)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:47:08 2017
            Not After : Mon May 02 15:47:08 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:ba:4f:be:ae:1d:97:67:e0:ef:41:61:ca:49:2f:1f:
                    ec:ba:c6:d9:07:50:a9:28:d0:43:35:3e:6f:2d:46:10:
                    b7:1c:9e:8c:52:c3:de:e6:08:1f:df:be:e0:c8:5a:69:
                    26:3f:8d:53:f0:fb:4b:fc:15:e9:f9:b9:d5:eb:81:bc:
                    b7:48:3f:7c:2d:b6:97:7b:a6:95:31:e3:7c:cc:bd:fc:
                    14:aa:d0:e2:b6:39:62:88:d1:92:5b:0d:a2:c2:3a:c5:
                    4d:4e:55:20:52:db:06:cf:c3:31:54:b3:1e:95:12:22:
                    a6:98:f8:ba:da:dd:ef:93:2a:75:f5:7c:fa:97:66:30:
                    69:c3:3e:bd:ba:ad:cf:b5:19:8e:6e:1b:1f:46:21:35:
                    33:c3:4d:e1:d1:e1:36:5a:9a:25:3d:1b:52:70:51:5a:
                    87:b4:dc:17:7a:be:b7:9e:67:e3:8c:9f:65:91:0c:f8:
                    65:35:21:56:0c:82:83:2f:a1:5a:2a:8e:44:2f:9a:62:
                    fb:8e:c3:a9:ab:25:b2:8f:d9:c1:c6:73:e0:2a:df:f0:
                    3b:9c:ca:89:e8:51:d5:5e:19:1a:6f:6c:11:d6:01:4d:
                    a9:34:1e:50:ef:44:f2:fe:9f:62:09:47:9b:20:1e:b6:
                    99:0c:1b:cf:04:7e:c3:b1:88:b9:3d:ee:94:c6:d0:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:72:65:57:dd:ad:82:4a:02:34:a9:e5:7e:dd:ca:06:
        14:a4:e4:24:21:d9:cf:2e:8c:28:e5:83:2c:32:68:e9:
        2e:c1:d3:1b:e0:41:c4:98:57:07:8a:52:87:14:de:82:
        f1:5e:a0:d5:c5:42:0f:4e:d4:23:4c:0f:04:b5:e0:c0:
        51:6e:0f:30:49:4e:9b:a2:1c:94:08:6a:ab:da:8a:30:
        9a:eb:cb:f5:20:84:05:33:ab:9b:15:2c:26:2e:2e:39:
        42:97:45:cb:ec:a5:63:7d:5b:56:1a:ce:73:9e:6e:59:
        eb:1c:65:07:ab:95:b4:27:3f:1c:3a:1a:4a:fc:79:42:
        bc:9c:96:ef:48:32:3d:91:6b:05:e3:a5:ca:02:ca:98:
        4c:d6:96:29:3b:ef:35:50:ea:33:86:c1:3d:9c:38:fd:
        29:24:04:95:5d:b5:51:8d:ab:b3:5c:9b:7f:f6:6c:21:
        08:b8:9d:d3:4a:4e:b7:24:bd:f8:c6:a0:1f:b0:df:29:
        5b:58:16:06:4a:a5:a9:e6:b6:65:29:b5:58:8a:ab:30:
        bb:50:7b:d7:57:93:19:06:d0:31:4b:b7:6c:ce:9d:11:
        b9:75:8d:7e:b7:bb:2c:12:33:4d:07:48:81:d1:44:55:
        6c:ca:a3:79:5d:3d:2c:ac:b2:d4:3b:b4:c6:99:be:00
    Fingerprint (SHA-256):
        13:48:34:37:33:F6:11:95:9B:31:46:96:BC:AE:56:62:90:67:92:EE:07:5A:BF:CA:22:64:E7:24:24:AD:D1:00
    Fingerprint (SHA1):
        34:E4:24:EA:31:56:C2:EC:6F:5F:68:12:C1:0C:D4:E3:7E:B7:7A:EB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11474: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154580 (0x1dee4554)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:47:09 2017
            Not After : Mon May 02 15:47:09 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:0d:5a:43:0a:6b:40:a6:2a:92:2c:da:f5:2a:33:61:
                    8e:8e:b6:c0:83:df:ee:7c:fd:df:0b:0c:f2:cb:8d:ac:
                    03:fb:51:57:f4:00:7a:af:3e:29:90:cd:f7:35:8e:02:
                    e0:67:4f:40:d2:d6:14:24:b7:bb:3f:11:84:a1:db:1d:
                    52:2d:9c:d9:fb:50:6d:a5:1a:5f:65:38:24:4f:64:6f:
                    c9:2f:a8:45:96:32:c4:bc:4b:2c:c1:63:ac:4e:5b:4a:
                    f7:06:2c:86:93:69:e0:96:16:14:3d:72:bd:58:73:36:
                    8e:af:de:98:15:ea:c0:f8:89:a6:6e:8a:00:73:d5:f4:
                    fd:c4:5c:63:c2:80:bb:42:d2:d6:bb:34:35:d5:65:26:
                    bf:27:97:30:1b:3e:95:1f:31:c4:ac:6c:3e:97:58:e9:
                    00:58:82:83:a4:55:5a:60:4c:da:1c:19:e5:d2:39:bb:
                    a7:62:21:10:e5:be:cc:5c:7e:79:fa:c7:99:52:07:29:
                    33:8a:e6:be:3c:98:99:a5:74:2e:58:0f:1f:1f:40:45:
                    43:39:1f:01:68:9e:d4:6c:cf:8b:c6:8a:b7:22:21:57:
                    64:87:22:88:57:ea:2c:97:66:18:89:c8:78:dc:0b:ba:
                    e1:7e:e7:ad:69:97:1c:7f:69:26:f9:9e:1f:54:c8:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:06:78:0f:32:5c:d3:3b:82:3a:82:2f:6f:74:e3:c4:
        7a:2f:59:a4:28:02:a5:d8:0d:bb:f5:2a:68:e2:df:6d:
        7f:64:45:1b:ed:96:b8:8c:e0:73:fc:b7:bb:cb:a5:d1:
        eb:cb:69:1a:f5:6f:24:aa:d9:0a:fd:37:ed:a3:78:6a:
        7b:d7:aa:5c:fb:5c:b2:52:9e:05:6b:b4:25:4d:99:56:
        26:0a:b1:e4:a1:bb:ee:f4:56:12:ef:c0:08:09:4f:a8:
        ad:58:aa:4a:98:74:9e:12:7a:2b:13:2f:c1:97:ed:e3:
        03:13:2b:ef:c4:45:cc:6f:83:de:5c:b0:21:90:70:91:
        cf:88:f5:de:c6:c3:7d:50:5e:c0:ef:a3:c3:fc:75:ae:
        5e:78:5b:a3:40:92:a5:cd:fc:d8:a9:85:84:3d:08:1f:
        7f:8f:03:57:47:bd:bd:94:46:7f:dc:51:84:e5:2c:a5:
        a3:57:e3:43:79:51:ec:dd:3c:8d:56:4b:26:5d:c8:75:
        74:93:78:6a:af:68:19:f1:c1:94:6f:61:76:f9:2f:17:
        78:c3:d6:63:52:9e:a3:d3:f8:96:19:eb:d7:b2:56:62:
        15:17:39:2e:41:d2:c8:1b:29:e1:1b:88:72:f7:63:bc:
        4e:9c:3a:01:30:e3:a7:c4:b3:91:cb:02:c6:d8:e5:2b
    Fingerprint (SHA-256):
        01:04:03:6D:A5:49:68:98:77:3F:51:E2:B9:44:F8:13:C0:49:FE:9F:6E:4E:A1:EF:BC:F8:CA:88:39:23:D7:3E
    Fingerprint (SHA1):
        57:00:47:E9:18:4B:99:4B:70:F5:68:73:47:A5:E5:B8:26:A2:F9:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11475: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154581 (0x1dee4555)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:47:09 2017
            Not After : Mon May 02 15:47:09 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:d3:78:67:5d:04:1b:85:33:6f:3e:c5:08:94:c4:ad:
                    c2:aa:f0:9e:28:2b:dd:ab:5b:07:bf:0b:48:ca:c1:dc:
                    63:51:27:d3:89:7d:66:cd:9a:9a:1d:48:7c:b1:c0:d1:
                    7e:6f:3d:50:65:92:c7:d4:13:ba:a8:63:a6:f3:41:52:
                    3c:d2:5e:65:2c:85:f2:68:e9:a7:1f:c9:2e:c7:2b:4e:
                    17:02:9e:8d:61:c3:91:1b:3d:ff:7d:c3:9b:0e:30:99:
                    38:d2:14:e6:3e:05:a9:e1:be:f1:de:22:e8:28:08:92:
                    58:5f:74:1d:d0:c5:97:af:0c:1e:99:a2:7e:e6:22:69:
                    d6:e0:35:f3:8d:ef:9b:8d:30:58:2e:bc:a9:55:75:aa:
                    3f:3a:56:38:3b:12:83:d8:b0:1a:c2:20:8e:5c:eb:b9:
                    c0:ed:79:86:a2:e3:4b:f2:25:7b:ac:0e:5b:a3:22:e1:
                    c1:42:a1:5a:d1:97:93:fd:e7:43:02:51:f6:e4:dc:c8:
                    b2:55:1d:0c:72:f2:2a:69:53:f6:e1:17:ab:62:aa:bf:
                    20:02:ec:d5:41:fa:e7:97:e8:bb:be:b3:11:e5:49:a3:
                    3e:6a:37:70:4c:da:79:4c:96:26:75:92:03:25:30:f2:
                    bc:5a:2f:25:19:38:bd:fd:89:ae:b8:0d:55:6c:ca:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:e6:f3:d6:6f:e1:d6:06:2f:76:30:54:61:7c:82:33:
        f4:8c:bb:59:4d:17:be:ec:a9:0b:86:1f:56:d9:87:1f:
        b4:46:19:ef:f9:14:73:af:a3:88:b5:1d:b8:06:40:65:
        91:fa:0c:f9:d7:76:c5:aa:ef:0e:dd:d8:8e:7b:d5:72:
        27:24:99:0f:55:84:8f:49:97:2b:84:d0:8b:67:84:3c:
        15:9c:48:42:8a:00:9b:a3:8d:f1:29:ef:0b:cb:df:bb:
        34:22:0d:ae:4a:c6:64:46:b5:93:33:d0:03:a8:c1:eb:
        06:c6:e3:32:a9:98:22:4e:9c:1d:03:8c:19:eb:ef:3c:
        be:9f:2a:f5:a2:66:ab:c0:e1:11:1c:ea:73:e8:58:17:
        52:e8:4b:4d:cb:11:95:b2:57:9f:62:18:62:29:31:08:
        47:44:71:39:cc:d7:6b:11:28:20:3a:26:98:ba:92:a1:
        9d:e7:9b:de:54:bf:62:6f:3c:5e:39:16:20:00:1e:7a:
        d2:6b:f1:0a:fb:12:81:6d:60:e2:ba:bb:c3:5e:de:f6:
        d5:27:70:17:5a:f1:98:d6:90:3f:b5:8e:7b:9b:78:88:
        35:fe:be:e9:18:ba:16:2b:df:39:9c:fd:1f:b9:e8:a7:
        bf:e4:66:6f:9f:c8:ef:a5:a5:7d:89:4c:be:cf:b5:0b
    Fingerprint (SHA-256):
        E8:21:85:0C:16:14:FE:5F:93:BA:59:1B:50:45:E9:C0:15:D7:B2:90:3E:67:A9:56:DD:C3:19:40:C4:E4:D9:F1
    Fingerprint (SHA1):
        03:8C:7E:C6:93:70:53:A6:48:DA:A2:C5:AE:61:92:67:67:F9:A5:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11476: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154582 (0x1dee4556)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:47:10 2017
            Not After : Mon May 02 15:47:10 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:22:84:80:2c:03:6e:ea:79:24:6a:71:cd:44:73:cc:
                    0e:b5:e8:e6:ed:5a:fd:d2:20:3f:72:b3:99:66:26:15:
                    e7:72:5f:a7:ab:52:16:6a:40:a5:c1:7a:1e:2b:6d:bd:
                    16:10:93:c6:bd:54:39:2c:e0:c9:af:af:9e:f5:f2:2f:
                    11:f6:bb:c2:d1:c6:41:a0:e9:f9:7f:25:ac:6b:42:a4:
                    6d:40:3b:89:d3:69:4c:81:8a:8a:da:28:0d:18:fd:48:
                    65:f7:88:23:fd:fc:f2:a3:ce:53:8d:21:37:eb:c6:75:
                    c0:4c:d5:0f:b4:ed:2f:a3:56:f7:1e:2c:77:05:d5:eb:
                    b3:f1:3c:5c:3e:9c:f1:75:c7:2b:c9:bd:95:c3:7d:99:
                    14:0f:d4:b8:80:ab:c7:9f:9d:e5:3e:50:56:aa:17:d6:
                    d0:7e:5b:13:63:62:8b:a8:90:23:5d:b1:c2:ce:71:08:
                    b3:41:f2:ce:75:d7:ad:d6:a8:8e:e1:ca:ac:30:1a:18:
                    d2:eb:5a:29:47:a9:d3:f4:e6:3b:54:92:25:ec:a0:ed:
                    0c:7e:f2:12:36:1b:ea:5b:f7:3d:6a:6b:41:b2:9a:91:
                    5f:bd:81:cf:0c:7d:b4:8d:3e:b0:99:59:13:48:15:89:
                    6a:bc:a9:e8:cd:bc:ed:b8:be:0c:d6:88:34:a5:c4:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:1b:bf:02:1e:89:94:7a:99:4f:da:18:c1:35:d3:ba:
        de:14:95:d8:ac:81:fa:33:ec:bc:e6:9b:f6:ac:22:c3:
        2d:ba:f9:6f:8c:69:82:aa:67:1e:a2:f6:46:05:1f:53:
        62:0c:fd:92:0e:78:15:40:f4:ad:c6:3a:80:1c:b6:e4:
        4e:81:8d:a9:56:76:8c:f5:76:83:0e:c1:97:82:80:0b:
        38:c8:b7:88:48:8a:06:5b:d9:b4:db:1b:a5:07:37:af:
        0c:4a:6c:25:9d:60:0e:ce:dc:ec:c6:37:83:45:0c:1f:
        e7:fc:bd:a8:e2:92:5e:eb:1e:6e:fa:a7:35:ad:b7:27:
        27:28:1c:4a:bb:e9:91:ff:3e:11:6d:63:3c:78:ee:8c:
        28:ed:47:57:8f:f0:c1:fb:30:13:ed:7f:9a:56:5a:a7:
        86:88:a2:01:c1:e7:83:74:5c:8d:88:8e:1c:43:72:66:
        e4:4b:5f:05:64:f1:da:47:58:65:34:24:c7:ad:7f:b7:
        7e:89:de:9b:0c:bc:bc:d5:bd:13:82:06:88:99:b1:fe:
        51:f5:f5:6f:6e:0e:76:c9:4d:16:25:e4:14:24:76:06:
        c3:0b:a4:46:b6:57:d7:b3:fe:c5:a8:fd:67:47:ac:76:
        cc:c9:2e:e0:06:bf:6b:ee:ef:c4:d0:65:7d:be:04:b4
    Fingerprint (SHA-256):
        9C:F2:AE:7C:B8:07:E6:D1:DD:78:D9:57:4B:88:3B:59:CD:10:3C:59:2F:0E:AB:93:F0:85:C1:D3:8D:00:7A:D5
    Fingerprint (SHA1):
        75:00:13:5C:ED:7A:4A:F9:26:0B:7A:89:AA:62:9F:6C:CE:90:0F:3B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11477: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11478: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154597 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11479: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11480: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11481: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11482: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154598   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11483: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11484: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11485: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11486: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154599   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11487: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11488: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11489: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11490: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154600   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11491: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11492: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11493: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154597 (0x1dee4565)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:17 2017
            Not After : Mon May 02 15:47:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:f8:39:4f:ff:2b:11:f7:a8:48:68:2c:65:67:f5:d4:
                    ef:5c:a6:a9:ea:63:a3:80:a3:ca:52:95:6f:d9:fc:aa:
                    ef:83:07:8f:a6:15:08:7e:52:63:d1:c0:43:75:57:df:
                    6e:d8:ef:2f:cc:ad:a6:d7:d2:10:a5:f3:dd:1d:99:41:
                    97:f7:bb:09:26:ab:47:8b:e4:c3:c3:b3:9c:63:f9:68:
                    71:9c:02:01:84:66:13:9d:06:28:f4:b2:e3:93:8b:27:
                    b9:b6:9b:b0:6e:f9:a3:99:c7:d3:64:27:59:4e:6f:37:
                    54:94:67:46:72:91:52:d8:a3:93:6b:ba:91:5c:ca:3a:
                    6c:19:33:a0:99:29:2a:1b:51:ba:d7:9d:24:02:2f:e9:
                    76:14:59:42:26:09:0d:c1:60:4b:29:2c:10:ef:74:01:
                    05:e4:f3:a9:02:60:67:c9:74:ab:04:14:fd:93:87:ce:
                    a4:c7:fd:75:ff:9d:cc:f6:ff:56:05:5f:47:8e:72:41:
                    07:b6:33:22:a6:6b:24:e0:8a:04:b7:f6:2f:f0:0a:a3:
                    95:12:37:65:82:5f:ad:39:af:e3:a2:da:1d:52:93:24:
                    1f:35:53:a2:92:8b:18:90:1e:b5:91:af:78:7e:fa:b9:
                    ea:54:e1:09:04:71:36:2f:81:f2:c4:db:f5:eb:8d:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:65:4c:19:59:88:5e:91:a6:a3:c0:23:fe:a2:cc:5d:
        5b:a6:1e:ee:05:10:62:79:ac:b5:05:8f:ff:45:68:98:
        dd:4a:a8:17:d0:cf:16:8e:96:28:2b:9f:0c:f9:20:75:
        df:5f:42:e3:89:91:c4:a2:21:4a:86:ea:b4:33:f1:28:
        62:7f:47:21:e7:6f:09:4c:70:7b:46:70:aa:fd:f4:aa:
        28:ea:45:18:d6:0b:75:da:b2:3c:c3:b3:67:6d:f6:f1:
        e1:e3:83:89:15:a9:70:41:74:8a:c9:ed:fc:54:ed:fb:
        8e:3f:e2:18:58:7e:ac:94:a6:e6:f0:fa:3f:7c:2a:43:
        83:20:80:d1:36:9d:b1:d3:e8:46:34:dc:ba:10:54:ce:
        52:ab:72:bd:b3:f6:93:50:a8:37:94:9e:3f:0f:2b:89:
        a6:bd:8e:d8:ab:e4:0a:dd:41:74:bd:4b:af:8b:40:c8:
        d1:41:37:51:f0:7e:1a:a3:2f:24:cf:f6:5b:9b:30:7a:
        02:99:5b:c3:c5:50:32:cd:27:c9:74:a9:9f:7e:1a:59:
        c9:3c:12:9d:07:ff:2a:6b:fb:9c:1d:f5:ea:83:75:46:
        e2:df:fa:3f:54:0e:04:80:04:8e:85:e5:aa:2d:36:e7:
        a6:f2:1e:f2:7e:c1:44:e4:00:69:4b:6a:6d:50:8d:5c
    Fingerprint (SHA-256):
        8A:DA:FC:DD:FA:3E:11:9F:8E:1F:29:33:20:A9:2B:60:E2:AD:98:0C:13:DE:4F:69:5C:C6:A6:59:26:78:63:22
    Fingerprint (SHA1):
        08:59:00:D4:6B:7C:96:8D:A5:5D:B6:FA:A4:E7:0C:1A:F5:79:88:01
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11494: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11495: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154598 (0x1dee4566)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:18 2017
            Not After : Mon May 02 15:47:18 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:86:df:47:23:95:c8:d9:1e:be:46:68:40:f6:b2:b4:
                    42:ec:d0:33:4b:a3:22:a4:34:fc:7a:2e:e6:de:67:9c:
                    70:38:6f:ae:c1:b3:a8:f2:12:09:6b:31:5d:d8:53:63:
                    df:2e:19:2d:24:b2:67:f5:9a:19:e3:9f:8e:90:2b:58:
                    18:1c:51:9e:a6:aa:6b:bc:75:75:32:f7:59:d3:8c:bb:
                    b0:f8:cd:29:5c:e3:df:a8:66:ee:43:8b:17:b2:92:3a:
                    e2:00:81:a2:e7:2e:d7:b9:c2:53:66:01:96:b5:62:2e:
                    cc:ba:b0:31:dd:29:4f:99:d4:c7:4d:6b:ec:1a:a4:89:
                    1b:29:a3:82:e2:d9:86:4c:bf:27:03:ee:74:cc:41:5e:
                    1b:5c:8c:97:14:7b:b5:42:d8:7c:80:0a:51:39:14:e5:
                    48:85:6e:00:39:24:13:1a:87:c4:23:23:f9:de:52:c7:
                    de:82:20:4a:c8:61:82:95:68:ea:ed:8d:1d:e1:c0:e8:
                    64:da:0f:d0:74:e7:70:2c:2e:a7:5c:a6:f0:03:65:c4:
                    03:53:26:72:90:80:33:29:c5:53:9f:7e:ab:63:c5:39:
                    03:5f:e3:d3:22:c5:b9:b6:92:a8:e0:88:e9:dd:3e:8a:
                    3f:73:b7:ce:16:3c:c1:06:2d:dd:9a:ef:ec:43:be:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:7c:56:11:13:83:49:26:bc:cd:46:57:9f:53:26:83:
        53:4f:db:ff:ec:38:c0:0f:2d:6f:03:9a:cc:c0:c4:2a:
        21:5c:61:2f:a0:cb:0d:d9:c3:f9:0c:69:a4:9d:e2:e8:
        70:af:d4:9d:85:c7:b3:99:5c:90:8d:f3:4c:1f:dd:42:
        6c:2b:3f:23:b1:c2:1f:df:d7:9a:d6:bb:aa:98:27:10:
        ba:00:37:5d:9d:8e:43:a4:80:e8:57:63:be:b9:57:40:
        a2:2b:9e:e9:15:aa:29:ac:5f:7b:62:a9:2a:7f:d3:04:
        2f:c9:50:d2:20:8f:ac:2e:18:e4:bf:95:1c:5e:1d:3e:
        f3:99:24:8a:c2:88:b8:32:cb:b1:24:4d:1b:63:96:14:
        38:f8:de:45:33:66:be:91:58:5d:ed:be:24:16:03:ac:
        a5:7a:b0:bd:86:94:33:ad:24:46:44:70:bb:6e:21:89:
        1b:1f:56:d6:95:74:af:71:5b:52:1a:9f:fe:de:f1:f2:
        0b:80:0d:35:50:ab:48:13:a1:32:81:2a:18:90:e8:f4:
        e0:17:c3:47:f5:32:27:cd:4b:42:3b:2b:82:6d:be:29:
        1a:50:0d:46:27:d6:fc:47:8d:72:5b:c7:62:7c:2c:df:
        61:0c:88:54:78:9e:56:60:00:12:f8:03:67:bb:c4:31
    Fingerprint (SHA-256):
        DE:A8:9C:A4:D2:82:65:7F:E8:40:D6:67:90:4E:E3:45:B5:D8:01:5E:DD:41:31:A5:4F:35:06:85:16:87:E7:29
    Fingerprint (SHA1):
        BA:D2:DF:7C:2C:A4:D6:D5:7E:47:BC:08:65:0F:AD:4B:6D:10:88:03
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11496: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11497: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154599 (0x1dee4567)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:47:18 2017
            Not After : Mon May 02 15:47:18 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:82:05:0c:8a:bc:f1:cc:b1:0f:be:51:ab:2d:0b:42:
                    f2:2e:75:47:b5:a1:e1:6e:13:53:ac:71:76:e4:55:70:
                    85:8d:09:9e:3c:3c:20:5f:5d:30:d9:b6:ef:7a:31:c3:
                    6f:da:80:ad:3a:7c:a9:4a:9f:39:3e:46:a8:b5:03:53:
                    55:e1:71:3e:38:23:18:63:13:3b:8d:43:ac:ad:83:f3:
                    28:35:78:90:18:4a:55:07:b7:52:22:f1:1a:aa:9c:a1:
                    77:01:90:d5:ff:7c:64:92:ed:4d:c7:bf:5c:7e:e6:63:
                    5f:b1:fe:67:33:38:63:82:e7:0b:ad:9f:b2:b3:c9:29:
                    53:34:c6:4c:c4:3d:dd:5f:20:d8:00:48:67:45:9f:87:
                    39:9e:a1:b3:0c:29:f2:bc:66:be:9c:d1:10:80:93:29:
                    f9:0b:92:73:64:86:31:60:ca:ef:2d:54:1c:10:40:6e:
                    33:88:9b:5f:19:96:d4:bd:9f:a1:87:49:00:62:df:c6:
                    66:7b:46:3b:5f:52:94:a6:8d:4c:38:e0:43:fb:0a:5a:
                    e0:6d:ab:6c:8e:7c:53:8a:5b:72:a8:78:77:ec:8f:6e:
                    54:9c:b1:d3:92:c2:1f:2d:21:df:82:7a:08:fe:60:73:
                    17:e9:3c:13:87:f5:4e:e1:78:eb:e0:a3:39:be:7c:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:b3:19:47:cc:16:0b:3d:2b:22:f5:b0:fc:6a:ff:ea:
        e9:e6:da:dc:09:22:91:d9:64:aa:6d:ba:12:8e:e1:94:
        75:07:9a:22:20:81:92:39:bf:62:5f:ac:db:c0:06:a4:
        a4:47:dc:98:3a:49:c8:de:cd:ea:cc:c6:9f:c6:89:6d:
        61:b6:2d:7b:79:34:2e:fc:40:0f:26:ca:a8:93:66:78:
        85:0e:0f:ab:d4:64:11:b6:0f:82:99:cc:e3:ed:9a:a7:
        07:54:67:f8:b1:e0:5f:8a:b5:1d:0c:5e:32:5f:ae:38:
        1c:7b:f9:71:48:cc:a5:af:69:1e:61:89:67:fc:57:09:
        42:05:da:b0:b1:35:01:e4:41:38:de:d2:e3:f6:91:37:
        2b:fa:b0:8b:cb:67:0d:43:89:b5:9c:93:47:6c:73:dc:
        57:a7:37:10:34:f1:05:28:ce:02:a8:2a:43:ec:a1:8b:
        12:1a:34:cb:bf:c0:a9:fd:ac:58:8f:d3:b5:82:54:f1:
        bd:c6:33:78:98:7b:d3:7c:d7:58:78:14:4a:6c:00:0c:
        fb:19:b2:c2:db:d0:b8:bd:8a:f6:0e:0a:86:de:b0:df:
        e6:4f:1a:1c:f8:06:00:44:39:ab:74:7b:58:e6:51:8f:
        bb:50:2d:d9:3e:c8:f6:21:c1:61:b9:42:fc:a0:3c:68
    Fingerprint (SHA-256):
        00:A4:91:1D:A7:8E:AC:EA:1C:B3:1F:19:86:05:DF:70:24:06:CB:6F:60:08:9F:A4:56:59:E1:AC:D5:44:66:92
    Fingerprint (SHA1):
        FF:7D:D8:1C:CD:08:33:26:8B:D6:9D:B6:DC:80:63:86:79:F7:14:2B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11498: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11499: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11500: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11501: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11502: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154597 (0x1dee4565)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:17 2017
            Not After : Mon May 02 15:47:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:f8:39:4f:ff:2b:11:f7:a8:48:68:2c:65:67:f5:d4:
                    ef:5c:a6:a9:ea:63:a3:80:a3:ca:52:95:6f:d9:fc:aa:
                    ef:83:07:8f:a6:15:08:7e:52:63:d1:c0:43:75:57:df:
                    6e:d8:ef:2f:cc:ad:a6:d7:d2:10:a5:f3:dd:1d:99:41:
                    97:f7:bb:09:26:ab:47:8b:e4:c3:c3:b3:9c:63:f9:68:
                    71:9c:02:01:84:66:13:9d:06:28:f4:b2:e3:93:8b:27:
                    b9:b6:9b:b0:6e:f9:a3:99:c7:d3:64:27:59:4e:6f:37:
                    54:94:67:46:72:91:52:d8:a3:93:6b:ba:91:5c:ca:3a:
                    6c:19:33:a0:99:29:2a:1b:51:ba:d7:9d:24:02:2f:e9:
                    76:14:59:42:26:09:0d:c1:60:4b:29:2c:10:ef:74:01:
                    05:e4:f3:a9:02:60:67:c9:74:ab:04:14:fd:93:87:ce:
                    a4:c7:fd:75:ff:9d:cc:f6:ff:56:05:5f:47:8e:72:41:
                    07:b6:33:22:a6:6b:24:e0:8a:04:b7:f6:2f:f0:0a:a3:
                    95:12:37:65:82:5f:ad:39:af:e3:a2:da:1d:52:93:24:
                    1f:35:53:a2:92:8b:18:90:1e:b5:91:af:78:7e:fa:b9:
                    ea:54:e1:09:04:71:36:2f:81:f2:c4:db:f5:eb:8d:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:65:4c:19:59:88:5e:91:a6:a3:c0:23:fe:a2:cc:5d:
        5b:a6:1e:ee:05:10:62:79:ac:b5:05:8f:ff:45:68:98:
        dd:4a:a8:17:d0:cf:16:8e:96:28:2b:9f:0c:f9:20:75:
        df:5f:42:e3:89:91:c4:a2:21:4a:86:ea:b4:33:f1:28:
        62:7f:47:21:e7:6f:09:4c:70:7b:46:70:aa:fd:f4:aa:
        28:ea:45:18:d6:0b:75:da:b2:3c:c3:b3:67:6d:f6:f1:
        e1:e3:83:89:15:a9:70:41:74:8a:c9:ed:fc:54:ed:fb:
        8e:3f:e2:18:58:7e:ac:94:a6:e6:f0:fa:3f:7c:2a:43:
        83:20:80:d1:36:9d:b1:d3:e8:46:34:dc:ba:10:54:ce:
        52:ab:72:bd:b3:f6:93:50:a8:37:94:9e:3f:0f:2b:89:
        a6:bd:8e:d8:ab:e4:0a:dd:41:74:bd:4b:af:8b:40:c8:
        d1:41:37:51:f0:7e:1a:a3:2f:24:cf:f6:5b:9b:30:7a:
        02:99:5b:c3:c5:50:32:cd:27:c9:74:a9:9f:7e:1a:59:
        c9:3c:12:9d:07:ff:2a:6b:fb:9c:1d:f5:ea:83:75:46:
        e2:df:fa:3f:54:0e:04:80:04:8e:85:e5:aa:2d:36:e7:
        a6:f2:1e:f2:7e:c1:44:e4:00:69:4b:6a:6d:50:8d:5c
    Fingerprint (SHA-256):
        8A:DA:FC:DD:FA:3E:11:9F:8E:1F:29:33:20:A9:2B:60:E2:AD:98:0C:13:DE:4F:69:5C:C6:A6:59:26:78:63:22
    Fingerprint (SHA1):
        08:59:00:D4:6B:7C:96:8D:A5:5D:B6:FA:A4:E7:0C:1A:F5:79:88:01
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11503: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11504: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154598 (0x1dee4566)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:18 2017
            Not After : Mon May 02 15:47:18 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:86:df:47:23:95:c8:d9:1e:be:46:68:40:f6:b2:b4:
                    42:ec:d0:33:4b:a3:22:a4:34:fc:7a:2e:e6:de:67:9c:
                    70:38:6f:ae:c1:b3:a8:f2:12:09:6b:31:5d:d8:53:63:
                    df:2e:19:2d:24:b2:67:f5:9a:19:e3:9f:8e:90:2b:58:
                    18:1c:51:9e:a6:aa:6b:bc:75:75:32:f7:59:d3:8c:bb:
                    b0:f8:cd:29:5c:e3:df:a8:66:ee:43:8b:17:b2:92:3a:
                    e2:00:81:a2:e7:2e:d7:b9:c2:53:66:01:96:b5:62:2e:
                    cc:ba:b0:31:dd:29:4f:99:d4:c7:4d:6b:ec:1a:a4:89:
                    1b:29:a3:82:e2:d9:86:4c:bf:27:03:ee:74:cc:41:5e:
                    1b:5c:8c:97:14:7b:b5:42:d8:7c:80:0a:51:39:14:e5:
                    48:85:6e:00:39:24:13:1a:87:c4:23:23:f9:de:52:c7:
                    de:82:20:4a:c8:61:82:95:68:ea:ed:8d:1d:e1:c0:e8:
                    64:da:0f:d0:74:e7:70:2c:2e:a7:5c:a6:f0:03:65:c4:
                    03:53:26:72:90:80:33:29:c5:53:9f:7e:ab:63:c5:39:
                    03:5f:e3:d3:22:c5:b9:b6:92:a8:e0:88:e9:dd:3e:8a:
                    3f:73:b7:ce:16:3c:c1:06:2d:dd:9a:ef:ec:43:be:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:7c:56:11:13:83:49:26:bc:cd:46:57:9f:53:26:83:
        53:4f:db:ff:ec:38:c0:0f:2d:6f:03:9a:cc:c0:c4:2a:
        21:5c:61:2f:a0:cb:0d:d9:c3:f9:0c:69:a4:9d:e2:e8:
        70:af:d4:9d:85:c7:b3:99:5c:90:8d:f3:4c:1f:dd:42:
        6c:2b:3f:23:b1:c2:1f:df:d7:9a:d6:bb:aa:98:27:10:
        ba:00:37:5d:9d:8e:43:a4:80:e8:57:63:be:b9:57:40:
        a2:2b:9e:e9:15:aa:29:ac:5f:7b:62:a9:2a:7f:d3:04:
        2f:c9:50:d2:20:8f:ac:2e:18:e4:bf:95:1c:5e:1d:3e:
        f3:99:24:8a:c2:88:b8:32:cb:b1:24:4d:1b:63:96:14:
        38:f8:de:45:33:66:be:91:58:5d:ed:be:24:16:03:ac:
        a5:7a:b0:bd:86:94:33:ad:24:46:44:70:bb:6e:21:89:
        1b:1f:56:d6:95:74:af:71:5b:52:1a:9f:fe:de:f1:f2:
        0b:80:0d:35:50:ab:48:13:a1:32:81:2a:18:90:e8:f4:
        e0:17:c3:47:f5:32:27:cd:4b:42:3b:2b:82:6d:be:29:
        1a:50:0d:46:27:d6:fc:47:8d:72:5b:c7:62:7c:2c:df:
        61:0c:88:54:78:9e:56:60:00:12:f8:03:67:bb:c4:31
    Fingerprint (SHA-256):
        DE:A8:9C:A4:D2:82:65:7F:E8:40:D6:67:90:4E:E3:45:B5:D8:01:5E:DD:41:31:A5:4F:35:06:85:16:87:E7:29
    Fingerprint (SHA1):
        BA:D2:DF:7C:2C:A4:D6:D5:7E:47:BC:08:65:0F:AD:4B:6D:10:88:03
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11505: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11506: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154599 (0x1dee4567)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:47:18 2017
            Not After : Mon May 02 15:47:18 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:82:05:0c:8a:bc:f1:cc:b1:0f:be:51:ab:2d:0b:42:
                    f2:2e:75:47:b5:a1:e1:6e:13:53:ac:71:76:e4:55:70:
                    85:8d:09:9e:3c:3c:20:5f:5d:30:d9:b6:ef:7a:31:c3:
                    6f:da:80:ad:3a:7c:a9:4a:9f:39:3e:46:a8:b5:03:53:
                    55:e1:71:3e:38:23:18:63:13:3b:8d:43:ac:ad:83:f3:
                    28:35:78:90:18:4a:55:07:b7:52:22:f1:1a:aa:9c:a1:
                    77:01:90:d5:ff:7c:64:92:ed:4d:c7:bf:5c:7e:e6:63:
                    5f:b1:fe:67:33:38:63:82:e7:0b:ad:9f:b2:b3:c9:29:
                    53:34:c6:4c:c4:3d:dd:5f:20:d8:00:48:67:45:9f:87:
                    39:9e:a1:b3:0c:29:f2:bc:66:be:9c:d1:10:80:93:29:
                    f9:0b:92:73:64:86:31:60:ca:ef:2d:54:1c:10:40:6e:
                    33:88:9b:5f:19:96:d4:bd:9f:a1:87:49:00:62:df:c6:
                    66:7b:46:3b:5f:52:94:a6:8d:4c:38:e0:43:fb:0a:5a:
                    e0:6d:ab:6c:8e:7c:53:8a:5b:72:a8:78:77:ec:8f:6e:
                    54:9c:b1:d3:92:c2:1f:2d:21:df:82:7a:08:fe:60:73:
                    17:e9:3c:13:87:f5:4e:e1:78:eb:e0:a3:39:be:7c:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:b3:19:47:cc:16:0b:3d:2b:22:f5:b0:fc:6a:ff:ea:
        e9:e6:da:dc:09:22:91:d9:64:aa:6d:ba:12:8e:e1:94:
        75:07:9a:22:20:81:92:39:bf:62:5f:ac:db:c0:06:a4:
        a4:47:dc:98:3a:49:c8:de:cd:ea:cc:c6:9f:c6:89:6d:
        61:b6:2d:7b:79:34:2e:fc:40:0f:26:ca:a8:93:66:78:
        85:0e:0f:ab:d4:64:11:b6:0f:82:99:cc:e3:ed:9a:a7:
        07:54:67:f8:b1:e0:5f:8a:b5:1d:0c:5e:32:5f:ae:38:
        1c:7b:f9:71:48:cc:a5:af:69:1e:61:89:67:fc:57:09:
        42:05:da:b0:b1:35:01:e4:41:38:de:d2:e3:f6:91:37:
        2b:fa:b0:8b:cb:67:0d:43:89:b5:9c:93:47:6c:73:dc:
        57:a7:37:10:34:f1:05:28:ce:02:a8:2a:43:ec:a1:8b:
        12:1a:34:cb:bf:c0:a9:fd:ac:58:8f:d3:b5:82:54:f1:
        bd:c6:33:78:98:7b:d3:7c:d7:58:78:14:4a:6c:00:0c:
        fb:19:b2:c2:db:d0:b8:bd:8a:f6:0e:0a:86:de:b0:df:
        e6:4f:1a:1c:f8:06:00:44:39:ab:74:7b:58:e6:51:8f:
        bb:50:2d:d9:3e:c8:f6:21:c1:61:b9:42:fc:a0:3c:68
    Fingerprint (SHA-256):
        00:A4:91:1D:A7:8E:AC:EA:1C:B3:1F:19:86:05:DF:70:24:06:CB:6F:60:08:9F:A4:56:59:E1:AC:D5:44:66:92
    Fingerprint (SHA1):
        FF:7D:D8:1C:CD:08:33:26:8B:D6:9D:B6:DC:80:63:86:79:F7:14:2B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11507: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11508: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11509: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154601 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11510: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11511: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11512: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11513: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154602   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11514: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11515: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11516: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11517: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154603   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11518: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11519: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11520: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11521: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154604   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11522: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11523: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11524: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11525: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154605   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11526: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11527: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11528: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154601 (0x1dee4569)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:21 2017
            Not After : Mon May 02 15:47:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:94:cf:0c:69:65:16:cc:64:79:1f:5b:1e:8e:30:63:
                    5a:08:48:20:58:71:3f:f7:41:ae:83:67:bc:75:22:b4:
                    10:99:f1:b8:e1:14:79:23:18:21:41:26:e3:ec:e4:90:
                    8a:c0:46:35:b9:96:df:cd:20:4d:11:0e:e1:48:44:67:
                    ed:ec:85:c9:56:11:4e:4a:81:97:d9:9c:12:b8:27:5c:
                    2c:f3:74:8d:45:78:27:2b:ee:b1:4f:3a:44:32:c1:b2:
                    40:ca:fb:6c:ac:0e:00:d3:4a:de:bb:a4:cb:a3:87:51:
                    3a:cf:a7:bd:4f:38:6b:b0:95:7d:2d:6c:32:cd:de:24:
                    8d:fb:cd:f5:82:87:83:ae:cd:12:b5:ab:2b:ee:f0:f2:
                    73:bb:a2:69:5f:c0:63:4d:4a:97:34:ca:62:20:bc:9f:
                    18:5c:5d:35:cb:7e:71:bc:7f:c2:1a:50:ba:8b:f4:33:
                    61:39:a3:6a:ed:d3:56:8a:e9:f5:d4:e3:23:fe:53:24:
                    64:3d:b1:72:d3:39:ce:43:4c:b4:66:63:7a:b0:a6:d8:
                    13:25:d8:db:42:cd:e3:33:38:fa:76:66:83:6c:c6:18:
                    d9:36:d4:00:45:72:47:29:39:b2:9e:31:94:5f:42:2a:
                    80:92:95:6d:d6:46:e9:f7:03:b8:15:4f:2a:f2:87:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:a1:7d:3c:70:9e:61:e8:3f:4e:1b:60:e0:dd:83:eb:
        38:c7:1b:36:52:28:a2:ce:55:a5:39:a1:e5:61:82:0c:
        5a:67:d1:01:2a:60:50:e9:9f:79:7f:87:cb:84:9d:38:
        bc:c7:da:6b:d8:7b:5b:27:12:c6:b5:b7:4d:19:6d:64:
        ab:16:59:2c:7e:a8:80:67:91:14:01:6f:22:f4:83:50:
        e7:25:df:1c:c0:ce:ad:fc:d1:2b:dc:c7:aa:b3:52:74:
        89:ab:ac:43:47:dd:f0:ae:92:bc:1b:05:a6:28:ad:b6:
        44:cc:dd:e5:5b:4d:ed:df:2f:a1:89:36:cb:63:8d:30:
        a5:84:83:96:65:d5:59:b2:11:a6:8b:b0:0f:1d:13:8a:
        46:3c:e5:a5:80:7a:d9:9a:44:b3:ac:33:74:74:3c:d8:
        b6:98:4d:11:7f:57:a2:53:05:a6:c2:2b:e4:c4:ce:8d:
        33:65:03:af:61:b5:71:0d:20:61:4b:dc:60:3b:42:25:
        ba:4a:7c:48:6b:89:2f:49:94:b4:56:50:ec:4b:ea:d1:
        08:b7:dd:b4:2a:ed:cd:a4:56:64:ea:3b:03:81:3b:f4:
        34:a7:d3:58:1a:b7:00:60:7e:35:3a:26:2f:9c:98:f8:
        9f:27:06:e7:b9:26:cf:b1:f3:34:8a:0d:7b:8f:22:c1
    Fingerprint (SHA-256):
        30:1D:B1:E3:4A:F7:52:E8:DF:25:67:31:DD:A2:3B:86:D1:CB:98:31:92:02:CD:2E:1A:47:99:1E:D3:4D:7D:AE
    Fingerprint (SHA1):
        95:87:E1:E3:C3:70:CE:43:C3:45:E6:42:76:30:BA:5B:52:24:A7:1A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11529: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11530: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154602 (0x1dee456a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:21 2017
            Not After : Mon May 02 15:47:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:dc:1f:74:9e:29:02:85:2c:96:82:4c:fd:ff:d3:a2:
                    bb:50:db:21:c1:52:30:62:da:58:4e:74:4c:a4:de:7c:
                    b0:28:71:7e:c3:c0:35:87:f5:fa:f1:2b:a0:69:3b:a8:
                    bd:6c:62:42:0e:1b:d3:60:ee:bf:0a:01:35:d6:10:5b:
                    8c:8a:1a:86:0b:8f:37:72:ae:8d:41:39:a3:e2:9f:14:
                    23:89:ed:60:ca:63:2f:d4:7c:4b:80:fc:0c:d5:02:f8:
                    53:51:ee:f2:b2:a1:46:da:c2:36:8b:4b:3a:4a:98:98:
                    6e:7d:cb:ac:d3:17:e3:2f:f3:3c:aa:12:9c:47:7c:d5:
                    42:b5:4e:41:62:f4:ea:d2:07:6b:13:63:5d:14:61:3a:
                    4a:b5:c8:5d:a7:f2:f7:6e:ee:12:84:7c:f1:08:25:5c:
                    dc:ad:1f:5c:28:c2:61:1d:fc:a3:65:9c:fd:14:08:5d:
                    0d:47:af:b1:24:3f:ab:d9:5e:22:39:d6:de:01:ee:4a:
                    ef:89:f3:9f:ea:ef:1a:09:c9:72:bd:bc:4a:18:85:17:
                    dc:6d:8f:4c:68:66:0b:ca:35:9d:25:e3:9c:6b:8c:94:
                    85:a3:9e:c3:96:a2:bb:45:d7:46:88:57:76:42:8e:40:
                    e7:17:91:79:ef:8d:13:69:1f:fe:37:11:c8:cd:b4:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:b2:7e:6e:d5:94:32:2c:d9:fd:e5:ff:bf:5f:e5:10:
        f3:67:34:d9:d9:b9:c7:b6:37:8f:41:ba:21:93:c5:49:
        b0:d3:b9:1e:74:d0:c5:45:72:7d:21:98:3c:07:8f:06:
        93:b0:91:75:2d:53:f1:5f:54:5a:67:11:c2:d9:ad:2f:
        8f:e9:70:a3:09:d4:81:84:86:69:15:c0:e7:58:3e:85:
        18:69:17:3d:dd:e8:96:05:34:e9:d7:58:de:f7:0c:33:
        d8:63:75:0e:2b:be:81:ed:71:74:1b:48:9c:7a:34:8f:
        8f:29:5f:fb:5a:e3:f3:11:5b:9e:d8:e0:a2:cb:e6:14:
        1e:70:5f:9a:2f:9f:09:d2:0a:ee:13:bf:63:59:4c:f9:
        45:23:15:ff:b9:b5:22:c7:e9:48:d7:f1:17:7e:0b:5f:
        2d:3b:88:e9:1d:02:d0:31:92:19:a6:d2:06:bb:32:a2:
        c6:65:cb:fc:06:3f:ea:9f:3c:f2:18:f4:04:b5:f0:ce:
        40:8e:c1:71:80:4f:87:35:e2:dd:ac:9f:a7:07:0c:19:
        d7:3d:b7:2c:fa:81:15:18:0a:f4:af:fd:e7:8c:b1:fd:
        9e:bf:13:a9:8b:4a:f1:8b:5d:64:7c:56:d3:c3:94:92:
        cc:5c:c7:a6:d6:dd:90:15:e4:94:33:a3:fc:9b:25:b4
    Fingerprint (SHA-256):
        DF:5C:13:6E:D1:A5:C3:E5:83:FC:7F:6A:C6:B9:54:95:92:E5:8B:F2:F4:B6:E6:E0:71:09:52:AF:9F:04:EE:C5
    Fingerprint (SHA1):
        64:C4:BB:0C:25:4E:F5:C9:C7:86:A1:9F:A6:3F:FB:C9:58:51:64:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11531: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11532: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154603 (0x1dee456b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:47:22 2017
            Not After : Mon May 02 15:47:22 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b6:20:77:18:46:8e:82:a4:ad:49:55:88:db:c9:d1:
                    c4:99:0c:8d:d3:ae:83:a6:c6:ba:fd:2c:af:4c:d7:0c:
                    2b:cf:ca:3c:99:74:dd:3a:3d:54:7a:0a:36:f1:b1:c9:
                    19:4d:e1:79:44:4c:81:d5:b9:b8:bc:a4:d9:4f:a9:d5:
                    ad:4b:e3:7b:d6:73:2e:67:9e:37:81:5c:67:07:5d:f7:
                    99:d3:11:0d:f1:08:83:9d:cb:37:2b:b2:71:b1:ed:0b:
                    e6:e6:3d:d7:d7:f8:b6:49:60:6d:17:03:cb:f3:57:7f:
                    b2:77:cc:e6:46:0a:a5:48:52:70:5c:74:3f:24:86:6d:
                    af:c3:e3:64:01:5e:0a:c8:7a:a4:ab:5f:e6:51:a5:c4:
                    67:b8:73:c8:7c:af:64:67:1f:04:26:5b:5f:aa:6e:67:
                    a9:0f:48:df:d3:1b:ea:9d:4a:2d:e2:75:2b:5d:db:67:
                    83:f6:ad:3e:b4:e3:d8:c0:1b:4b:47:49:da:9c:bc:b5:
                    4d:e8:2c:56:7b:49:82:c2:9d:8c:49:41:17:a9:c1:06:
                    fc:b8:58:03:ab:0a:01:a7:8b:11:aa:82:e7:c5:35:79:
                    3d:36:83:46:6e:d4:6a:15:36:53:9d:13:56:d6:11:43:
                    a9:e3:60:2f:b1:17:3d:20:23:13:44:f2:8b:8e:f7:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:9a:b1:1f:bf:ef:f4:d6:c2:b2:39:42:fb:ef:ef:ce:
        fa:93:d5:6f:4b:49:02:e2:a3:4e:f6:93:22:ba:d7:e3:
        1f:92:49:41:93:03:43:21:49:5e:ab:99:28:a8:a8:13:
        9f:c7:9a:79:41:6e:27:37:38:d0:6d:62:d7:d2:66:37:
        bc:73:fe:ed:00:f0:09:49:bc:07:39:5c:6b:ba:e9:28:
        44:d6:93:9d:03:dd:3e:e0:45:95:cb:30:fc:60:6c:03:
        fc:51:bf:8b:b6:9f:3d:f5:ec:4d:1d:16:1a:f9:5f:41:
        05:41:fe:e3:34:f9:dc:d1:5d:36:03:ed:82:54:85:d8:
        28:97:d8:b2:e0:42:24:04:08:2b:4b:c7:87:c1:e3:ba:
        b1:be:2e:87:19:a9:8a:f0:28:fb:74:16:2d:22:fc:1d:
        80:1a:3d:10:3d:2a:9e:2a:55:25:d6:cd:40:80:04:cd:
        9b:ca:69:6f:41:4e:1d:11:6e:ae:b6:64:f3:70:2f:5b:
        79:f1:a0:2d:4e:7a:52:83:72:37:fa:6a:2f:60:38:8c:
        b6:f4:97:f6:8e:88:a5:1e:58:1f:c6:4e:da:9d:db:f4:
        e7:98:57:78:91:12:95:a1:96:bd:fe:ed:88:ff:e3:63:
        71:36:0f:1e:de:43:fb:b1:08:57:ab:a1:35:87:1e:78
    Fingerprint (SHA-256):
        13:52:20:C7:76:B4:0D:61:C3:4B:D1:F9:89:AC:FD:4E:BA:55:B7:F5:56:B6:52:EC:22:36:99:A4:93:9E:64:92
    Fingerprint (SHA1):
        39:66:6A:0B:EA:6A:1D:C3:E8:EE:0E:C3:94:9E:AA:7F:CC:C4:C6:39
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11533: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11534: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11535: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11536: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11537: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154601 (0x1dee4569)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:21 2017
            Not After : Mon May 02 15:47:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:94:cf:0c:69:65:16:cc:64:79:1f:5b:1e:8e:30:63:
                    5a:08:48:20:58:71:3f:f7:41:ae:83:67:bc:75:22:b4:
                    10:99:f1:b8:e1:14:79:23:18:21:41:26:e3:ec:e4:90:
                    8a:c0:46:35:b9:96:df:cd:20:4d:11:0e:e1:48:44:67:
                    ed:ec:85:c9:56:11:4e:4a:81:97:d9:9c:12:b8:27:5c:
                    2c:f3:74:8d:45:78:27:2b:ee:b1:4f:3a:44:32:c1:b2:
                    40:ca:fb:6c:ac:0e:00:d3:4a:de:bb:a4:cb:a3:87:51:
                    3a:cf:a7:bd:4f:38:6b:b0:95:7d:2d:6c:32:cd:de:24:
                    8d:fb:cd:f5:82:87:83:ae:cd:12:b5:ab:2b:ee:f0:f2:
                    73:bb:a2:69:5f:c0:63:4d:4a:97:34:ca:62:20:bc:9f:
                    18:5c:5d:35:cb:7e:71:bc:7f:c2:1a:50:ba:8b:f4:33:
                    61:39:a3:6a:ed:d3:56:8a:e9:f5:d4:e3:23:fe:53:24:
                    64:3d:b1:72:d3:39:ce:43:4c:b4:66:63:7a:b0:a6:d8:
                    13:25:d8:db:42:cd:e3:33:38:fa:76:66:83:6c:c6:18:
                    d9:36:d4:00:45:72:47:29:39:b2:9e:31:94:5f:42:2a:
                    80:92:95:6d:d6:46:e9:f7:03:b8:15:4f:2a:f2:87:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:a1:7d:3c:70:9e:61:e8:3f:4e:1b:60:e0:dd:83:eb:
        38:c7:1b:36:52:28:a2:ce:55:a5:39:a1:e5:61:82:0c:
        5a:67:d1:01:2a:60:50:e9:9f:79:7f:87:cb:84:9d:38:
        bc:c7:da:6b:d8:7b:5b:27:12:c6:b5:b7:4d:19:6d:64:
        ab:16:59:2c:7e:a8:80:67:91:14:01:6f:22:f4:83:50:
        e7:25:df:1c:c0:ce:ad:fc:d1:2b:dc:c7:aa:b3:52:74:
        89:ab:ac:43:47:dd:f0:ae:92:bc:1b:05:a6:28:ad:b6:
        44:cc:dd:e5:5b:4d:ed:df:2f:a1:89:36:cb:63:8d:30:
        a5:84:83:96:65:d5:59:b2:11:a6:8b:b0:0f:1d:13:8a:
        46:3c:e5:a5:80:7a:d9:9a:44:b3:ac:33:74:74:3c:d8:
        b6:98:4d:11:7f:57:a2:53:05:a6:c2:2b:e4:c4:ce:8d:
        33:65:03:af:61:b5:71:0d:20:61:4b:dc:60:3b:42:25:
        ba:4a:7c:48:6b:89:2f:49:94:b4:56:50:ec:4b:ea:d1:
        08:b7:dd:b4:2a:ed:cd:a4:56:64:ea:3b:03:81:3b:f4:
        34:a7:d3:58:1a:b7:00:60:7e:35:3a:26:2f:9c:98:f8:
        9f:27:06:e7:b9:26:cf:b1:f3:34:8a:0d:7b:8f:22:c1
    Fingerprint (SHA-256):
        30:1D:B1:E3:4A:F7:52:E8:DF:25:67:31:DD:A2:3B:86:D1:CB:98:31:92:02:CD:2E:1A:47:99:1E:D3:4D:7D:AE
    Fingerprint (SHA1):
        95:87:E1:E3:C3:70:CE:43:C3:45:E6:42:76:30:BA:5B:52:24:A7:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11538: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11539: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154602 (0x1dee456a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:21 2017
            Not After : Mon May 02 15:47:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:dc:1f:74:9e:29:02:85:2c:96:82:4c:fd:ff:d3:a2:
                    bb:50:db:21:c1:52:30:62:da:58:4e:74:4c:a4:de:7c:
                    b0:28:71:7e:c3:c0:35:87:f5:fa:f1:2b:a0:69:3b:a8:
                    bd:6c:62:42:0e:1b:d3:60:ee:bf:0a:01:35:d6:10:5b:
                    8c:8a:1a:86:0b:8f:37:72:ae:8d:41:39:a3:e2:9f:14:
                    23:89:ed:60:ca:63:2f:d4:7c:4b:80:fc:0c:d5:02:f8:
                    53:51:ee:f2:b2:a1:46:da:c2:36:8b:4b:3a:4a:98:98:
                    6e:7d:cb:ac:d3:17:e3:2f:f3:3c:aa:12:9c:47:7c:d5:
                    42:b5:4e:41:62:f4:ea:d2:07:6b:13:63:5d:14:61:3a:
                    4a:b5:c8:5d:a7:f2:f7:6e:ee:12:84:7c:f1:08:25:5c:
                    dc:ad:1f:5c:28:c2:61:1d:fc:a3:65:9c:fd:14:08:5d:
                    0d:47:af:b1:24:3f:ab:d9:5e:22:39:d6:de:01:ee:4a:
                    ef:89:f3:9f:ea:ef:1a:09:c9:72:bd:bc:4a:18:85:17:
                    dc:6d:8f:4c:68:66:0b:ca:35:9d:25:e3:9c:6b:8c:94:
                    85:a3:9e:c3:96:a2:bb:45:d7:46:88:57:76:42:8e:40:
                    e7:17:91:79:ef:8d:13:69:1f:fe:37:11:c8:cd:b4:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:b2:7e:6e:d5:94:32:2c:d9:fd:e5:ff:bf:5f:e5:10:
        f3:67:34:d9:d9:b9:c7:b6:37:8f:41:ba:21:93:c5:49:
        b0:d3:b9:1e:74:d0:c5:45:72:7d:21:98:3c:07:8f:06:
        93:b0:91:75:2d:53:f1:5f:54:5a:67:11:c2:d9:ad:2f:
        8f:e9:70:a3:09:d4:81:84:86:69:15:c0:e7:58:3e:85:
        18:69:17:3d:dd:e8:96:05:34:e9:d7:58:de:f7:0c:33:
        d8:63:75:0e:2b:be:81:ed:71:74:1b:48:9c:7a:34:8f:
        8f:29:5f:fb:5a:e3:f3:11:5b:9e:d8:e0:a2:cb:e6:14:
        1e:70:5f:9a:2f:9f:09:d2:0a:ee:13:bf:63:59:4c:f9:
        45:23:15:ff:b9:b5:22:c7:e9:48:d7:f1:17:7e:0b:5f:
        2d:3b:88:e9:1d:02:d0:31:92:19:a6:d2:06:bb:32:a2:
        c6:65:cb:fc:06:3f:ea:9f:3c:f2:18:f4:04:b5:f0:ce:
        40:8e:c1:71:80:4f:87:35:e2:dd:ac:9f:a7:07:0c:19:
        d7:3d:b7:2c:fa:81:15:18:0a:f4:af:fd:e7:8c:b1:fd:
        9e:bf:13:a9:8b:4a:f1:8b:5d:64:7c:56:d3:c3:94:92:
        cc:5c:c7:a6:d6:dd:90:15:e4:94:33:a3:fc:9b:25:b4
    Fingerprint (SHA-256):
        DF:5C:13:6E:D1:A5:C3:E5:83:FC:7F:6A:C6:B9:54:95:92:E5:8B:F2:F4:B6:E6:E0:71:09:52:AF:9F:04:EE:C5
    Fingerprint (SHA1):
        64:C4:BB:0C:25:4E:F5:C9:C7:86:A1:9F:A6:3F:FB:C9:58:51:64:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11540: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11541: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154603 (0x1dee456b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:47:22 2017
            Not After : Mon May 02 15:47:22 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b6:20:77:18:46:8e:82:a4:ad:49:55:88:db:c9:d1:
                    c4:99:0c:8d:d3:ae:83:a6:c6:ba:fd:2c:af:4c:d7:0c:
                    2b:cf:ca:3c:99:74:dd:3a:3d:54:7a:0a:36:f1:b1:c9:
                    19:4d:e1:79:44:4c:81:d5:b9:b8:bc:a4:d9:4f:a9:d5:
                    ad:4b:e3:7b:d6:73:2e:67:9e:37:81:5c:67:07:5d:f7:
                    99:d3:11:0d:f1:08:83:9d:cb:37:2b:b2:71:b1:ed:0b:
                    e6:e6:3d:d7:d7:f8:b6:49:60:6d:17:03:cb:f3:57:7f:
                    b2:77:cc:e6:46:0a:a5:48:52:70:5c:74:3f:24:86:6d:
                    af:c3:e3:64:01:5e:0a:c8:7a:a4:ab:5f:e6:51:a5:c4:
                    67:b8:73:c8:7c:af:64:67:1f:04:26:5b:5f:aa:6e:67:
                    a9:0f:48:df:d3:1b:ea:9d:4a:2d:e2:75:2b:5d:db:67:
                    83:f6:ad:3e:b4:e3:d8:c0:1b:4b:47:49:da:9c:bc:b5:
                    4d:e8:2c:56:7b:49:82:c2:9d:8c:49:41:17:a9:c1:06:
                    fc:b8:58:03:ab:0a:01:a7:8b:11:aa:82:e7:c5:35:79:
                    3d:36:83:46:6e:d4:6a:15:36:53:9d:13:56:d6:11:43:
                    a9:e3:60:2f:b1:17:3d:20:23:13:44:f2:8b:8e:f7:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:9a:b1:1f:bf:ef:f4:d6:c2:b2:39:42:fb:ef:ef:ce:
        fa:93:d5:6f:4b:49:02:e2:a3:4e:f6:93:22:ba:d7:e3:
        1f:92:49:41:93:03:43:21:49:5e:ab:99:28:a8:a8:13:
        9f:c7:9a:79:41:6e:27:37:38:d0:6d:62:d7:d2:66:37:
        bc:73:fe:ed:00:f0:09:49:bc:07:39:5c:6b:ba:e9:28:
        44:d6:93:9d:03:dd:3e:e0:45:95:cb:30:fc:60:6c:03:
        fc:51:bf:8b:b6:9f:3d:f5:ec:4d:1d:16:1a:f9:5f:41:
        05:41:fe:e3:34:f9:dc:d1:5d:36:03:ed:82:54:85:d8:
        28:97:d8:b2:e0:42:24:04:08:2b:4b:c7:87:c1:e3:ba:
        b1:be:2e:87:19:a9:8a:f0:28:fb:74:16:2d:22:fc:1d:
        80:1a:3d:10:3d:2a:9e:2a:55:25:d6:cd:40:80:04:cd:
        9b:ca:69:6f:41:4e:1d:11:6e:ae:b6:64:f3:70:2f:5b:
        79:f1:a0:2d:4e:7a:52:83:72:37:fa:6a:2f:60:38:8c:
        b6:f4:97:f6:8e:88:a5:1e:58:1f:c6:4e:da:9d:db:f4:
        e7:98:57:78:91:12:95:a1:96:bd:fe:ed:88:ff:e3:63:
        71:36:0f:1e:de:43:fb:b1:08:57:ab:a1:35:87:1e:78
    Fingerprint (SHA-256):
        13:52:20:C7:76:B4:0D:61:C3:4B:D1:F9:89:AC:FD:4E:BA:55:B7:F5:56:B6:52:EC:22:36:99:A4:93:9E:64:92
    Fingerprint (SHA1):
        39:66:6A:0B:EA:6A:1D:C3:E8:EE:0E:C3:94:9E:AA:7F:CC:C4:C6:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11542: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11543: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154601 (0x1dee4569)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:21 2017
            Not After : Mon May 02 15:47:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:94:cf:0c:69:65:16:cc:64:79:1f:5b:1e:8e:30:63:
                    5a:08:48:20:58:71:3f:f7:41:ae:83:67:bc:75:22:b4:
                    10:99:f1:b8:e1:14:79:23:18:21:41:26:e3:ec:e4:90:
                    8a:c0:46:35:b9:96:df:cd:20:4d:11:0e:e1:48:44:67:
                    ed:ec:85:c9:56:11:4e:4a:81:97:d9:9c:12:b8:27:5c:
                    2c:f3:74:8d:45:78:27:2b:ee:b1:4f:3a:44:32:c1:b2:
                    40:ca:fb:6c:ac:0e:00:d3:4a:de:bb:a4:cb:a3:87:51:
                    3a:cf:a7:bd:4f:38:6b:b0:95:7d:2d:6c:32:cd:de:24:
                    8d:fb:cd:f5:82:87:83:ae:cd:12:b5:ab:2b:ee:f0:f2:
                    73:bb:a2:69:5f:c0:63:4d:4a:97:34:ca:62:20:bc:9f:
                    18:5c:5d:35:cb:7e:71:bc:7f:c2:1a:50:ba:8b:f4:33:
                    61:39:a3:6a:ed:d3:56:8a:e9:f5:d4:e3:23:fe:53:24:
                    64:3d:b1:72:d3:39:ce:43:4c:b4:66:63:7a:b0:a6:d8:
                    13:25:d8:db:42:cd:e3:33:38:fa:76:66:83:6c:c6:18:
                    d9:36:d4:00:45:72:47:29:39:b2:9e:31:94:5f:42:2a:
                    80:92:95:6d:d6:46:e9:f7:03:b8:15:4f:2a:f2:87:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:a1:7d:3c:70:9e:61:e8:3f:4e:1b:60:e0:dd:83:eb:
        38:c7:1b:36:52:28:a2:ce:55:a5:39:a1:e5:61:82:0c:
        5a:67:d1:01:2a:60:50:e9:9f:79:7f:87:cb:84:9d:38:
        bc:c7:da:6b:d8:7b:5b:27:12:c6:b5:b7:4d:19:6d:64:
        ab:16:59:2c:7e:a8:80:67:91:14:01:6f:22:f4:83:50:
        e7:25:df:1c:c0:ce:ad:fc:d1:2b:dc:c7:aa:b3:52:74:
        89:ab:ac:43:47:dd:f0:ae:92:bc:1b:05:a6:28:ad:b6:
        44:cc:dd:e5:5b:4d:ed:df:2f:a1:89:36:cb:63:8d:30:
        a5:84:83:96:65:d5:59:b2:11:a6:8b:b0:0f:1d:13:8a:
        46:3c:e5:a5:80:7a:d9:9a:44:b3:ac:33:74:74:3c:d8:
        b6:98:4d:11:7f:57:a2:53:05:a6:c2:2b:e4:c4:ce:8d:
        33:65:03:af:61:b5:71:0d:20:61:4b:dc:60:3b:42:25:
        ba:4a:7c:48:6b:89:2f:49:94:b4:56:50:ec:4b:ea:d1:
        08:b7:dd:b4:2a:ed:cd:a4:56:64:ea:3b:03:81:3b:f4:
        34:a7:d3:58:1a:b7:00:60:7e:35:3a:26:2f:9c:98:f8:
        9f:27:06:e7:b9:26:cf:b1:f3:34:8a:0d:7b:8f:22:c1
    Fingerprint (SHA-256):
        30:1D:B1:E3:4A:F7:52:E8:DF:25:67:31:DD:A2:3B:86:D1:CB:98:31:92:02:CD:2E:1A:47:99:1E:D3:4D:7D:AE
    Fingerprint (SHA1):
        95:87:E1:E3:C3:70:CE:43:C3:45:E6:42:76:30:BA:5B:52:24:A7:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11544: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154601 (0x1dee4569)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:21 2017
            Not After : Mon May 02 15:47:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:94:cf:0c:69:65:16:cc:64:79:1f:5b:1e:8e:30:63:
                    5a:08:48:20:58:71:3f:f7:41:ae:83:67:bc:75:22:b4:
                    10:99:f1:b8:e1:14:79:23:18:21:41:26:e3:ec:e4:90:
                    8a:c0:46:35:b9:96:df:cd:20:4d:11:0e:e1:48:44:67:
                    ed:ec:85:c9:56:11:4e:4a:81:97:d9:9c:12:b8:27:5c:
                    2c:f3:74:8d:45:78:27:2b:ee:b1:4f:3a:44:32:c1:b2:
                    40:ca:fb:6c:ac:0e:00:d3:4a:de:bb:a4:cb:a3:87:51:
                    3a:cf:a7:bd:4f:38:6b:b0:95:7d:2d:6c:32:cd:de:24:
                    8d:fb:cd:f5:82:87:83:ae:cd:12:b5:ab:2b:ee:f0:f2:
                    73:bb:a2:69:5f:c0:63:4d:4a:97:34:ca:62:20:bc:9f:
                    18:5c:5d:35:cb:7e:71:bc:7f:c2:1a:50:ba:8b:f4:33:
                    61:39:a3:6a:ed:d3:56:8a:e9:f5:d4:e3:23:fe:53:24:
                    64:3d:b1:72:d3:39:ce:43:4c:b4:66:63:7a:b0:a6:d8:
                    13:25:d8:db:42:cd:e3:33:38:fa:76:66:83:6c:c6:18:
                    d9:36:d4:00:45:72:47:29:39:b2:9e:31:94:5f:42:2a:
                    80:92:95:6d:d6:46:e9:f7:03:b8:15:4f:2a:f2:87:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:a1:7d:3c:70:9e:61:e8:3f:4e:1b:60:e0:dd:83:eb:
        38:c7:1b:36:52:28:a2:ce:55:a5:39:a1:e5:61:82:0c:
        5a:67:d1:01:2a:60:50:e9:9f:79:7f:87:cb:84:9d:38:
        bc:c7:da:6b:d8:7b:5b:27:12:c6:b5:b7:4d:19:6d:64:
        ab:16:59:2c:7e:a8:80:67:91:14:01:6f:22:f4:83:50:
        e7:25:df:1c:c0:ce:ad:fc:d1:2b:dc:c7:aa:b3:52:74:
        89:ab:ac:43:47:dd:f0:ae:92:bc:1b:05:a6:28:ad:b6:
        44:cc:dd:e5:5b:4d:ed:df:2f:a1:89:36:cb:63:8d:30:
        a5:84:83:96:65:d5:59:b2:11:a6:8b:b0:0f:1d:13:8a:
        46:3c:e5:a5:80:7a:d9:9a:44:b3:ac:33:74:74:3c:d8:
        b6:98:4d:11:7f:57:a2:53:05:a6:c2:2b:e4:c4:ce:8d:
        33:65:03:af:61:b5:71:0d:20:61:4b:dc:60:3b:42:25:
        ba:4a:7c:48:6b:89:2f:49:94:b4:56:50:ec:4b:ea:d1:
        08:b7:dd:b4:2a:ed:cd:a4:56:64:ea:3b:03:81:3b:f4:
        34:a7:d3:58:1a:b7:00:60:7e:35:3a:26:2f:9c:98:f8:
        9f:27:06:e7:b9:26:cf:b1:f3:34:8a:0d:7b:8f:22:c1
    Fingerprint (SHA-256):
        30:1D:B1:E3:4A:F7:52:E8:DF:25:67:31:DD:A2:3B:86:D1:CB:98:31:92:02:CD:2E:1A:47:99:1E:D3:4D:7D:AE
    Fingerprint (SHA1):
        95:87:E1:E3:C3:70:CE:43:C3:45:E6:42:76:30:BA:5B:52:24:A7:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11545: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154602 (0x1dee456a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:21 2017
            Not After : Mon May 02 15:47:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:dc:1f:74:9e:29:02:85:2c:96:82:4c:fd:ff:d3:a2:
                    bb:50:db:21:c1:52:30:62:da:58:4e:74:4c:a4:de:7c:
                    b0:28:71:7e:c3:c0:35:87:f5:fa:f1:2b:a0:69:3b:a8:
                    bd:6c:62:42:0e:1b:d3:60:ee:bf:0a:01:35:d6:10:5b:
                    8c:8a:1a:86:0b:8f:37:72:ae:8d:41:39:a3:e2:9f:14:
                    23:89:ed:60:ca:63:2f:d4:7c:4b:80:fc:0c:d5:02:f8:
                    53:51:ee:f2:b2:a1:46:da:c2:36:8b:4b:3a:4a:98:98:
                    6e:7d:cb:ac:d3:17:e3:2f:f3:3c:aa:12:9c:47:7c:d5:
                    42:b5:4e:41:62:f4:ea:d2:07:6b:13:63:5d:14:61:3a:
                    4a:b5:c8:5d:a7:f2:f7:6e:ee:12:84:7c:f1:08:25:5c:
                    dc:ad:1f:5c:28:c2:61:1d:fc:a3:65:9c:fd:14:08:5d:
                    0d:47:af:b1:24:3f:ab:d9:5e:22:39:d6:de:01:ee:4a:
                    ef:89:f3:9f:ea:ef:1a:09:c9:72:bd:bc:4a:18:85:17:
                    dc:6d:8f:4c:68:66:0b:ca:35:9d:25:e3:9c:6b:8c:94:
                    85:a3:9e:c3:96:a2:bb:45:d7:46:88:57:76:42:8e:40:
                    e7:17:91:79:ef:8d:13:69:1f:fe:37:11:c8:cd:b4:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:b2:7e:6e:d5:94:32:2c:d9:fd:e5:ff:bf:5f:e5:10:
        f3:67:34:d9:d9:b9:c7:b6:37:8f:41:ba:21:93:c5:49:
        b0:d3:b9:1e:74:d0:c5:45:72:7d:21:98:3c:07:8f:06:
        93:b0:91:75:2d:53:f1:5f:54:5a:67:11:c2:d9:ad:2f:
        8f:e9:70:a3:09:d4:81:84:86:69:15:c0:e7:58:3e:85:
        18:69:17:3d:dd:e8:96:05:34:e9:d7:58:de:f7:0c:33:
        d8:63:75:0e:2b:be:81:ed:71:74:1b:48:9c:7a:34:8f:
        8f:29:5f:fb:5a:e3:f3:11:5b:9e:d8:e0:a2:cb:e6:14:
        1e:70:5f:9a:2f:9f:09:d2:0a:ee:13:bf:63:59:4c:f9:
        45:23:15:ff:b9:b5:22:c7:e9:48:d7:f1:17:7e:0b:5f:
        2d:3b:88:e9:1d:02:d0:31:92:19:a6:d2:06:bb:32:a2:
        c6:65:cb:fc:06:3f:ea:9f:3c:f2:18:f4:04:b5:f0:ce:
        40:8e:c1:71:80:4f:87:35:e2:dd:ac:9f:a7:07:0c:19:
        d7:3d:b7:2c:fa:81:15:18:0a:f4:af:fd:e7:8c:b1:fd:
        9e:bf:13:a9:8b:4a:f1:8b:5d:64:7c:56:d3:c3:94:92:
        cc:5c:c7:a6:d6:dd:90:15:e4:94:33:a3:fc:9b:25:b4
    Fingerprint (SHA-256):
        DF:5C:13:6E:D1:A5:C3:E5:83:FC:7F:6A:C6:B9:54:95:92:E5:8B:F2:F4:B6:E6:E0:71:09:52:AF:9F:04:EE:C5
    Fingerprint (SHA1):
        64:C4:BB:0C:25:4E:F5:C9:C7:86:A1:9F:A6:3F:FB:C9:58:51:64:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11546: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154602 (0x1dee456a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:21 2017
            Not After : Mon May 02 15:47:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:dc:1f:74:9e:29:02:85:2c:96:82:4c:fd:ff:d3:a2:
                    bb:50:db:21:c1:52:30:62:da:58:4e:74:4c:a4:de:7c:
                    b0:28:71:7e:c3:c0:35:87:f5:fa:f1:2b:a0:69:3b:a8:
                    bd:6c:62:42:0e:1b:d3:60:ee:bf:0a:01:35:d6:10:5b:
                    8c:8a:1a:86:0b:8f:37:72:ae:8d:41:39:a3:e2:9f:14:
                    23:89:ed:60:ca:63:2f:d4:7c:4b:80:fc:0c:d5:02:f8:
                    53:51:ee:f2:b2:a1:46:da:c2:36:8b:4b:3a:4a:98:98:
                    6e:7d:cb:ac:d3:17:e3:2f:f3:3c:aa:12:9c:47:7c:d5:
                    42:b5:4e:41:62:f4:ea:d2:07:6b:13:63:5d:14:61:3a:
                    4a:b5:c8:5d:a7:f2:f7:6e:ee:12:84:7c:f1:08:25:5c:
                    dc:ad:1f:5c:28:c2:61:1d:fc:a3:65:9c:fd:14:08:5d:
                    0d:47:af:b1:24:3f:ab:d9:5e:22:39:d6:de:01:ee:4a:
                    ef:89:f3:9f:ea:ef:1a:09:c9:72:bd:bc:4a:18:85:17:
                    dc:6d:8f:4c:68:66:0b:ca:35:9d:25:e3:9c:6b:8c:94:
                    85:a3:9e:c3:96:a2:bb:45:d7:46:88:57:76:42:8e:40:
                    e7:17:91:79:ef:8d:13:69:1f:fe:37:11:c8:cd:b4:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:b2:7e:6e:d5:94:32:2c:d9:fd:e5:ff:bf:5f:e5:10:
        f3:67:34:d9:d9:b9:c7:b6:37:8f:41:ba:21:93:c5:49:
        b0:d3:b9:1e:74:d0:c5:45:72:7d:21:98:3c:07:8f:06:
        93:b0:91:75:2d:53:f1:5f:54:5a:67:11:c2:d9:ad:2f:
        8f:e9:70:a3:09:d4:81:84:86:69:15:c0:e7:58:3e:85:
        18:69:17:3d:dd:e8:96:05:34:e9:d7:58:de:f7:0c:33:
        d8:63:75:0e:2b:be:81:ed:71:74:1b:48:9c:7a:34:8f:
        8f:29:5f:fb:5a:e3:f3:11:5b:9e:d8:e0:a2:cb:e6:14:
        1e:70:5f:9a:2f:9f:09:d2:0a:ee:13:bf:63:59:4c:f9:
        45:23:15:ff:b9:b5:22:c7:e9:48:d7:f1:17:7e:0b:5f:
        2d:3b:88:e9:1d:02:d0:31:92:19:a6:d2:06:bb:32:a2:
        c6:65:cb:fc:06:3f:ea:9f:3c:f2:18:f4:04:b5:f0:ce:
        40:8e:c1:71:80:4f:87:35:e2:dd:ac:9f:a7:07:0c:19:
        d7:3d:b7:2c:fa:81:15:18:0a:f4:af:fd:e7:8c:b1:fd:
        9e:bf:13:a9:8b:4a:f1:8b:5d:64:7c:56:d3:c3:94:92:
        cc:5c:c7:a6:d6:dd:90:15:e4:94:33:a3:fc:9b:25:b4
    Fingerprint (SHA-256):
        DF:5C:13:6E:D1:A5:C3:E5:83:FC:7F:6A:C6:B9:54:95:92:E5:8B:F2:F4:B6:E6:E0:71:09:52:AF:9F:04:EE:C5
    Fingerprint (SHA1):
        64:C4:BB:0C:25:4E:F5:C9:C7:86:A1:9F:A6:3F:FB:C9:58:51:64:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11547: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154603 (0x1dee456b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:47:22 2017
            Not After : Mon May 02 15:47:22 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b6:20:77:18:46:8e:82:a4:ad:49:55:88:db:c9:d1:
                    c4:99:0c:8d:d3:ae:83:a6:c6:ba:fd:2c:af:4c:d7:0c:
                    2b:cf:ca:3c:99:74:dd:3a:3d:54:7a:0a:36:f1:b1:c9:
                    19:4d:e1:79:44:4c:81:d5:b9:b8:bc:a4:d9:4f:a9:d5:
                    ad:4b:e3:7b:d6:73:2e:67:9e:37:81:5c:67:07:5d:f7:
                    99:d3:11:0d:f1:08:83:9d:cb:37:2b:b2:71:b1:ed:0b:
                    e6:e6:3d:d7:d7:f8:b6:49:60:6d:17:03:cb:f3:57:7f:
                    b2:77:cc:e6:46:0a:a5:48:52:70:5c:74:3f:24:86:6d:
                    af:c3:e3:64:01:5e:0a:c8:7a:a4:ab:5f:e6:51:a5:c4:
                    67:b8:73:c8:7c:af:64:67:1f:04:26:5b:5f:aa:6e:67:
                    a9:0f:48:df:d3:1b:ea:9d:4a:2d:e2:75:2b:5d:db:67:
                    83:f6:ad:3e:b4:e3:d8:c0:1b:4b:47:49:da:9c:bc:b5:
                    4d:e8:2c:56:7b:49:82:c2:9d:8c:49:41:17:a9:c1:06:
                    fc:b8:58:03:ab:0a:01:a7:8b:11:aa:82:e7:c5:35:79:
                    3d:36:83:46:6e:d4:6a:15:36:53:9d:13:56:d6:11:43:
                    a9:e3:60:2f:b1:17:3d:20:23:13:44:f2:8b:8e:f7:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:9a:b1:1f:bf:ef:f4:d6:c2:b2:39:42:fb:ef:ef:ce:
        fa:93:d5:6f:4b:49:02:e2:a3:4e:f6:93:22:ba:d7:e3:
        1f:92:49:41:93:03:43:21:49:5e:ab:99:28:a8:a8:13:
        9f:c7:9a:79:41:6e:27:37:38:d0:6d:62:d7:d2:66:37:
        bc:73:fe:ed:00:f0:09:49:bc:07:39:5c:6b:ba:e9:28:
        44:d6:93:9d:03:dd:3e:e0:45:95:cb:30:fc:60:6c:03:
        fc:51:bf:8b:b6:9f:3d:f5:ec:4d:1d:16:1a:f9:5f:41:
        05:41:fe:e3:34:f9:dc:d1:5d:36:03:ed:82:54:85:d8:
        28:97:d8:b2:e0:42:24:04:08:2b:4b:c7:87:c1:e3:ba:
        b1:be:2e:87:19:a9:8a:f0:28:fb:74:16:2d:22:fc:1d:
        80:1a:3d:10:3d:2a:9e:2a:55:25:d6:cd:40:80:04:cd:
        9b:ca:69:6f:41:4e:1d:11:6e:ae:b6:64:f3:70:2f:5b:
        79:f1:a0:2d:4e:7a:52:83:72:37:fa:6a:2f:60:38:8c:
        b6:f4:97:f6:8e:88:a5:1e:58:1f:c6:4e:da:9d:db:f4:
        e7:98:57:78:91:12:95:a1:96:bd:fe:ed:88:ff:e3:63:
        71:36:0f:1e:de:43:fb:b1:08:57:ab:a1:35:87:1e:78
    Fingerprint (SHA-256):
        13:52:20:C7:76:B4:0D:61:C3:4B:D1:F9:89:AC:FD:4E:BA:55:B7:F5:56:B6:52:EC:22:36:99:A4:93:9E:64:92
    Fingerprint (SHA1):
        39:66:6A:0B:EA:6A:1D:C3:E8:EE:0E:C3:94:9E:AA:7F:CC:C4:C6:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11548: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154603 (0x1dee456b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:47:22 2017
            Not After : Mon May 02 15:47:22 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b6:20:77:18:46:8e:82:a4:ad:49:55:88:db:c9:d1:
                    c4:99:0c:8d:d3:ae:83:a6:c6:ba:fd:2c:af:4c:d7:0c:
                    2b:cf:ca:3c:99:74:dd:3a:3d:54:7a:0a:36:f1:b1:c9:
                    19:4d:e1:79:44:4c:81:d5:b9:b8:bc:a4:d9:4f:a9:d5:
                    ad:4b:e3:7b:d6:73:2e:67:9e:37:81:5c:67:07:5d:f7:
                    99:d3:11:0d:f1:08:83:9d:cb:37:2b:b2:71:b1:ed:0b:
                    e6:e6:3d:d7:d7:f8:b6:49:60:6d:17:03:cb:f3:57:7f:
                    b2:77:cc:e6:46:0a:a5:48:52:70:5c:74:3f:24:86:6d:
                    af:c3:e3:64:01:5e:0a:c8:7a:a4:ab:5f:e6:51:a5:c4:
                    67:b8:73:c8:7c:af:64:67:1f:04:26:5b:5f:aa:6e:67:
                    a9:0f:48:df:d3:1b:ea:9d:4a:2d:e2:75:2b:5d:db:67:
                    83:f6:ad:3e:b4:e3:d8:c0:1b:4b:47:49:da:9c:bc:b5:
                    4d:e8:2c:56:7b:49:82:c2:9d:8c:49:41:17:a9:c1:06:
                    fc:b8:58:03:ab:0a:01:a7:8b:11:aa:82:e7:c5:35:79:
                    3d:36:83:46:6e:d4:6a:15:36:53:9d:13:56:d6:11:43:
                    a9:e3:60:2f:b1:17:3d:20:23:13:44:f2:8b:8e:f7:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:9a:b1:1f:bf:ef:f4:d6:c2:b2:39:42:fb:ef:ef:ce:
        fa:93:d5:6f:4b:49:02:e2:a3:4e:f6:93:22:ba:d7:e3:
        1f:92:49:41:93:03:43:21:49:5e:ab:99:28:a8:a8:13:
        9f:c7:9a:79:41:6e:27:37:38:d0:6d:62:d7:d2:66:37:
        bc:73:fe:ed:00:f0:09:49:bc:07:39:5c:6b:ba:e9:28:
        44:d6:93:9d:03:dd:3e:e0:45:95:cb:30:fc:60:6c:03:
        fc:51:bf:8b:b6:9f:3d:f5:ec:4d:1d:16:1a:f9:5f:41:
        05:41:fe:e3:34:f9:dc:d1:5d:36:03:ed:82:54:85:d8:
        28:97:d8:b2:e0:42:24:04:08:2b:4b:c7:87:c1:e3:ba:
        b1:be:2e:87:19:a9:8a:f0:28:fb:74:16:2d:22:fc:1d:
        80:1a:3d:10:3d:2a:9e:2a:55:25:d6:cd:40:80:04:cd:
        9b:ca:69:6f:41:4e:1d:11:6e:ae:b6:64:f3:70:2f:5b:
        79:f1:a0:2d:4e:7a:52:83:72:37:fa:6a:2f:60:38:8c:
        b6:f4:97:f6:8e:88:a5:1e:58:1f:c6:4e:da:9d:db:f4:
        e7:98:57:78:91:12:95:a1:96:bd:fe:ed:88:ff:e3:63:
        71:36:0f:1e:de:43:fb:b1:08:57:ab:a1:35:87:1e:78
    Fingerprint (SHA-256):
        13:52:20:C7:76:B4:0D:61:C3:4B:D1:F9:89:AC:FD:4E:BA:55:B7:F5:56:B6:52:EC:22:36:99:A4:93:9E:64:92
    Fingerprint (SHA1):
        39:66:6A:0B:EA:6A:1D:C3:E8:EE:0E:C3:94:9E:AA:7F:CC:C4:C6:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11549: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11550: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154606 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11551: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11552: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11553: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11554: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154607   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11555: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11556: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11557: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11558: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154608   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11559: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11560: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11561: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11562: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502154609   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11563: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11564: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11565: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11566: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154610   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11567: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11568: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11569: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11570: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154611   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11571: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11572: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #11573: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11574: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502154612   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11575: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11576: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11577: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #11578: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #11579: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11580: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #11581: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154606 (0x1dee456e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:26 2017
            Not After : Mon May 02 15:47:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:00:28:5b:e8:76:f0:45:da:92:70:e0:d6:59:ef:22:
                    dd:dc:60:f6:8d:6c:45:c8:67:e3:89:8b:6b:20:01:94:
                    c7:92:2f:6f:c4:6d:ad:17:c8:92:be:b9:24:db:9a:cc:
                    e4:d3:27:cb:cf:bd:bc:ac:3a:97:9b:07:7f:c0:71:af:
                    f2:0e:3c:0a:6f:f3:d4:f2:2c:e6:b1:40:02:62:2f:45:
                    9c:55:16:27:f8:8a:16:91:b0:d4:ed:b1:11:84:ca:bd:
                    e4:12:b7:d4:81:43:93:17:61:bd:1d:fe:a1:a7:c7:e7:
                    d9:d2:9c:1f:7b:8d:41:89:3c:ea:7d:8b:15:f9:18:06:
                    ee:22:24:4a:2e:c5:95:0e:4a:08:4d:3d:b3:da:c3:49:
                    06:9e:b3:57:71:a2:0d:ff:04:0c:bd:f8:e0:dc:06:57:
                    db:1b:1e:49:56:34:71:b8:61:52:83:c8:93:c1:52:a4:
                    5b:f4:c8:b3:ac:a1:2d:43:03:54:39:b8:bb:68:42:8b:
                    d4:85:48:42:63:ca:ee:2a:a1:c2:32:41:3c:64:ec:c9:
                    42:11:75:04:ba:7a:98:52:77:a3:61:d8:cd:ac:a4:4b:
                    b8:d4:e6:de:e8:12:ad:d7:1a:f7:f7:21:3e:67:ff:bf:
                    f6:48:5f:99:93:0a:a1:df:22:f2:91:82:4c:11:38:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:be:45:e6:b6:77:b3:af:73:4a:ca:87:15:78:0c:59:
        32:00:1c:e6:1b:b1:ba:a6:f7:a8:52:f0:25:24:68:a0:
        d9:4f:eb:d4:eb:f8:13:ff:13:7c:d7:ec:b7:c4:0a:4b:
        df:11:e2:73:56:25:a9:d5:93:a5:20:ac:61:41:62:00:
        6b:5c:92:b2:27:c1:e3:74:a8:8c:c2:77:08:7c:7c:48:
        f0:05:fd:84:27:de:a0:c0:9a:32:b4:64:26:c9:59:de:
        22:d5:de:cb:4f:7b:a3:90:f9:85:c6:d7:3f:7a:ce:6f:
        9d:ff:a2:23:ea:bf:90:d0:02:e7:64:52:49:35:1f:75:
        4b:16:95:ec:4a:85:c2:06:0a:05:e2:e3:59:a6:9c:4b:
        f7:23:db:ce:0a:2a:9a:65:b0:1d:30:23:04:38:9b:eb:
        30:3e:d3:5d:5f:a6:e4:ac:9a:cb:0c:e7:2d:82:4e:08:
        f7:c3:0c:04:14:5e:64:ed:91:8e:e0:f9:5e:69:c9:54:
        f0:5d:b0:7f:85:72:43:78:fa:64:93:b4:01:46:fd:91:
        17:be:c0:03:23:43:74:d0:8d:78:51:23:db:b3:f5:0c:
        ed:ec:55:0d:7c:ec:e6:58:09:b6:4a:ca:9c:36:59:91:
        92:80:26:46:38:a1:ab:d4:d8:af:98:a8:42:c9:74:33
    Fingerprint (SHA-256):
        2D:6F:5D:C1:B6:6B:B6:7B:85:2E:7E:21:5A:B4:94:6C:93:9C:F0:D3:87:C3:40:E6:79:D7:D0:FA:44:CF:E8:8B
    Fingerprint (SHA1):
        6F:33:E8:EF:CF:6A:73:61:6D:CD:FD:1D:E8:88:95:8B:00:D7:52:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11582: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11583: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11584: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11585: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154606 (0x1dee456e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:26 2017
            Not After : Mon May 02 15:47:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:00:28:5b:e8:76:f0:45:da:92:70:e0:d6:59:ef:22:
                    dd:dc:60:f6:8d:6c:45:c8:67:e3:89:8b:6b:20:01:94:
                    c7:92:2f:6f:c4:6d:ad:17:c8:92:be:b9:24:db:9a:cc:
                    e4:d3:27:cb:cf:bd:bc:ac:3a:97:9b:07:7f:c0:71:af:
                    f2:0e:3c:0a:6f:f3:d4:f2:2c:e6:b1:40:02:62:2f:45:
                    9c:55:16:27:f8:8a:16:91:b0:d4:ed:b1:11:84:ca:bd:
                    e4:12:b7:d4:81:43:93:17:61:bd:1d:fe:a1:a7:c7:e7:
                    d9:d2:9c:1f:7b:8d:41:89:3c:ea:7d:8b:15:f9:18:06:
                    ee:22:24:4a:2e:c5:95:0e:4a:08:4d:3d:b3:da:c3:49:
                    06:9e:b3:57:71:a2:0d:ff:04:0c:bd:f8:e0:dc:06:57:
                    db:1b:1e:49:56:34:71:b8:61:52:83:c8:93:c1:52:a4:
                    5b:f4:c8:b3:ac:a1:2d:43:03:54:39:b8:bb:68:42:8b:
                    d4:85:48:42:63:ca:ee:2a:a1:c2:32:41:3c:64:ec:c9:
                    42:11:75:04:ba:7a:98:52:77:a3:61:d8:cd:ac:a4:4b:
                    b8:d4:e6:de:e8:12:ad:d7:1a:f7:f7:21:3e:67:ff:bf:
                    f6:48:5f:99:93:0a:a1:df:22:f2:91:82:4c:11:38:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:be:45:e6:b6:77:b3:af:73:4a:ca:87:15:78:0c:59:
        32:00:1c:e6:1b:b1:ba:a6:f7:a8:52:f0:25:24:68:a0:
        d9:4f:eb:d4:eb:f8:13:ff:13:7c:d7:ec:b7:c4:0a:4b:
        df:11:e2:73:56:25:a9:d5:93:a5:20:ac:61:41:62:00:
        6b:5c:92:b2:27:c1:e3:74:a8:8c:c2:77:08:7c:7c:48:
        f0:05:fd:84:27:de:a0:c0:9a:32:b4:64:26:c9:59:de:
        22:d5:de:cb:4f:7b:a3:90:f9:85:c6:d7:3f:7a:ce:6f:
        9d:ff:a2:23:ea:bf:90:d0:02:e7:64:52:49:35:1f:75:
        4b:16:95:ec:4a:85:c2:06:0a:05:e2:e3:59:a6:9c:4b:
        f7:23:db:ce:0a:2a:9a:65:b0:1d:30:23:04:38:9b:eb:
        30:3e:d3:5d:5f:a6:e4:ac:9a:cb:0c:e7:2d:82:4e:08:
        f7:c3:0c:04:14:5e:64:ed:91:8e:e0:f9:5e:69:c9:54:
        f0:5d:b0:7f:85:72:43:78:fa:64:93:b4:01:46:fd:91:
        17:be:c0:03:23:43:74:d0:8d:78:51:23:db:b3:f5:0c:
        ed:ec:55:0d:7c:ec:e6:58:09:b6:4a:ca:9c:36:59:91:
        92:80:26:46:38:a1:ab:d4:d8:af:98:a8:42:c9:74:33
    Fingerprint (SHA-256):
        2D:6F:5D:C1:B6:6B:B6:7B:85:2E:7E:21:5A:B4:94:6C:93:9C:F0:D3:87:C3:40:E6:79:D7:D0:FA:44:CF:E8:8B
    Fingerprint (SHA1):
        6F:33:E8:EF:CF:6A:73:61:6D:CD:FD:1D:E8:88:95:8B:00:D7:52:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11586: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11587: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11588: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154613 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11589: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11590: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11591: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11592: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154614   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11593: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11594: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #11595: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11596: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502154615   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11597: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11598: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #11599: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11600: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502154616   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11601: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11602: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11603: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11604: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502154617   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11605: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11606: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #11607: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11608: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502154618   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11609: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11610: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #11611: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11612: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502154619   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11613: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11614: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11615: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11616: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502154620   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11617: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11618: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #11619: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11620: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502154621   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11621: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11622: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #11623: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11624: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502154622   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11625: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11626: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11627: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11628: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502154623   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11629: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11630: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #11631: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11632: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502154624   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11633: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11634: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #11635: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11636: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502154625   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11637: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11638: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11639: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11640: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502154626   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11641: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11642: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #11643: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11644: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502154627   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11645: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11646: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #11647: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11648: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502154628   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11649: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11650: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #11651: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11652: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502154629   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11653: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11654: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #11655: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11656: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502154630   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11657: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11658: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #11659: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11660: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502154631   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11661: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11662: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #11663: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11664: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502154632   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11665: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11666: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #11667: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11668: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502154633   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11669: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11670: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #11671: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11672: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502154634   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11673: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11674: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #11675: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11676: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502154635   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11677: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11678: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #11679: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11680: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502154636   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11681: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11682: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #11683: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11684: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502154637   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11685: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11686: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #11687: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11688: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502154638   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11689: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11690: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #11691: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11692: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502154639   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11693: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11694: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #11695: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11696: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502154640   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11697: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11698: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #11699: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11700: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502154641   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11701: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11702: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #11703: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11704: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502154642   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11705: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11706: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11707: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11708: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11709: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11710: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11711: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11712: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11713: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11714: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11715: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11716: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11717: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11718: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11719: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11720: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11721: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11722: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11723: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11724: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11725: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11726: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11727: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11728: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11729: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154613 (0x1dee4575)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:47:31 2017
            Not After : Mon May 02 15:47:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:4a:ac:da:b3:56:cb:f3:33:a9:3f:79:f9:4a:91:dd:
                    60:61:e4:13:7c:09:8d:29:fd:b2:c1:16:e7:45:ce:64:
                    58:47:0c:1d:f1:36:45:2a:87:0e:7a:e7:bd:54:27:4c:
                    96:26:1e:42:b7:62:9d:6b:27:33:d6:08:5e:aa:a5:33:
                    4a:61:85:a5:f7:fd:4f:95:91:82:36:8a:51:fa:c7:4a:
                    ef:96:bf:b1:79:8c:0e:bf:2e:cc:4b:b9:9b:07:f0:b9:
                    2d:05:70:95:18:34:5f:13:f7:2b:e7:be:3b:11:78:0f:
                    af:11:94:91:7e:7b:83:a3:ac:cc:61:25:f8:21:e5:52:
                    ae:74:45:15:8d:66:21:4d:cc:c3:e8:dd:4e:c6:e3:2c:
                    b8:5e:58:22:73:e4:ce:4e:72:fe:74:d1:2f:d8:22:b1:
                    8e:13:b9:85:bd:3d:01:c8:85:3a:0b:e1:0e:e2:23:a8:
                    d5:f5:f1:33:96:a4:ec:a0:43:02:a0:81:29:15:2f:cb:
                    dc:bc:e5:d6:dd:62:7c:61:4f:2c:23:2f:d7:5a:33:ef:
                    9c:f0:d6:1a:9c:f5:02:6d:05:d4:d2:50:ef:52:cf:c1:
                    ec:fe:c6:c0:75:33:c5:45:60:16:21:7e:e9:01:ce:23:
                    4b:c8:94:db:f7:df:ae:f9:73:5e:95:68:e4:a3:1f:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e6:80:8c:27:22:84:87:e3:4e:2c:7f:81:d7:a2:bf:
        74:07:51:91:25:87:85:c4:ec:ff:9d:3f:e5:fd:33:e2:
        fb:b9:76:e4:85:45:42:41:bb:c5:be:bc:c8:27:d3:6d:
        7d:8b:09:0c:7e:50:48:7a:68:62:20:a8:1b:08:1e:a1:
        a3:ed:70:d6:65:cd:ff:65:0c:45:c2:2a:f2:ef:2e:42:
        42:7e:70:d8:8e:54:9b:24:6a:89:ce:ee:7f:b9:ad:b3:
        7a:df:00:aa:77:71:fa:1a:c1:59:89:9c:98:b4:81:9b:
        cb:72:c2:48:95:ad:49:32:b2:46:67:9f:35:7f:6d:96:
        48:44:64:0f:3b:60:1f:a8:fa:57:d3:b9:13:ab:b4:78:
        a9:b3:46:cd:75:2a:87:a7:30:64:1b:60:a1:7b:ee:5d:
        23:ec:a9:c6:77:3c:c1:4c:18:ee:fa:cc:a0:66:e7:66:
        4c:b7:c3:e5:76:11:89:35:16:29:fc:3d:da:b1:24:30:
        01:b0:4c:21:36:47:58:fb:d6:fa:a8:2d:ef:32:f8:ea:
        c5:24:5b:2f:bf:c4:01:67:a2:c2:c6:91:18:7d:9f:de:
        4c:73:e0:48:04:a3:7f:59:8d:10:52:47:bc:44:50:6f:
        da:4a:73:db:47:f2:76:d9:f9:bb:0b:85:ff:23:1a:f7
    Fingerprint (SHA-256):
        D1:77:E0:5F:53:4D:C8:75:87:09:C5:9C:02:BC:51:4D:3C:F5:5A:D2:14:7C:D2:58:61:8B:FC:86:AD:99:92:FF
    Fingerprint (SHA1):
        25:BA:47:84:93:81:0F:2B:AC:2D:6B:CD:90:41:E9:95:E9:09:A9:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11730: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11731: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11732: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154643 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11733: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11734: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #11735: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11736: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502154644   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11737: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11738: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #11739: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11740: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502154645   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11741: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11742: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #11743: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11744: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502154646   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11745: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11746: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #11747: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11748: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502154647   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11749: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11750: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #11751: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11752: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502154648   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11753: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11754: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #11755: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11756: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502154649   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11757: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11758: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11759: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154643 (0x1dee4593)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:53 2017
            Not After : Mon May 02 15:47:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:8e:b2:1a:1a:fd:5d:bf:95:c0:7e:ac:e7:81:7c:36:
                    f3:f8:6c:e9:28:6e:e0:1b:90:3d:d4:c1:87:fe:26:8b:
                    89:12:cc:96:0c:1c:8c:7f:27:db:8e:2a:a3:dc:af:cd:
                    b7:d3:48:84:fd:49:2a:5c:4a:22:b7:cb:da:38:d0:01:
                    36:6a:81:c5:79:d2:74:ed:74:2b:26:d8:a2:da:6f:42:
                    7b:b1:54:23:52:eb:7c:4a:cd:f3:99:e3:1c:17:09:71:
                    11:27:4b:fa:e2:bc:d6:de:aa:00:dc:c9:00:ff:7e:6c:
                    24:91:2f:d5:20:a8:fb:3c:8e:24:c2:5a:1d:f3:51:02:
                    7a:4d:ca:83:94:27:db:fd:ec:2c:a2:78:dd:4e:32:d4:
                    9d:09:ad:a5:ef:69:c8:48:e2:43:b4:3a:ac:f8:fd:c3:
                    28:f8:b1:6a:d7:89:48:2a:d8:e8:a6:47:d3:62:92:74:
                    8d:34:30:ed:e8:cd:6e:b6:e5:9a:c2:80:9f:fc:67:c4:
                    5b:0d:6f:77:5c:5c:6f:19:aa:18:87:e5:b9:fe:ef:da:
                    36:90:a6:a4:61:61:e7:04:d2:0d:18:b8:b0:51:91:74:
                    8f:ae:ad:a5:6f:f5:c8:98:a6:d1:f3:df:79:c7:ea:28:
                    9f:77:89:2e:5d:f6:85:57:6b:59:52:46:96:27:2e:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:eb:15:db:f0:87:49:c4:1f:d8:0d:e8:3a:a1:81:ba:
        8d:dd:ce:2c:28:27:5c:b6:50:cf:c4:83:6d:fa:45:ae:
        19:6d:d6:df:1e:13:4d:e9:ca:6d:82:fa:1d:6c:36:3b:
        1e:93:2a:fd:18:0b:6f:82:a8:d9:01:28:fe:4f:ed:a9:
        86:34:6d:d1:e8:79:86:52:f1:e6:97:ce:a4:e2:16:45:
        ba:c1:2a:0b:10:ba:5f:85:51:21:a9:73:c3:dd:c3:aa:
        54:f1:2c:8a:b3:a6:de:0b:1a:37:8b:f8:3b:49:e4:44:
        49:7d:b2:29:73:4c:76:79:92:54:94:4c:34:58:cc:45:
        8f:d3:23:51:51:e7:8b:0e:50:9c:cf:48:a8:1f:56:68:
        4e:8d:3e:ae:ea:ab:b1:49:e4:a3:00:39:ee:a6:b8:0d:
        45:27:15:6a:7c:9c:17:9f:96:d9:6a:a0:b2:62:02:a4:
        de:10:86:27:9d:72:1f:1c:72:55:23:5f:c9:7e:66:a5:
        20:30:77:e1:73:d0:c3:fe:e5:01:6e:a8:6c:2f:08:49:
        3b:e9:59:0d:9e:7a:1a:21:1c:5a:e9:6c:ed:9f:76:f2:
        f7:2e:98:34:ec:7d:ae:1a:6c:3b:a4:5c:66:95:19:46:
        7b:ba:40:22:19:21:10:44:7d:c7:18:ef:76:ba:b9:0a
    Fingerprint (SHA-256):
        15:CB:49:F1:F1:6F:7C:54:52:60:29:7D:BD:6E:B6:96:02:CB:97:5E:AB:EB:9B:3E:A2:14:1D:2A:E1:36:32:D7
    Fingerprint (SHA1):
        AA:CF:D1:BC:A3:59:10:21:C0:FA:18:1A:96:78:26:8A:12:D9:B5:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11760: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11761: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11762: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11763: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154643 (0x1dee4593)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:53 2017
            Not After : Mon May 02 15:47:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:8e:b2:1a:1a:fd:5d:bf:95:c0:7e:ac:e7:81:7c:36:
                    f3:f8:6c:e9:28:6e:e0:1b:90:3d:d4:c1:87:fe:26:8b:
                    89:12:cc:96:0c:1c:8c:7f:27:db:8e:2a:a3:dc:af:cd:
                    b7:d3:48:84:fd:49:2a:5c:4a:22:b7:cb:da:38:d0:01:
                    36:6a:81:c5:79:d2:74:ed:74:2b:26:d8:a2:da:6f:42:
                    7b:b1:54:23:52:eb:7c:4a:cd:f3:99:e3:1c:17:09:71:
                    11:27:4b:fa:e2:bc:d6:de:aa:00:dc:c9:00:ff:7e:6c:
                    24:91:2f:d5:20:a8:fb:3c:8e:24:c2:5a:1d:f3:51:02:
                    7a:4d:ca:83:94:27:db:fd:ec:2c:a2:78:dd:4e:32:d4:
                    9d:09:ad:a5:ef:69:c8:48:e2:43:b4:3a:ac:f8:fd:c3:
                    28:f8:b1:6a:d7:89:48:2a:d8:e8:a6:47:d3:62:92:74:
                    8d:34:30:ed:e8:cd:6e:b6:e5:9a:c2:80:9f:fc:67:c4:
                    5b:0d:6f:77:5c:5c:6f:19:aa:18:87:e5:b9:fe:ef:da:
                    36:90:a6:a4:61:61:e7:04:d2:0d:18:b8:b0:51:91:74:
                    8f:ae:ad:a5:6f:f5:c8:98:a6:d1:f3:df:79:c7:ea:28:
                    9f:77:89:2e:5d:f6:85:57:6b:59:52:46:96:27:2e:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:eb:15:db:f0:87:49:c4:1f:d8:0d:e8:3a:a1:81:ba:
        8d:dd:ce:2c:28:27:5c:b6:50:cf:c4:83:6d:fa:45:ae:
        19:6d:d6:df:1e:13:4d:e9:ca:6d:82:fa:1d:6c:36:3b:
        1e:93:2a:fd:18:0b:6f:82:a8:d9:01:28:fe:4f:ed:a9:
        86:34:6d:d1:e8:79:86:52:f1:e6:97:ce:a4:e2:16:45:
        ba:c1:2a:0b:10:ba:5f:85:51:21:a9:73:c3:dd:c3:aa:
        54:f1:2c:8a:b3:a6:de:0b:1a:37:8b:f8:3b:49:e4:44:
        49:7d:b2:29:73:4c:76:79:92:54:94:4c:34:58:cc:45:
        8f:d3:23:51:51:e7:8b:0e:50:9c:cf:48:a8:1f:56:68:
        4e:8d:3e:ae:ea:ab:b1:49:e4:a3:00:39:ee:a6:b8:0d:
        45:27:15:6a:7c:9c:17:9f:96:d9:6a:a0:b2:62:02:a4:
        de:10:86:27:9d:72:1f:1c:72:55:23:5f:c9:7e:66:a5:
        20:30:77:e1:73:d0:c3:fe:e5:01:6e:a8:6c:2f:08:49:
        3b:e9:59:0d:9e:7a:1a:21:1c:5a:e9:6c:ed:9f:76:f2:
        f7:2e:98:34:ec:7d:ae:1a:6c:3b:a4:5c:66:95:19:46:
        7b:ba:40:22:19:21:10:44:7d:c7:18:ef:76:ba:b9:0a
    Fingerprint (SHA-256):
        15:CB:49:F1:F1:6F:7C:54:52:60:29:7D:BD:6E:B6:96:02:CB:97:5E:AB:EB:9B:3E:A2:14:1D:2A:E1:36:32:D7
    Fingerprint (SHA1):
        AA:CF:D1:BC:A3:59:10:21:C0:FA:18:1A:96:78:26:8A:12:D9:B5:AE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11764: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11765: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11766: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11767: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154650 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11768: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11769: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11770: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11771: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154651   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11772: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11773: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11774: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11775: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154652   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11776: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11777: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11778: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11779: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154653   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11780: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11781: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11782: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11783: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11784: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11785: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154650 (0x1dee459a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:58 2017
            Not After : Mon May 02 15:47:58 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:9d:e4:34:a8:1e:73:93:ba:dc:66:27:13:e5:48:27:
                    26:fb:7a:06:9f:2d:d1:50:b2:f7:65:b0:37:0e:e5:3f:
                    15:9d:f4:09:9d:61:a3:5c:23:d0:e3:e8:f7:a8:cc:d6:
                    ff:85:94:59:87:3b:6f:8d:d3:fb:c4:57:da:08:64:fe:
                    28:42:c0:a6:81:3e:bd:7c:7b:30:e2:0d:8a:80:64:65:
                    0e:11:be:ae:99:29:be:9c:27:0f:b4:0e:90:11:9f:77:
                    d0:35:fe:e4:f6:e9:6a:e8:10:55:a3:be:98:74:f9:93:
                    02:68:82:84:18:2e:47:50:40:a9:df:3b:25:ca:4c:ca:
                    8a:16:88:98:13:ed:b1:14:2b:b7:a6:4d:6e:17:a4:c3:
                    bf:c3:ab:9e:92:fc:d0:aa:94:66:37:4e:08:a2:98:9d:
                    9a:45:01:e4:ad:c1:e5:e4:11:72:ad:3b:41:1f:6f:2b:
                    b6:ce:98:df:66:8b:8c:59:a3:11:f5:ea:c7:2c:bb:45:
                    77:04:2a:cc:f2:6b:54:7d:8c:d0:27:aa:81:2a:db:6e:
                    b4:4d:15:86:f8:fa:69:50:f3:e7:6e:91:c5:72:ee:e9:
                    fc:dd:a1:94:74:a0:06:60:cb:c5:bf:14:97:7e:45:09:
                    e8:0d:cf:dd:cd:f2:fa:4a:f8:14:23:ef:c5:cc:60:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:a2:95:81:f1:01:48:b0:59:f4:6f:29:db:04:12:e0:
        60:53:05:53:62:bb:fe:d7:b5:4d:eb:90:47:76:56:54:
        d7:e1:db:27:23:9b:aa:79:32:03:62:12:23:ed:47:d6:
        5a:39:66:5e:19:ed:a2:8b:f2:9b:fb:85:47:69:0a:a1:
        a8:79:35:5d:32:f5:54:f3:ea:07:fb:e2:e9:52:a5:15:
        15:cb:37:0c:a7:0e:46:4a:e3:56:ea:f2:1d:13:1e:af:
        9c:0b:7e:60:92:df:ae:98:ff:2b:9b:f6:ae:a6:03:21:
        3a:dc:c3:bd:94:7e:b2:dd:af:e9:c7:87:04:55:7e:8b:
        0f:c4:fc:8d:f2:e1:6a:55:16:8e:87:3a:dc:10:70:5b:
        87:6c:e2:22:5c:6f:0f:a4:02:ed:ac:6a:79:c6:2a:ab:
        58:8f:8b:ff:d7:9b:b0:8d:f4:ad:4c:82:72:ed:28:7f:
        37:66:ed:59:ab:7e:d4:d8:ab:20:d6:aa:ce:83:75:c9:
        cb:b9:3b:38:cc:f7:1f:bb:df:84:42:8e:cd:bb:fb:91:
        9f:b5:1c:36:8e:78:3d:d2:b9:16:2b:01:6f:c0:94:a9:
        f4:0f:c7:17:a1:18:3c:d1:68:e4:9f:81:0f:5e:19:66:
        2d:9a:53:d5:c1:24:66:c8:a5:1e:d1:3e:d5:e0:9e:34
    Fingerprint (SHA-256):
        ED:07:E4:DE:68:EE:43:88:2E:87:06:EE:85:EB:82:10:09:EC:B1:4F:D4:E2:5D:AA:12:FE:C6:5A:08:C9:28:6D
    Fingerprint (SHA1):
        AF:D0:80:F0:83:DA:B5:85:08:DF:2A:8F:81:AA:7E:A9:99:A4:CA:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11786: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11787: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11788: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154651 (0x1dee459b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:47:59 2017
            Not After : Mon May 02 15:47:59 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:36:4d:a9:33:a4:31:ed:5e:b4:a8:4f:0f:9b:f9:22:
                    7a:f1:74:3a:df:02:37:13:ad:bb:1e:9b:ae:8b:29:6a:
                    09:63:25:15:cd:91:28:c3:b7:2b:e1:63:0d:42:6a:a4:
                    12:91:76:98:03:9b:66:cc:36:bf:e8:62:a7:4c:1d:87:
                    09:3f:36:c7:ff:92:86:e6:70:0c:6b:f8:1c:db:d1:0b:
                    53:6a:c6:0b:9f:ac:03:91:21:09:07:ac:b8:a6:13:ba:
                    51:67:22:26:3a:91:23:87:9d:bb:a9:c0:94:91:29:31:
                    45:42:0f:70:56:9b:33:99:64:79:38:56:9b:14:4e:fe:
                    86:55:ae:a8:3f:0a:b2:b8:7b:87:75:6b:40:48:ef:f7:
                    9e:12:d5:43:e5:c5:4d:ef:4c:fb:58:38:1e:e8:9e:e8:
                    5c:63:05:e2:bf:16:7f:a4:a6:95:2f:a0:7c:8d:be:d0:
                    f1:44:d5:2c:04:49:a7:f1:82:34:1f:91:80:a0:e3:41:
                    98:30:64:f3:c8:16:56:8c:17:e7:33:4e:60:16:7c:d4:
                    be:c2:9f:d1:07:3a:9f:0d:f6:31:a0:8f:1a:f6:2a:9c:
                    04:33:0c:af:7c:e1:66:f4:e6:4f:94:83:ae:dd:f6:22:
                    8b:8e:61:13:05:b1:70:a5:e7:4b:40:51:d6:1a:73:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bf:2c:5d:3b:b6:cc:b4:8a:28:a2:78:b4:d3:15:9e:14:
        93:13:26:4c:aa:b1:8c:87:8f:1b:c6:8b:3f:34:c6:d8:
        30:27:66:83:9e:fb:f3:b9:71:00:ec:c9:04:af:88:03:
        51:36:7f:1d:dd:33:64:24:0d:ad:29:04:b6:0f:c5:74:
        1e:f6:ce:d3:fb:e3:07:b8:14:b5:33:f8:d0:c4:e9:2f:
        33:ec:1b:79:70:12:f8:ea:0d:2f:7d:de:25:32:cd:8c:
        63:34:5e:68:d6:a1:6d:a0:ce:0b:38:d0:aa:47:8e:a3:
        ab:ca:d2:c1:59:6e:50:d7:a2:a6:4f:82:84:d3:f2:e8:
        4d:42:53:88:d8:a1:45:4b:8c:c6:7b:76:f2:7d:03:f7:
        5a:5f:88:3d:8f:a1:22:17:9e:fd:ef:4f:41:08:7b:1b:
        d6:ff:b6:40:79:5f:0d:d7:21:fc:4e:40:b4:3a:62:7c:
        ba:27:df:70:10:7d:9d:23:c9:4a:2c:ac:23:d1:bf:74:
        87:dc:65:69:9d:aa:20:5f:47:52:dc:23:f4:55:62:c4:
        aa:99:5d:98:2e:29:d3:72:72:6e:ff:99:65:a2:a8:a3:
        e3:74:f2:be:9c:2c:cc:59:9a:7c:a1:da:2d:6d:5a:41:
        ec:11:30:ae:0b:f9:23:55:dd:ab:c7:38:02:08:91:5b
    Fingerprint (SHA-256):
        EB:AE:EF:75:B8:7C:3E:26:2A:E2:8C:9A:A2:F7:04:68:DA:68:6B:CF:B3:9F:A7:70:78:57:AB:0D:86:D7:E1:C6
    Fingerprint (SHA1):
        24:36:D7:80:BE:D9:1E:36:48:5C:44:7B:22:5B:4B:3C:DF:0D:36:1E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11789: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11790: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154652 (0x1dee459c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:47:59 2017
            Not After : Mon May 02 15:47:59 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:77:71:f9:ed:1f:9f:55:5e:a2:04:33:95:fb:54:5a:
                    59:38:43:a6:26:15:5d:39:14:74:47:80:4e:cf:de:91:
                    53:93:b8:f4:46:08:d2:85:e6:3f:10:12:fc:cc:ea:d0:
                    e6:ef:79:21:1f:b1:78:9b:ff:08:c2:93:67:24:d6:a9:
                    00:39:ef:65:a6:ec:64:8b:59:9a:90:c2:38:ba:99:7c:
                    be:1a:29:86:b7:42:ab:e8:25:76:fd:f7:73:9e:d6:fd:
                    6b:a3:7c:49:54:74:52:43:c5:25:cb:42:1d:85:c6:2c:
                    3b:a2:86:6e:92:b2:ef:30:48:97:6e:52:bc:7c:72:83:
                    18:40:60:e2:2c:75:fd:05:f6:af:f8:46:4b:01:90:21:
                    52:1a:e0:77:74:32:76:3f:6f:48:76:53:3d:92:b4:7f:
                    bb:de:70:c8:86:58:96:89:29:a3:11:37:9b:4d:f6:50:
                    07:57:23:c4:e8:3a:c2:90:72:a6:98:52:4d:c2:8d:42:
                    74:4e:b6:a7:d9:44:49:a6:0e:7f:6f:45:ec:62:eb:3b:
                    0c:be:c7:03:4f:53:bd:3e:70:f8:5c:db:58:38:75:04:
                    f4:d7:15:f9:34:d1:b2:87:86:39:eb:b3:9d:7f:37:cd:
                    77:c8:6c:5d:14:d2:23:87:97:cb:ca:ea:59:2a:fe:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:f6:a2:3a:d8:52:31:83:0a:8c:87:da:10:03:b2:68:
        a7:4d:87:97:09:1b:90:0c:b4:ac:a9:a8:3d:86:0d:a4:
        df:52:16:df:db:7d:a1:c9:f6:cc:5b:6c:fa:ac:75:f7:
        b5:ef:b5:04:f6:6c:c5:23:da:41:b2:fe:54:9e:ce:6c:
        a7:f5:6b:dd:d3:e2:8b:c8:62:24:a1:02:ad:4c:7d:ab:
        50:e8:46:6d:e4:41:72:49:38:a6:1b:d8:b7:e0:9f:d9:
        60:ff:1e:a5:5c:f4:02:a6:bb:1f:87:39:66:fe:7b:eb:
        2a:29:31:8a:e2:e1:30:d5:49:19:ac:5e:0a:0f:2c:f8:
        fb:3f:5f:f2:fc:c2:0b:de:6c:76:2e:e6:5e:52:a6:bb:
        37:a3:4c:34:26:3a:50:55:da:7e:8e:d8:55:fc:34:b3:
        13:61:b0:99:dc:ad:69:ba:09:31:bd:29:48:15:aa:8b:
        8f:cb:68:94:8f:17:70:4e:c2:07:c5:76:6b:5c:ca:a0:
        bb:29:fd:ab:72:5c:3c:78:e8:43:f0:f4:70:fd:1e:17:
        72:de:be:2a:b8:61:fd:b6:ba:ef:d6:ad:01:79:8a:19:
        88:f0:64:4e:aa:08:bc:ed:65:dc:cd:30:6b:5b:3e:e0:
        2f:74:59:ba:4c:c2:7a:21:70:d2:08:9f:f3:80:ab:8d
    Fingerprint (SHA-256):
        84:6F:23:54:7F:20:1B:CD:C6:CB:F1:9B:B9:86:6A:34:D2:D5:C4:0F:F1:9D:8C:FE:BC:91:EF:E5:EA:FE:85:F3
    Fingerprint (SHA1):
        95:6D:83:B0:EB:D5:AD:86:9B:A3:93:D9:CF:19:7E:09:21:E3:1A:B6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11791: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11792: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154654 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11793: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11794: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11795: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11796: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154655   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11797: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11798: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11799: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11800: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154656   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11801: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11802: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11803: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11804: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502154657   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11805: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11806: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11807: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11808: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502154658   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11809: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11810: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11811: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11812: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11813: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11814: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #11815: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154654 (0x1dee459e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:01 2017
            Not After : Mon May 02 15:48:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:3c:1c:8d:41:ee:f4:6d:4f:86:5a:99:d1:b8:3b:ce:
                    29:f2:08:6c:9f:d1:a3:41:80:98:fe:04:fc:99:21:2b:
                    90:5f:e9:d0:d1:8a:56:06:1a:6c:c2:9a:41:63:1a:cf:
                    ec:1a:0f:de:9a:a0:8d:03:71:80:16:d4:7a:16:8c:6c:
                    4a:81:2d:50:20:98:99:62:ff:ac:a7:e8:82:a7:5a:86:
                    c9:b2:71:19:7b:05:e0:30:82:98:e9:10:3c:b7:ba:36:
                    a0:34:3b:97:c1:21:6a:c3:97:ba:5e:48:99:bd:3a:f4:
                    bd:b3:3b:f7:f8:b4:d7:bc:16:c6:14:89:c9:4d:74:fa:
                    7b:a3:c4:a4:8a:ab:c4:dd:76:60:f2:13:a7:c2:4f:ce:
                    66:60:79:d5:c1:66:6c:bb:cb:ed:b6:45:76:b6:e8:6a:
                    69:57:59:43:a5:e4:5f:ff:a3:bf:f6:6e:79:96:0b:f8:
                    ba:e9:81:24:36:d9:3e:f4:88:30:3b:5e:85:e5:0b:5b:
                    ef:f2:b9:11:be:ca:c2:9c:03:c5:45:d3:27:bb:86:79:
                    0e:c5:d0:0e:ca:2d:67:b7:c2:7e:bf:14:30:f8:ab:fd:
                    1d:97:84:60:af:14:4c:28:0d:f6:ba:63:5a:13:f5:94:
                    91:dd:2e:b9:72:9b:36:92:b0:ab:69:aa:57:30:b8:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:bb:a0:70:46:91:a1:22:54:67:0f:cb:9d:56:8c:c8:
        b8:8d:80:a6:ab:e2:57:9d:48:2e:e2:c8:7a:5e:22:d6:
        dc:69:df:16:2e:52:d6:a6:60:92:1b:ce:28:fc:21:ad:
        78:42:4c:80:f7:46:dc:76:4c:10:44:07:90:2a:22:36:
        6b:21:9c:b2:13:ee:20:b2:19:cd:f9:c4:34:ee:cd:4d:
        10:70:f5:49:c6:92:5e:f3:a9:60:81:73:28:1e:d7:53:
        3b:76:db:95:e9:f7:b5:00:75:3a:6c:28:5f:02:2a:3b:
        05:67:fa:16:f7:52:a3:ec:fb:08:a3:ac:76:1a:94:4b:
        be:9c:61:72:20:a8:06:f1:94:78:c6:60:29:7a:ca:27:
        eb:2b:f1:06:01:c6:ef:b4:63:b3:0e:ab:8a:f1:e1:e1:
        27:be:5c:49:30:e7:d2:dc:7a:fb:a2:f4:c3:9b:c5:a1:
        71:c9:79:ac:04:65:05:0e:a0:aa:80:43:a2:d6:c9:10:
        fb:64:1d:32:71:a8:30:b4:d6:6a:49:45:06:5c:a4:82:
        d5:db:46:88:ce:e2:07:36:4c:ed:97:8d:01:03:cc:6d:
        1c:78:b3:0d:b9:77:e0:ef:e2:89:4c:6b:fc:71:ab:df:
        43:72:07:1b:f2:38:71:c6:85:16:5d:21:23:14:5f:ea
    Fingerprint (SHA-256):
        05:A3:CA:C9:C9:35:17:2E:C3:F6:30:EF:86:58:C0:C6:03:85:99:A1:BB:D9:DF:00:E6:CF:4C:33:DE:28:7A:11
    Fingerprint (SHA1):
        54:E8:A3:62:A8:A3:87:38:1E:27:BD:95:64:E6:E9:3B:CF:A0:BF:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11816: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11817: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154655 (0x1dee459f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:02 2017
            Not After : Mon May 02 15:48:02 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:a6:79:b5:d2:71:6c:c8:9f:dd:94:cc:fa:56:65:db:
                    45:8d:24:99:7a:5d:93:c4:2a:b4:08:43:65:c5:52:d4:
                    03:bc:7c:d5:2a:f7:f9:e8:90:1e:c9:22:92:c0:07:ca:
                    b2:64:7f:78:45:b9:30:9e:5c:91:2e:2b:8f:c0:41:bd:
                    04:c8:cb:b6:a9:02:d2:9f:f5:d5:b6:b3:f9:af:3a:a1:
                    17:4a:17:98:0e:83:c0:6b:22:d5:62:6f:53:2a:66:60:
                    65:58:fb:35:ad:d7:70:10:4c:f1:aa:1e:04:aa:bd:2f:
                    da:f9:60:c4:ac:ba:1d:64:0e:12:ff:4c:16:e1:20:65:
                    8a:3a:62:27:06:9d:ea:3c:3d:be:54:74:7d:8c:d8:93:
                    52:d4:43:15:26:ae:b1:1e:c2:59:de:97:73:d5:10:b9:
                    0e:56:64:db:08:9f:a3:fd:fe:81:28:c2:5a:b7:a6:ea:
                    2b:7e:a7:4c:4a:81:8b:cf:d8:cf:6b:08:49:f8:2d:ed:
                    67:df:2d:26:7b:c0:39:57:56:f7:a1:65:76:34:f7:53:
                    60:90:9e:25:28:3f:a7:3b:4e:b3:e5:9d:a7:28:0e:43:
                    46:c5:dc:24:28:3e:28:a9:64:f7:5f:2f:d0:7a:4a:eb:
                    4a:37:7f:59:8f:cb:da:2e:9c:73:fe:5a:70:7a:3d:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:0e:32:24:9b:33:34:6b:e8:6a:cc:0b:12:4b:0f:5d:
        bd:44:8d:dd:ad:d0:f7:6b:1c:2a:a3:ae:a9:1c:7a:f3:
        2c:ec:29:bb:37:50:3a:52:b9:f6:1c:0e:0f:93:b2:26:
        57:f2:1e:45:68:18:56:b0:f2:77:a5:34:32:62:41:3b:
        6f:20:5d:ef:87:e7:f7:d7:8c:d4:01:e9:27:23:8a:f0:
        37:fd:5c:d2:fc:99:26:24:f3:fe:6b:0e:83:a8:7d:16:
        75:0b:a1:82:35:3b:81:e8:65:01:41:16:22:f2:55:c7:
        ad:2b:e7:a0:68:38:27:3a:8c:3e:83:a8:09:23:03:54:
        bf:c5:a3:60:56:e1:47:e1:f3:6d:8e:89:7e:4a:45:47:
        fc:a3:ec:e0:67:8c:8f:b4:47:5d:17:08:d3:99:e4:18:
        08:c6:dd:de:be:c0:da:27:57:3f:0d:d1:a8:50:c3:d1:
        9e:2f:5a:bf:82:5b:26:b3:8b:f7:30:56:d2:da:e6:23:
        03:bd:df:4f:4f:aa:a5:5c:6b:59:ca:9a:8e:bd:03:1b:
        0a:a0:e2:25:fa:31:2c:52:5a:d1:85:ff:23:4a:92:fa:
        98:61:20:64:bc:87:11:85:0c:79:c8:a7:93:d7:31:36:
        70:16:cc:9c:3e:02:2f:65:e4:c1:04:af:73:84:41:ee
    Fingerprint (SHA-256):
        C8:96:DF:95:91:97:6D:39:B9:AB:A5:0E:C0:48:4F:02:79:86:8D:EB:EF:47:1F:92:B2:56:85:51:DE:96:2D:57
    Fingerprint (SHA1):
        BF:E3:3E:6A:19:C0:3E:F4:09:3A:EC:63:6F:33:78:9E:5B:7C:91:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11818: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11819: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11820: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154656 (0x1dee45a0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:48:03 2017
            Not After : Mon May 02 15:48:03 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:09:d0:1e:b9:5b:79:ca:a7:8b:38:4c:5d:ba:86:84:
                    25:58:34:32:7b:59:98:02:f5:c5:6f:ae:48:0f:16:a6:
                    2f:38:c7:41:be:9d:b8:71:c5:1c:25:a4:f5:bd:ad:dc:
                    08:b2:a6:65:0b:18:d9:38:ef:b6:2c:53:df:f7:59:6d:
                    fe:da:61:1e:98:89:f5:ab:d6:66:4d:08:0d:b3:d1:c5:
                    cc:c7:a3:21:7a:43:91:b9:b5:3d:72:ac:b1:b2:83:3b:
                    c8:72:82:37:6b:e5:ec:55:ce:07:11:ba:23:1e:12:ad:
                    a7:d0:26:95:b9:6c:70:bd:62:31:34:b0:d9:f2:c1:b6:
                    0f:a3:55:3c:0e:40:e5:8c:5a:41:01:50:1b:e7:38:9c:
                    9e:06:55:ed:62:fb:10:df:f4:fe:87:f6:5e:01:d2:e3:
                    13:70:ff:ad:3a:1a:50:57:d2:b8:1e:e7:f5:22:bf:49:
                    0d:9b:de:c3:2a:22:63:48:52:99:1c:ee:54:d5:d6:b9:
                    cb:6f:e2:cb:f8:5b:c6:81:08:a4:c0:9d:f0:3e:a1:ca:
                    bd:95:62:54:7f:bc:47:e4:85:56:b5:8d:32:2a:e3:a2:
                    5b:0e:be:18:a2:35:c3:91:75:33:9f:c4:2a:46:c3:d1:
                    bc:3e:68:9b:48:9a:b4:69:04:29:cc:f1:53:66:50:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:2e:da:f9:c9:75:a1:09:f9:aa:bf:32:b2:3f:e6:f5:
        7d:2c:8b:31:61:cd:e6:49:9c:0b:b2:cc:32:64:03:58:
        33:24:45:8c:11:a9:2e:8e:38:e2:b4:63:7d:67:52:72:
        63:e4:94:f8:85:e2:75:24:8c:f1:62:7e:6d:55:af:e3:
        6b:e4:56:f3:9b:ec:29:67:f7:1d:15:75:f5:b6:1d:a7:
        26:29:41:d6:3e:f6:ba:19:b4:54:79:78:00:2f:04:1e:
        45:9e:6d:e2:64:75:a8:54:6e:f0:50:a6:26:9a:61:6e:
        b6:b6:12:c7:6e:d4:12:43:79:b7:61:b5:7a:bc:49:cf:
        79:06:96:dc:bd:8b:a0:b1:ed:1c:4f:ae:cb:f5:49:a7:
        a5:19:19:df:31:8f:ea:34:4c:29:a7:77:68:ae:fc:34:
        1f:4e:d2:7e:64:8a:20:f7:28:c7:42:a7:cc:99:4e:60:
        49:97:a7:fb:c0:f6:39:f2:48:f4:a5:d6:26:25:b6:bf:
        65:c2:ff:6f:48:db:76:3a:5e:e6:af:95:80:52:e7:b7:
        24:8c:57:c0:8a:29:cc:96:1c:90:76:e1:29:15:58:cf:
        7b:75:3d:83:f9:16:67:04:a3:fd:af:be:be:a2:93:a5:
        9f:6e:ff:46:a1:da:bf:3b:5f:20:8c:d6:aa:4c:08:70
    Fingerprint (SHA-256):
        E0:2B:5E:F2:41:98:5E:72:23:22:2B:8B:A1:9C:2A:73:E6:09:F8:43:40:5A:AD:E6:93:A7:95:27:E2:8E:1F:AC
    Fingerprint (SHA1):
        B4:28:C8:2B:3B:8A:F7:23:34:4F:93:BD:CC:EB:B6:D1:AB:F3:27:05
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11821: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11822: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154659 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11823: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11824: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11825: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11826: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154660   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11827: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11828: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11829: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11830: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154661   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA1Root-502154438.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11831: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11832: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11833: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11834: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154662   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11835: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11836: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #11837: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154659 (0x1dee45a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:05 2017
            Not After : Mon May 02 15:48:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:95:1c:2e:6c:6b:13:b1:a3:18:19:82:f5:48:e9:1e:
                    bb:ae:3d:be:f7:69:18:be:d0:51:32:dd:37:b1:12:22:
                    a2:b2:51:76:29:ac:2c:5f:a2:c1:b2:b4:60:46:9f:3a:
                    7c:b6:cc:89:cc:12:c4:aa:a5:f0:0c:82:28:33:07:2c:
                    dd:bd:89:47:93:f2:32:04:fb:26:9e:cc:05:3b:82:67:
                    53:58:05:6c:7d:cd:d8:6d:5f:a2:75:46:28:0e:d6:e7:
                    8f:81:ce:9d:ba:8c:4f:54:58:f0:52:0d:db:3c:fd:a1:
                    0c:04:d5:21:33:82:47:ca:20:99:a6:a7:9a:0e:73:6d:
                    e9:3c:c1:87:17:9d:5c:24:ea:7a:47:72:3d:00:f1:1b:
                    b6:f2:2e:c4:16:51:f0:68:81:b1:d5:01:f6:94:b1:3c:
                    33:fc:ee:3f:1b:0a:eb:8a:79:84:70:d5:9f:75:ed:5f:
                    10:fe:83:2e:f9:fe:26:fc:25:52:e6:80:7d:4c:c8:21:
                    8f:6b:33:7e:a1:72:30:a5:bf:76:4b:b0:5d:ba:f9:a5:
                    d8:23:78:f0:38:b0:02:f8:16:d3:b5:a6:80:b2:b0:64:
                    43:a3:83:b1:de:cc:54:97:29:d2:2e:78:d8:9f:d9:03:
                    df:c1:e2:28:4b:90:16:8e:00:35:20:9d:c8:93:28:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:65:6b:94:bc:5d:3b:8e:47:4f:e6:bc:73:7d:cb:f8:
        be:10:88:ca:de:4b:f4:d3:90:de:fd:45:37:72:71:13:
        68:b4:9d:fa:df:3e:1a:37:6e:bb:30:f8:0a:3d:1b:ce:
        7e:aa:c0:dd:45:58:ac:32:80:91:56:f0:56:c5:bb:99:
        22:54:00:4c:43:c7:48:e6:7d:dd:8a:8b:47:26:1d:cf:
        18:9b:5a:df:41:50:c0:ba:b9:01:e1:91:00:ee:e0:a3:
        1b:43:09:36:e2:f1:aa:5a:56:e8:1c:63:7b:5e:7a:d1:
        6e:54:9d:0f:5d:29:40:0b:7d:19:98:08:81:32:32:0a:
        26:20:a3:11:30:17:0d:c5:4b:62:01:60:81:e1:b8:a8:
        f5:ef:61:a2:80:11:52:a1:16:41:c2:21:55:e3:dd:91:
        0a:9c:33:75:ca:20:a9:3a:2d:35:9e:f5:fc:3b:0b:e3:
        32:1a:50:1b:f2:0b:47:3d:49:1a:3e:d9:2a:07:8f:d3:
        b2:69:d7:76:30:53:e8:ba:c6:d0:29:bd:95:0b:56:71:
        cd:e5:1e:77:c2:e8:c6:a8:ca:19:48:ea:34:95:52:af:
        da:38:7f:c0:89:c6:65:89:85:3a:a2:88:a0:f2:f5:f0:
        a8:72:74:a4:ce:4d:fe:07:15:17:94:fa:2b:8f:28:46
    Fingerprint (SHA-256):
        EA:FC:B2:AA:57:84:CB:05:3B:9D:22:96:29:5E:1B:2B:41:C8:ED:3A:78:69:91:C2:3F:52:75:73:98:59:88:50
    Fingerprint (SHA1):
        61:5A:AA:51:24:F0:C4:42:62:E6:00:8F:5E:B8:CF:AD:B9:BF:33:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11838: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11839: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154663 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11840: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11841: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11842: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154664 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11843: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11844: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11845: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11846: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154665 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11847: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11848: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154666 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11849: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11850: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11851: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11852: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11853: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154667   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502154439.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11854: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11855: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11856: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11857: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154668   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11858: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11859: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11860: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154663 (0x1dee45a7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:48:08 2017
            Not After : Mon May 02 15:48:08 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:82:6a:e7:ce:26:e7:5a:4b:77:07:fb:a5:c8:2b:9c:
                    a8:ba:78:d1:20:13:65:96:fa:99:fd:65:77:d5:91:22:
                    5d:1c:1e:7f:27:10:ae:70:90:ee:9d:21:cd:99:35:38:
                    9b:9b:ec:90:c6:3b:a0:89:c1:48:86:a0:7c:9e:32:cb:
                    57:be:86:4b:52:77:fc:e6:3d:ff:fd:65:86:d6:71:0c:
                    7a:40:0a:1b:9b:82:92:62:0d:ec:49:f2:e7:8b:cb:04:
                    50:57:3c:f3:d2:5f:64:1b:8b:16:2a:44:0f:35:b2:e1:
                    77:5e:7e:ce:07:aa:3b:11:72:bf:f2:88:39:0f:88:9b:
                    22:ac:58:4d:3e:7d:bc:d6:aa:1b:14:a7:93:04:d4:a6:
                    06:96:bf:80:55:18:b8:af:0d:30:53:f0:4a:08:7e:64:
                    e3:47:85:31:f3:83:75:1e:e3:7d:ae:01:d2:8e:f4:5a:
                    4c:a9:08:90:17:8d:4a:5b:cf:d8:eb:61:3e:9d:57:97:
                    e3:da:ba:41:f8:83:30:1e:fe:5e:94:3e:5b:fc:fb:68:
                    ad:32:b0:af:3c:91:49:b4:e7:da:55:32:10:26:86:88:
                    6e:6a:ed:a9:49:b1:47:17:2c:0d:f3:cd:0c:72:21:75:
                    fa:05:2d:6f:88:58:31:a4:65:54:1c:14:73:aa:83:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:2d:ed:11:b4:18:e9:7e:a9:30:a4:2c:26:d0:63:88:
        26:93:0f:f7:64:96:74:4c:7e:d7:57:ed:47:cf:9e:6c:
        bd:c0:a3:54:e4:39:f3:18:0c:42:f8:ca:ce:4d:15:d2:
        6b:25:a8:60:25:25:1a:1c:21:19:22:00:c3:99:d0:6f:
        3c:4e:0c:a7:53:97:83:8c:60:13:3d:a2:75:e5:b7:84:
        19:0f:e2:ad:55:22:12:0f:ea:40:22:59:58:c2:19:f1:
        49:81:70:4e:84:32:e5:9a:d9:ce:5d:e7:e8:29:6b:0e:
        82:86:44:22:cc:d3:5f:57:aa:2c:1e:ae:27:36:f1:8b:
        3f:12:77:9a:5c:83:77:42:52:73:c6:b3:26:73:d4:09:
        4d:d7:a4:a1:12:c7:1f:a0:57:4c:0c:83:ed:9a:f8:e8:
        d8:de:65:88:6a:7a:48:e6:40:20:9d:8e:24:ba:a9:d5:
        88:95:1b:41:e0:de:6e:6a:41:a6:cc:75:0c:46:16:1c:
        39:ab:f1:ea:0a:2a:e1:89:4e:99:02:4b:3f:88:8f:7d:
        be:3f:fa:d2:84:a7:a5:91:b7:ed:3d:c7:56:79:9a:1e:
        6f:f1:ec:c6:90:76:ad:4b:7d:59:c4:39:8d:d1:eb:04:
        05:8f:97:ad:75:22:4d:2f:d2:53:1b:ff:0a:41:72:d1
    Fingerprint (SHA-256):
        D8:CA:26:A6:F7:EC:AB:B5:04:9A:CD:09:99:64:F4:F9:98:BC:51:7A:71:4D:3E:57:24:96:1C:92:7E:AF:7A:71
    Fingerprint (SHA1):
        02:6F:31:32:F4:46:66:4D:48:13:07:25:03:85:BB:0C:6A:DF:8B:8A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11861: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154664 (0x1dee45a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:48:08 2017
            Not After : Mon May 02 15:48:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:45:99:f6:6f:d8:aa:68:70:8f:2d:1a:14:d3:77:dd:
                    24:1d:72:ba:7c:af:c1:ff:bb:16:48:24:88:f6:d9:90:
                    92:6e:41:2a:af:0e:0e:bf:ed:94:3d:ef:e3:26:80:00:
                    dd:76:52:a8:82:03:b8:4d:bc:5c:d5:42:9e:91:01:78:
                    b6:53:86:23:bd:1a:08:3c:b2:2e:62:20:b1:0b:0a:84:
                    82:39:b7:66:30:70:1d:ae:7e:fc:06:95:2f:6e:8c:9b:
                    3f:a2:ef:e7:25:1d:6f:b5:d3:85:d4:8f:8c:56:ed:2e:
                    a2:80:fe:c1:fe:6e:23:81:75:0b:66:e4:11:41:d9:66:
                    c7:4c:63:b0:6c:61:70:19:8b:d8:62:b8:40:b6:11:a2:
                    5e:b6:26:79:ff:d4:dc:f4:01:81:bf:19:99:8e:65:42:
                    8c:b5:56:c3:20:16:ce:6f:59:9d:19:74:3c:53:c1:02:
                    6a:ae:4a:3f:aa:ab:3e:1b:fb:07:a2:d0:a0:f8:d0:ad:
                    38:2d:bf:c8:2d:a6:05:d0:36:d2:32:b2:65:dc:67:3a:
                    14:e9:b1:6c:1e:10:35:f2:f3:89:38:0c:70:b4:ca:01:
                    97:0f:12:19:a4:e3:87:dd:a9:9c:48:13:b2:c2:c2:a9:
                    27:d7:df:13:35:8d:77:8d:c1:cc:fb:3f:bb:76:d1:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:e8:db:56:7f:ef:72:a8:1e:6c:ad:ac:34:81:25:1c:
        ab:06:a2:2c:78:08:2b:b3:d9:f2:4d:27:9a:13:28:f8:
        b5:1c:9a:0c:29:ec:13:0a:8f:db:49:e1:ac:81:c9:00:
        cb:a6:10:d1:61:82:c9:32:94:a6:19:a0:9f:06:1a:cb:
        e4:d4:f4:05:bf:38:48:15:a5:42:33:83:fe:0a:4c:87:
        de:60:7a:a8:eb:c3:6d:54:7f:7b:85:2e:8c:72:99:3d:
        40:76:f3:80:50:0e:a1:80:27:86:a2:e2:b0:20:8b:d0:
        84:4f:b0:c3:8e:90:0f:44:d9:76:e1:26:89:b9:fb:c7:
        c7:73:db:61:63:ec:b7:21:2a:5e:04:c5:e8:b5:0f:c0:
        0b:65:a2:2f:e8:75:40:78:51:6a:d4:08:0a:1a:30:b5:
        13:3d:af:7f:b0:95:ed:d3:59:a2:24:a0:c8:b8:17:e3:
        d3:84:ed:25:8f:37:00:76:ea:37:78:cc:74:81:90:15:
        21:ee:a0:47:a4:fb:66:a2:71:88:48:4b:93:1f:a9:61:
        44:cf:3c:18:fd:57:8d:d8:fe:37:d8:83:c4:20:8d:76:
        99:45:a0:bb:84:46:2a:0e:e9:1c:1f:9c:d9:4f:96:ee:
        5f:bb:dc:1e:a6:8f:88:38:90:20:61:86:0f:f3:21:e0
    Fingerprint (SHA-256):
        F5:B1:CD:4A:DE:9E:2F:28:67:F3:6E:53:23:7C:D4:BB:9E:3C:30:51:78:08:FA:71:FC:4E:9C:86:6D:55:E4:FA
    Fingerprint (SHA1):
        47:E5:BB:73:DF:40:25:DB:6B:CC:4C:DD:F8:ED:F3:BA:A0:4F:B1:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11862: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154664 (0x1dee45a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:48:08 2017
            Not After : Mon May 02 15:48:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:45:99:f6:6f:d8:aa:68:70:8f:2d:1a:14:d3:77:dd:
                    24:1d:72:ba:7c:af:c1:ff:bb:16:48:24:88:f6:d9:90:
                    92:6e:41:2a:af:0e:0e:bf:ed:94:3d:ef:e3:26:80:00:
                    dd:76:52:a8:82:03:b8:4d:bc:5c:d5:42:9e:91:01:78:
                    b6:53:86:23:bd:1a:08:3c:b2:2e:62:20:b1:0b:0a:84:
                    82:39:b7:66:30:70:1d:ae:7e:fc:06:95:2f:6e:8c:9b:
                    3f:a2:ef:e7:25:1d:6f:b5:d3:85:d4:8f:8c:56:ed:2e:
                    a2:80:fe:c1:fe:6e:23:81:75:0b:66:e4:11:41:d9:66:
                    c7:4c:63:b0:6c:61:70:19:8b:d8:62:b8:40:b6:11:a2:
                    5e:b6:26:79:ff:d4:dc:f4:01:81:bf:19:99:8e:65:42:
                    8c:b5:56:c3:20:16:ce:6f:59:9d:19:74:3c:53:c1:02:
                    6a:ae:4a:3f:aa:ab:3e:1b:fb:07:a2:d0:a0:f8:d0:ad:
                    38:2d:bf:c8:2d:a6:05:d0:36:d2:32:b2:65:dc:67:3a:
                    14:e9:b1:6c:1e:10:35:f2:f3:89:38:0c:70:b4:ca:01:
                    97:0f:12:19:a4:e3:87:dd:a9:9c:48:13:b2:c2:c2:a9:
                    27:d7:df:13:35:8d:77:8d:c1:cc:fb:3f:bb:76:d1:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:e8:db:56:7f:ef:72:a8:1e:6c:ad:ac:34:81:25:1c:
        ab:06:a2:2c:78:08:2b:b3:d9:f2:4d:27:9a:13:28:f8:
        b5:1c:9a:0c:29:ec:13:0a:8f:db:49:e1:ac:81:c9:00:
        cb:a6:10:d1:61:82:c9:32:94:a6:19:a0:9f:06:1a:cb:
        e4:d4:f4:05:bf:38:48:15:a5:42:33:83:fe:0a:4c:87:
        de:60:7a:a8:eb:c3:6d:54:7f:7b:85:2e:8c:72:99:3d:
        40:76:f3:80:50:0e:a1:80:27:86:a2:e2:b0:20:8b:d0:
        84:4f:b0:c3:8e:90:0f:44:d9:76:e1:26:89:b9:fb:c7:
        c7:73:db:61:63:ec:b7:21:2a:5e:04:c5:e8:b5:0f:c0:
        0b:65:a2:2f:e8:75:40:78:51:6a:d4:08:0a:1a:30:b5:
        13:3d:af:7f:b0:95:ed:d3:59:a2:24:a0:c8:b8:17:e3:
        d3:84:ed:25:8f:37:00:76:ea:37:78:cc:74:81:90:15:
        21:ee:a0:47:a4:fb:66:a2:71:88:48:4b:93:1f:a9:61:
        44:cf:3c:18:fd:57:8d:d8:fe:37:d8:83:c4:20:8d:76:
        99:45:a0:bb:84:46:2a:0e:e9:1c:1f:9c:d9:4f:96:ee:
        5f:bb:dc:1e:a6:8f:88:38:90:20:61:86:0f:f3:21:e0
    Fingerprint (SHA-256):
        F5:B1:CD:4A:DE:9E:2F:28:67:F3:6E:53:23:7C:D4:BB:9E:3C:30:51:78:08:FA:71:FC:4E:9C:86:6D:55:E4:FA
    Fingerprint (SHA1):
        47:E5:BB:73:DF:40:25:DB:6B:CC:4C:DD:F8:ED:F3:BA:A0:4F:B1:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11863: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11864: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154669 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11865: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11866: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11867: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154670 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11868: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11869: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11870: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11871: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154671 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11872: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11873: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154672 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11874: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11875: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11876: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11877: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11878: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154673   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-Bridge-502154440.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11879: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11880: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11881: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11882: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154674   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11883: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11884: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11885: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11886: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154675   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-BridgeNavy-502154441.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11887: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11888: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11889: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11890: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154676   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11891: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11892: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11893: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154669 (0x1dee45ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:48:11 2017
            Not After : Mon May 02 15:48:11 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:a7:e7:2e:80:d4:ed:9e:58:d3:8e:51:1c:8f:08:73:
                    50:42:9b:80:65:90:a2:2b:97:67:3d:7f:26:2a:7f:05:
                    de:fc:c2:6b:42:f4:26:b4:95:34:79:43:2c:69:c3:c1:
                    37:b7:06:6e:ca:e2:93:be:5c:eb:05:d4:d1:6a:f9:2d:
                    6c:75:2f:d9:68:21:2e:16:38:e1:13:a3:5f:8d:66:2b:
                    6d:90:be:06:44:b3:30:2c:aa:71:ef:62:d4:ba:c0:4d:
                    ac:3a:2b:eb:32:2b:63:6c:9b:40:ba:00:d1:ac:82:5a:
                    ca:9a:07:49:0f:e4:f8:c5:4e:e7:d4:df:2c:19:56:b0:
                    46:f8:47:c0:ba:a8:5e:7d:62:d1:81:9e:43:52:1e:f9:
                    c1:16:c0:ca:93:a7:9c:c4:02:ab:7c:4e:a1:63:ca:d3:
                    55:8c:9e:2e:16:c7:a2:81:40:68:5f:56:e5:89:e5:0c:
                    38:58:50:ae:08:5c:10:ce:e9:ac:76:4f:88:04:95:ca:
                    2a:24:4e:62:2f:99:8c:a0:2f:c1:5a:5a:8e:62:82:0f:
                    e4:2c:10:9f:0d:e2:0a:21:6e:06:89:a4:6f:ed:bd:b2:
                    e3:c1:af:a2:43:2c:6b:23:4b:86:48:40:01:42:f5:37:
                    19:9e:3a:48:96:49:27:e1:7e:32:ab:62:24:89:eb:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:4c:23:ce:cd:32:43:82:f5:ba:69:69:c9:30:68:e0:
        d9:36:1f:8f:40:b3:fb:5d:b9:7b:f1:88:66:f8:75:0a:
        43:b8:fb:56:c9:48:7d:50:04:49:25:19:bc:77:90:50:
        c2:23:7f:6a:4a:4e:44:1b:51:55:bd:5c:e5:59:7c:be:
        16:1a:97:e1:9f:d6:2a:7e:d8:26:41:ae:b7:79:89:9a:
        51:0b:10:2d:ae:f2:00:b2:e1:d9:ae:27:ae:7e:46:f8:
        88:f1:fc:ec:a4:12:8d:89:4e:44:d1:df:8f:e2:08:e7:
        f2:51:38:38:cc:0d:db:1e:b2:3c:f9:65:a2:e0:00:43:
        f4:4a:15:e7:1f:59:0d:13:a2:cc:d2:be:8a:06:84:a2:
        87:fb:39:0b:24:8a:8b:1c:d1:c0:9f:f8:45:8a:44:44:
        7d:c8:d8:a1:7d:d6:73:3d:14:15:b2:e8:df:b3:01:42:
        f5:97:be:6f:88:15:f4:ef:4d:c0:4c:ff:15:7a:29:5a:
        f7:9b:00:a7:cb:a7:55:97:28:48:fb:09:47:b6:d3:a4:
        df:b7:b5:af:90:3d:36:14:fc:68:ba:ce:b8:0a:d4:6b:
        24:60:cc:05:5b:65:af:2e:45:2d:1a:1f:06:1c:f2:b7:
        9b:64:dc:0d:54:9a:bf:77:f1:03:b3:a9:3c:51:94:62
    Fingerprint (SHA-256):
        CC:E9:92:9E:6E:DB:A9:34:B4:29:ED:0D:8D:91:26:07:E0:EC:AD:89:DC:D3:22:03:07:B9:86:6D:DB:F4:8C:F5
    Fingerprint (SHA1):
        0B:6D:27:C4:2E:BA:2A:86:AB:22:CE:86:30:9E:DE:A4:AC:0A:45:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11894: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154670 (0x1dee45ae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:48:12 2017
            Not After : Mon May 02 15:48:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:dc:e6:35:a9:fd:70:d9:e5:92:ab:ff:e8:97:10:28:
                    6a:49:91:15:ca:bd:6e:de:91:48:69:de:59:86:34:49:
                    16:7f:63:43:0a:b7:a8:6e:ff:5a:1c:e0:40:2b:1d:af:
                    3e:8e:a0:1d:a9:ad:b1:c4:3f:66:4e:f4:62:a1:fd:68:
                    f7:15:48:ef:a3:19:33:36:68:71:87:20:b7:b8:c7:9c:
                    e1:92:38:d3:21:15:ed:17:77:1f:b6:4e:7f:da:69:3a:
                    d9:fd:ac:d4:cc:f8:0e:01:e5:e1:98:22:d4:fd:dd:27:
                    46:9f:6d:37:08:b9:b5:94:d3:2e:c3:ae:21:8b:e5:09:
                    74:ab:20:7c:23:ed:28:c1:ea:35:56:8d:78:ba:ce:e9:
                    ec:ad:8d:41:0f:f8:f6:c7:4c:fd:6f:8f:42:62:5f:55:
                    d4:bf:77:21:4b:4d:32:15:20:50:f2:3d:ca:fb:6b:77:
                    8f:3e:90:9f:84:72:b4:2b:01:e7:e7:f7:3c:7c:1d:50:
                    7e:1b:a2:e9:77:9a:b6:ba:84:de:e4:cd:43:72:77:ea:
                    fa:da:7e:e7:1a:ba:01:c8:8e:72:1b:be:12:cd:db:5e:
                    66:4b:e4:aa:42:28:fe:ed:a3:6a:5d:cc:c1:18:78:0f:
                    c1:18:a2:bf:23:f0:10:41:ce:e3:56:fc:21:07:82:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e9:c8:64:f7:b8:af:f5:26:9f:a6:52:8d:07:0d:b6:
        dc:2d:4b:ef:54:b5:59:83:37:c3:5c:e5:89:3d:04:23:
        26:c3:ba:e1:2b:f9:63:f3:7d:b5:6a:99:19:fb:35:ae:
        0b:c4:8b:33:24:9c:40:b6:b8:7e:aa:fc:d9:8b:98:b1:
        41:70:96:42:f4:07:9d:1b:78:a3:d5:e9:06:3d:50:a8:
        07:09:04:5e:d6:7a:e6:59:a6:6a:d3:8e:73:da:53:35:
        61:53:e5:03:f7:fd:c9:3e:ef:51:bd:85:d5:33:42:b0:
        f6:be:e2:3b:82:5d:1b:06:0a:78:6b:eb:8a:1a:59:57:
        68:53:c1:fc:2f:13:07:90:ff:9f:ab:9c:49:fe:70:7f:
        ad:9b:ea:69:06:2a:d6:a4:30:a3:cb:1f:b9:a6:ab:51:
        20:20:6a:71:f0:e2:2a:1c:47:01:2c:83:8d:70:74:b7:
        ae:37:55:dd:2a:00:5d:40:45:84:41:37:28:90:cc:b6:
        96:1c:a8:cc:a2:72:1a:d5:f1:97:ef:29:2c:4d:14:5e:
        2e:40:49:29:32:49:3c:68:1a:c5:7c:7c:91:f1:ee:45:
        44:ab:f1:e7:8d:e5:ce:9d:9e:e5:02:d5:4b:79:63:34:
        8d:35:42:fd:5b:b0:20:99:08:cb:f8:86:09:68:8a:8f
    Fingerprint (SHA-256):
        82:4C:07:80:AC:20:EE:94:C7:35:17:BF:3A:95:6B:10:75:44:96:05:5A:5F:FF:4A:92:C6:49:F7:A4:8A:56:BC
    Fingerprint (SHA1):
        0F:4F:E2:E8:B9:62:B5:C5:7C:4F:13:B2:03:5F:61:27:75:AD:D9:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11895: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154670 (0x1dee45ae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:48:12 2017
            Not After : Mon May 02 15:48:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:dc:e6:35:a9:fd:70:d9:e5:92:ab:ff:e8:97:10:28:
                    6a:49:91:15:ca:bd:6e:de:91:48:69:de:59:86:34:49:
                    16:7f:63:43:0a:b7:a8:6e:ff:5a:1c:e0:40:2b:1d:af:
                    3e:8e:a0:1d:a9:ad:b1:c4:3f:66:4e:f4:62:a1:fd:68:
                    f7:15:48:ef:a3:19:33:36:68:71:87:20:b7:b8:c7:9c:
                    e1:92:38:d3:21:15:ed:17:77:1f:b6:4e:7f:da:69:3a:
                    d9:fd:ac:d4:cc:f8:0e:01:e5:e1:98:22:d4:fd:dd:27:
                    46:9f:6d:37:08:b9:b5:94:d3:2e:c3:ae:21:8b:e5:09:
                    74:ab:20:7c:23:ed:28:c1:ea:35:56:8d:78:ba:ce:e9:
                    ec:ad:8d:41:0f:f8:f6:c7:4c:fd:6f:8f:42:62:5f:55:
                    d4:bf:77:21:4b:4d:32:15:20:50:f2:3d:ca:fb:6b:77:
                    8f:3e:90:9f:84:72:b4:2b:01:e7:e7:f7:3c:7c:1d:50:
                    7e:1b:a2:e9:77:9a:b6:ba:84:de:e4:cd:43:72:77:ea:
                    fa:da:7e:e7:1a:ba:01:c8:8e:72:1b:be:12:cd:db:5e:
                    66:4b:e4:aa:42:28:fe:ed:a3:6a:5d:cc:c1:18:78:0f:
                    c1:18:a2:bf:23:f0:10:41:ce:e3:56:fc:21:07:82:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e9:c8:64:f7:b8:af:f5:26:9f:a6:52:8d:07:0d:b6:
        dc:2d:4b:ef:54:b5:59:83:37:c3:5c:e5:89:3d:04:23:
        26:c3:ba:e1:2b:f9:63:f3:7d:b5:6a:99:19:fb:35:ae:
        0b:c4:8b:33:24:9c:40:b6:b8:7e:aa:fc:d9:8b:98:b1:
        41:70:96:42:f4:07:9d:1b:78:a3:d5:e9:06:3d:50:a8:
        07:09:04:5e:d6:7a:e6:59:a6:6a:d3:8e:73:da:53:35:
        61:53:e5:03:f7:fd:c9:3e:ef:51:bd:85:d5:33:42:b0:
        f6:be:e2:3b:82:5d:1b:06:0a:78:6b:eb:8a:1a:59:57:
        68:53:c1:fc:2f:13:07:90:ff:9f:ab:9c:49:fe:70:7f:
        ad:9b:ea:69:06:2a:d6:a4:30:a3:cb:1f:b9:a6:ab:51:
        20:20:6a:71:f0:e2:2a:1c:47:01:2c:83:8d:70:74:b7:
        ae:37:55:dd:2a:00:5d:40:45:84:41:37:28:90:cc:b6:
        96:1c:a8:cc:a2:72:1a:d5:f1:97:ef:29:2c:4d:14:5e:
        2e:40:49:29:32:49:3c:68:1a:c5:7c:7c:91:f1:ee:45:
        44:ab:f1:e7:8d:e5:ce:9d:9e:e5:02:d5:4b:79:63:34:
        8d:35:42:fd:5b:b0:20:99:08:cb:f8:86:09:68:8a:8f
    Fingerprint (SHA-256):
        82:4C:07:80:AC:20:EE:94:C7:35:17:BF:3A:95:6B:10:75:44:96:05:5A:5F:FF:4A:92:C6:49:F7:A4:8A:56:BC
    Fingerprint (SHA1):
        0F:4F:E2:E8:B9:62:B5:C5:7C:4F:13:B2:03:5F:61:27:75:AD:D9:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11896: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #11897: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154669 (0x1dee45ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:48:11 2017
            Not After : Mon May 02 15:48:11 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:a7:e7:2e:80:d4:ed:9e:58:d3:8e:51:1c:8f:08:73:
                    50:42:9b:80:65:90:a2:2b:97:67:3d:7f:26:2a:7f:05:
                    de:fc:c2:6b:42:f4:26:b4:95:34:79:43:2c:69:c3:c1:
                    37:b7:06:6e:ca:e2:93:be:5c:eb:05:d4:d1:6a:f9:2d:
                    6c:75:2f:d9:68:21:2e:16:38:e1:13:a3:5f:8d:66:2b:
                    6d:90:be:06:44:b3:30:2c:aa:71:ef:62:d4:ba:c0:4d:
                    ac:3a:2b:eb:32:2b:63:6c:9b:40:ba:00:d1:ac:82:5a:
                    ca:9a:07:49:0f:e4:f8:c5:4e:e7:d4:df:2c:19:56:b0:
                    46:f8:47:c0:ba:a8:5e:7d:62:d1:81:9e:43:52:1e:f9:
                    c1:16:c0:ca:93:a7:9c:c4:02:ab:7c:4e:a1:63:ca:d3:
                    55:8c:9e:2e:16:c7:a2:81:40:68:5f:56:e5:89:e5:0c:
                    38:58:50:ae:08:5c:10:ce:e9:ac:76:4f:88:04:95:ca:
                    2a:24:4e:62:2f:99:8c:a0:2f:c1:5a:5a:8e:62:82:0f:
                    e4:2c:10:9f:0d:e2:0a:21:6e:06:89:a4:6f:ed:bd:b2:
                    e3:c1:af:a2:43:2c:6b:23:4b:86:48:40:01:42:f5:37:
                    19:9e:3a:48:96:49:27:e1:7e:32:ab:62:24:89:eb:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:4c:23:ce:cd:32:43:82:f5:ba:69:69:c9:30:68:e0:
        d9:36:1f:8f:40:b3:fb:5d:b9:7b:f1:88:66:f8:75:0a:
        43:b8:fb:56:c9:48:7d:50:04:49:25:19:bc:77:90:50:
        c2:23:7f:6a:4a:4e:44:1b:51:55:bd:5c:e5:59:7c:be:
        16:1a:97:e1:9f:d6:2a:7e:d8:26:41:ae:b7:79:89:9a:
        51:0b:10:2d:ae:f2:00:b2:e1:d9:ae:27:ae:7e:46:f8:
        88:f1:fc:ec:a4:12:8d:89:4e:44:d1:df:8f:e2:08:e7:
        f2:51:38:38:cc:0d:db:1e:b2:3c:f9:65:a2:e0:00:43:
        f4:4a:15:e7:1f:59:0d:13:a2:cc:d2:be:8a:06:84:a2:
        87:fb:39:0b:24:8a:8b:1c:d1:c0:9f:f8:45:8a:44:44:
        7d:c8:d8:a1:7d:d6:73:3d:14:15:b2:e8:df:b3:01:42:
        f5:97:be:6f:88:15:f4:ef:4d:c0:4c:ff:15:7a:29:5a:
        f7:9b:00:a7:cb:a7:55:97:28:48:fb:09:47:b6:d3:a4:
        df:b7:b5:af:90:3d:36:14:fc:68:ba:ce:b8:0a:d4:6b:
        24:60:cc:05:5b:65:af:2e:45:2d:1a:1f:06:1c:f2:b7:
        9b:64:dc:0d:54:9a:bf:77:f1:03:b3:a9:3c:51:94:62
    Fingerprint (SHA-256):
        CC:E9:92:9E:6E:DB:A9:34:B4:29:ED:0D:8D:91:26:07:E0:EC:AD:89:DC:D3:22:03:07:B9:86:6D:DB:F4:8C:F5
    Fingerprint (SHA1):
        0B:6D:27:C4:2E:BA:2A:86:AB:22:CE:86:30:9E:DE:A4:AC:0A:45:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11898: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154670 (0x1dee45ae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:48:12 2017
            Not After : Mon May 02 15:48:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:dc:e6:35:a9:fd:70:d9:e5:92:ab:ff:e8:97:10:28:
                    6a:49:91:15:ca:bd:6e:de:91:48:69:de:59:86:34:49:
                    16:7f:63:43:0a:b7:a8:6e:ff:5a:1c:e0:40:2b:1d:af:
                    3e:8e:a0:1d:a9:ad:b1:c4:3f:66:4e:f4:62:a1:fd:68:
                    f7:15:48:ef:a3:19:33:36:68:71:87:20:b7:b8:c7:9c:
                    e1:92:38:d3:21:15:ed:17:77:1f:b6:4e:7f:da:69:3a:
                    d9:fd:ac:d4:cc:f8:0e:01:e5:e1:98:22:d4:fd:dd:27:
                    46:9f:6d:37:08:b9:b5:94:d3:2e:c3:ae:21:8b:e5:09:
                    74:ab:20:7c:23:ed:28:c1:ea:35:56:8d:78:ba:ce:e9:
                    ec:ad:8d:41:0f:f8:f6:c7:4c:fd:6f:8f:42:62:5f:55:
                    d4:bf:77:21:4b:4d:32:15:20:50:f2:3d:ca:fb:6b:77:
                    8f:3e:90:9f:84:72:b4:2b:01:e7:e7:f7:3c:7c:1d:50:
                    7e:1b:a2:e9:77:9a:b6:ba:84:de:e4:cd:43:72:77:ea:
                    fa:da:7e:e7:1a:ba:01:c8:8e:72:1b:be:12:cd:db:5e:
                    66:4b:e4:aa:42:28:fe:ed:a3:6a:5d:cc:c1:18:78:0f:
                    c1:18:a2:bf:23:f0:10:41:ce:e3:56:fc:21:07:82:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e9:c8:64:f7:b8:af:f5:26:9f:a6:52:8d:07:0d:b6:
        dc:2d:4b:ef:54:b5:59:83:37:c3:5c:e5:89:3d:04:23:
        26:c3:ba:e1:2b:f9:63:f3:7d:b5:6a:99:19:fb:35:ae:
        0b:c4:8b:33:24:9c:40:b6:b8:7e:aa:fc:d9:8b:98:b1:
        41:70:96:42:f4:07:9d:1b:78:a3:d5:e9:06:3d:50:a8:
        07:09:04:5e:d6:7a:e6:59:a6:6a:d3:8e:73:da:53:35:
        61:53:e5:03:f7:fd:c9:3e:ef:51:bd:85:d5:33:42:b0:
        f6:be:e2:3b:82:5d:1b:06:0a:78:6b:eb:8a:1a:59:57:
        68:53:c1:fc:2f:13:07:90:ff:9f:ab:9c:49:fe:70:7f:
        ad:9b:ea:69:06:2a:d6:a4:30:a3:cb:1f:b9:a6:ab:51:
        20:20:6a:71:f0:e2:2a:1c:47:01:2c:83:8d:70:74:b7:
        ae:37:55:dd:2a:00:5d:40:45:84:41:37:28:90:cc:b6:
        96:1c:a8:cc:a2:72:1a:d5:f1:97:ef:29:2c:4d:14:5e:
        2e:40:49:29:32:49:3c:68:1a:c5:7c:7c:91:f1:ee:45:
        44:ab:f1:e7:8d:e5:ce:9d:9e:e5:02:d5:4b:79:63:34:
        8d:35:42:fd:5b:b0:20:99:08:cb:f8:86:09:68:8a:8f
    Fingerprint (SHA-256):
        82:4C:07:80:AC:20:EE:94:C7:35:17:BF:3A:95:6B:10:75:44:96:05:5A:5F:FF:4A:92:C6:49:F7:A4:8A:56:BC
    Fingerprint (SHA1):
        0F:4F:E2:E8:B9:62:B5:C5:7C:4F:13:B2:03:5F:61:27:75:AD:D9:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11899: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154670 (0x1dee45ae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:48:12 2017
            Not After : Mon May 02 15:48:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:dc:e6:35:a9:fd:70:d9:e5:92:ab:ff:e8:97:10:28:
                    6a:49:91:15:ca:bd:6e:de:91:48:69:de:59:86:34:49:
                    16:7f:63:43:0a:b7:a8:6e:ff:5a:1c:e0:40:2b:1d:af:
                    3e:8e:a0:1d:a9:ad:b1:c4:3f:66:4e:f4:62:a1:fd:68:
                    f7:15:48:ef:a3:19:33:36:68:71:87:20:b7:b8:c7:9c:
                    e1:92:38:d3:21:15:ed:17:77:1f:b6:4e:7f:da:69:3a:
                    d9:fd:ac:d4:cc:f8:0e:01:e5:e1:98:22:d4:fd:dd:27:
                    46:9f:6d:37:08:b9:b5:94:d3:2e:c3:ae:21:8b:e5:09:
                    74:ab:20:7c:23:ed:28:c1:ea:35:56:8d:78:ba:ce:e9:
                    ec:ad:8d:41:0f:f8:f6:c7:4c:fd:6f:8f:42:62:5f:55:
                    d4:bf:77:21:4b:4d:32:15:20:50:f2:3d:ca:fb:6b:77:
                    8f:3e:90:9f:84:72:b4:2b:01:e7:e7:f7:3c:7c:1d:50:
                    7e:1b:a2:e9:77:9a:b6:ba:84:de:e4:cd:43:72:77:ea:
                    fa:da:7e:e7:1a:ba:01:c8:8e:72:1b:be:12:cd:db:5e:
                    66:4b:e4:aa:42:28:fe:ed:a3:6a:5d:cc:c1:18:78:0f:
                    c1:18:a2:bf:23:f0:10:41:ce:e3:56:fc:21:07:82:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e9:c8:64:f7:b8:af:f5:26:9f:a6:52:8d:07:0d:b6:
        dc:2d:4b:ef:54:b5:59:83:37:c3:5c:e5:89:3d:04:23:
        26:c3:ba:e1:2b:f9:63:f3:7d:b5:6a:99:19:fb:35:ae:
        0b:c4:8b:33:24:9c:40:b6:b8:7e:aa:fc:d9:8b:98:b1:
        41:70:96:42:f4:07:9d:1b:78:a3:d5:e9:06:3d:50:a8:
        07:09:04:5e:d6:7a:e6:59:a6:6a:d3:8e:73:da:53:35:
        61:53:e5:03:f7:fd:c9:3e:ef:51:bd:85:d5:33:42:b0:
        f6:be:e2:3b:82:5d:1b:06:0a:78:6b:eb:8a:1a:59:57:
        68:53:c1:fc:2f:13:07:90:ff:9f:ab:9c:49:fe:70:7f:
        ad:9b:ea:69:06:2a:d6:a4:30:a3:cb:1f:b9:a6:ab:51:
        20:20:6a:71:f0:e2:2a:1c:47:01:2c:83:8d:70:74:b7:
        ae:37:55:dd:2a:00:5d:40:45:84:41:37:28:90:cc:b6:
        96:1c:a8:cc:a2:72:1a:d5:f1:97:ef:29:2c:4d:14:5e:
        2e:40:49:29:32:49:3c:68:1a:c5:7c:7c:91:f1:ee:45:
        44:ab:f1:e7:8d:e5:ce:9d:9e:e5:02:d5:4b:79:63:34:
        8d:35:42:fd:5b:b0:20:99:08:cb:f8:86:09:68:8a:8f
    Fingerprint (SHA-256):
        82:4C:07:80:AC:20:EE:94:C7:35:17:BF:3A:95:6B:10:75:44:96:05:5A:5F:FF:4A:92:C6:49:F7:A4:8A:56:BC
    Fingerprint (SHA1):
        0F:4F:E2:E8:B9:62:B5:C5:7C:4F:13:B2:03:5F:61:27:75:AD:D9:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11900: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11901: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154677 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11902: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11903: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11904: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154678 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11905: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11906: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #11907: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11908: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502154679   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11909: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11910: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #11911: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11912: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502154680   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11913: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11914: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11915: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11916: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502154681 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11917: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11918: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502154682 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11919: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11920: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #11921: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11922: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11923: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154683   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11924: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11925: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11926: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11927: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154684   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11928: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11929: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11930: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11931: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154685   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11932: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11933: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11934: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11935: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154686   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11936: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11937: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11938: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154677 (0x1dee45b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:48:16 2017
            Not After : Mon May 02 15:48:16 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:d6:1a:ba:aa:7a:fb:67:2e:01:bd:b3:07:b7:79:cb:
                    1d:97:1f:75:c7:b7:d4:72:79:81:c8:00:8c:d6:39:e9:
                    24:99:c2:48:5b:25:c4:da:41:79:23:45:c5:bd:89:6b:
                    6b:17:97:c5:d8:f7:40:0e:78:4d:1c:31:9c:46:da:bf:
                    d4:8e:77:48:06:4b:2f:79:e0:99:83:32:d9:bc:06:4c:
                    8f:9c:0b:e4:36:e6:59:32:52:7a:19:ff:55:ca:8f:2e:
                    37:d7:d4:be:62:ce:ee:1b:a8:0f:4b:dd:cf:d1:2e:8e:
                    a9:9f:da:dd:13:84:30:c7:c1:42:e8:f4:37:7c:be:53:
                    22:e0:4b:05:b6:0e:da:b8:1d:57:77:15:4a:2b:c5:57:
                    0d:16:95:0b:9b:d9:ec:5d:c3:5e:16:c5:af:07:f2:04:
                    b8:90:91:2b:5f:3a:59:14:84:bf:a4:fe:a7:f6:93:5f:
                    15:7b:f6:58:20:09:d3:b1:3f:5d:ab:f2:c3:3a:95:7e:
                    8d:de:33:b6:b3:04:c5:27:d6:fd:e6:ea:50:f8:60:da:
                    5f:07:7d:2e:e1:82:7f:b0:0d:d4:f8:c2:d2:66:44:76:
                    6d:60:52:ff:7d:7d:c1:a9:86:1b:af:b5:c1:98:62:3f:
                    ad:0b:d6:19:85:cf:04:8c:ef:2d:bc:00:3f:4d:50:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:2d:32:1e:04:fb:ed:1c:22:34:b2:79:21:67:0b:4d:
        09:ef:80:89:56:e6:b6:e4:53:e2:b3:6e:23:8d:7d:58:
        da:10:ba:f3:44:c2:53:f3:68:5a:98:0d:1b:fe:ed:73:
        2d:f1:a2:ca:c3:e2:f8:a5:e0:9e:b7:1b:a7:08:c7:10:
        b0:0a:2c:a4:c9:e1:76:38:af:95:4e:6a:ac:d7:ef:74:
        fd:d2:30:cf:3a:59:84:92:9f:8b:7b:11:02:09:c9:95:
        20:78:8d:26:a3:70:34:3b:a6:1c:65:7b:d6:39:37:1c:
        b4:c4:3a:20:97:9b:4b:c8:83:35:e0:65:d4:6b:42:21:
        f6:76:fb:72:7f:ed:df:4f:51:b6:1b:85:2c:da:74:af:
        92:cd:15:0d:49:47:ff:a7:66:1f:a9:82:82:bb:c4:ba:
        d2:6e:b3:bd:cb:37:c9:44:44:23:d9:5d:46:0c:f1:83:
        a8:cd:6f:b1:64:a5:12:8c:f8:cb:90:19:d1:87:56:fe:
        87:82:9c:cd:21:ca:a6:e4:4c:50:c1:88:5a:0f:02:0e:
        c5:67:22:43:72:1a:cf:d6:02:95:35:3a:e6:f0:9b:40:
        bd:b5:77:8f:f1:4d:13:35:a1:8b:f0:7c:91:2f:07:e7:
        df:99:16:cc:3d:85:cd:f3:ff:5b:a3:ae:db:ff:9f:9f
    Fingerprint (SHA-256):
        7A:2E:B1:29:3C:2A:44:B8:C5:B4:F3:51:4C:CA:91:F0:3E:85:F6:68:D9:1F:59:BC:85:86:35:CF:0B:1A:D5:C7
    Fingerprint (SHA1):
        7F:FC:D5:9D:5B:3B:41:7D:43:AF:AB:B6:3A:EF:A1:7C:11:48:06:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11939: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11940: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11941: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11942: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11943: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11944: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11945: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11946: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11947: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154678 (0x1dee45b6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:48:17 2017
            Not After : Mon May 02 15:48:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:ac:41:ca:7c:6a:eb:dc:e1:9c:d8:b3:a3:4d:c8:3e:
                    56:a8:8c:2b:2d:ef:06:f4:95:e6:07:d5:9c:ab:bc:ff:
                    2c:43:27:d8:4f:f7:b0:b2:ed:24:26:60:a0:50:c9:0b:
                    65:99:7c:c7:66:0d:04:60:24:e9:39:a2:63:20:73:ce:
                    00:8f:62:e6:cb:ca:f4:12:61:73:da:16:c7:ec:fe:b3:
                    d7:3e:fe:54:6f:45:00:1d:12:38:a6:ef:90:aa:1e:25:
                    05:75:94:1f:a6:6b:4c:2b:27:54:dd:6c:d3:8b:cc:d1:
                    8f:dc:5f:37:1e:96:94:96:2a:71:23:83:8a:6a:98:89:
                    dc:7b:35:68:a5:3f:13:fd:4e:d2:3d:3c:20:b3:b4:15:
                    23:b8:c0:6f:a5:dc:52:d4:40:6c:bf:3e:fd:b9:ac:b8:
                    13:cd:e3:3a:f2:33:a7:c5:cd:fc:4f:a8:7f:d6:60:7e:
                    ba:34:0c:90:f4:17:d1:a9:8e:07:83:68:0d:87:58:d6:
                    76:1b:f8:0b:b4:77:8b:76:82:85:49:a9:e5:6f:59:e2:
                    b8:bf:2c:5a:e4:29:f4:34:4f:d7:86:90:7e:de:80:e2:
                    65:f9:1e:3d:fb:9b:f7:27:f4:e3:6c:34:3e:b2:24:f4:
                    e1:82:d7:8f:37:79:e7:82:0a:ad:e9:77:9f:c6:65:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:52:ff:fb:71:c1:7b:16:17:3e:b5:ef:5f:93:8f:2b:
        4d:ab:84:ab:73:78:7c:fc:4e:0f:58:67:5d:4d:a4:9e:
        2a:dc:4f:c2:cd:99:c6:19:2f:1f:c3:20:11:54:c7:1d:
        58:99:7d:8f:84:60:b3:e5:ec:5f:18:4c:79:6c:3a:ff:
        47:14:10:51:74:bc:6a:2f:3a:ed:a4:c9:a8:55:ca:66:
        c3:87:a6:18:f3:49:92:e6:74:f3:0c:e0:d5:64:fb:5e:
        5a:fa:4b:0a:83:de:8a:ec:82:4d:a7:13:61:8b:22:aa:
        17:fe:04:5d:b8:9d:86:63:91:0d:08:79:8e:03:f1:dc:
        a9:71:d9:77:28:d1:a2:92:e7:67:31:1d:df:17:f2:f2:
        69:74:92:bc:aa:c1:5a:6f:7c:f6:54:26:f2:e7:22:d3:
        db:15:bb:e6:22:f1:6b:a9:a7:75:f8:de:9e:6c:e8:8b:
        47:da:d4:a0:36:c1:55:a6:30:f9:82:66:75:14:57:d5:
        8d:c3:7a:e2:0a:37:03:00:d2:1f:00:d9:a7:50:66:d8:
        a2:0c:6f:55:9c:1c:86:e2:16:e6:12:a2:19:fa:a5:f3:
        d0:fd:c6:8d:85:b2:ee:94:a2:09:86:42:fe:be:07:ea:
        e4:a6:18:9f:25:dc:af:64:13:10:a4:a7:a9:c2:05:ef
    Fingerprint (SHA-256):
        46:F7:D9:8D:4E:22:2C:D2:81:07:16:5D:14:9D:1A:3D:2C:D6:23:9F:74:C8:75:AF:A9:18:4E:B8:4A:FE:8B:54
    Fingerprint (SHA1):
        EB:80:F0:4B:50:04:B4:81:81:C9:21:CC:51:3A:BE:9B:74:CE:19:3B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11948: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11949: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11950: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11951: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11952: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11953: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11954: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #11955: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #11956: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #11957: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #11958: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #11959: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #11960: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #11961: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11962: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11963: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #11964: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #11965: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11966: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154687 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11967: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11968: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11969: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11970: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154688   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11971: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11972: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11973: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11974: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154689   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11975: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11976: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11977: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11978: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502154690   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11979: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11980: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11981: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11982: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154691   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11983: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11984: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11985: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11986: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502154692   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11987: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11988: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11989: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11990: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502154693   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11991: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11992: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #11993: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11994: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502154694   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11995: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11996: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11997: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11998: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502154695   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11999: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12000: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12001: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154687 (0x1dee45bf)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:23 2017
            Not After : Mon May 02 15:48:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    84:01:ce:9c:71:b2:fc:f0:b2:da:71:3e:a3:e7:2d:3f:
                    35:14:14:ca:77:00:6d:dd:a4:bf:43:df:24:4a:61:52:
                    b8:08:5d:18:fa:93:f9:10:fb:7b:42:0d:8f:6c:26:1e:
                    d5:14:55:d8:db:87:df:d0:ce:b2:0a:6e:f1:93:80:37:
                    81:1a:27:56:53:87:2e:17:37:e1:b3:68:47:68:15:4e:
                    33:77:c0:3d:ac:92:a0:d1:c6:3e:1d:74:2c:13:c2:d4:
                    e6:56:9a:74:fa:75:73:3e:e5:02:cb:91:bf:af:86:da:
                    2c:b7:80:47:25:f9:e9:8e:13:ff:55:c1:7a:9c:98:f9:
                    1f:f2:8b:f0:72:17:55:ff:ef:b0:f0:95:a2:cf:9a:53:
                    e7:0f:f6:54:a6:74:9b:81:53:4b:72:2d:4e:79:4f:7e:
                    7f:ce:81:45:e8:19:ce:70:fa:cd:f9:d4:fd:44:68:3f:
                    2d:93:a7:d5:06:df:e8:64:c5:50:ba:f3:06:7d:d7:67:
                    a3:3a:4e:d9:88:b5:39:55:eb:0a:53:26:4d:43:29:a6:
                    52:04:9a:01:db:d1:fc:a1:d2:ef:55:a1:11:c9:4a:ea:
                    d8:bc:e7:14:77:50:a3:36:16:4c:17:83:aa:83:f2:76:
                    e9:b7:29:0e:39:06:17:e6:c9:75:e6:e0:8c:c8:70:ec
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:42:3e:ba:9b:9c:7c:e5:f8:fc:21:f2:cd:
        3e:49:0f:0e:60:30:5e:99:7f:5a:b8:a9:e0:f3:4a:5a:
        02:1d:00:b3:87:dd:42:23:45:a4:6f:14:c0:e4:22:d5:
        24:62:d4:cc:17:a2:22:c6:57:7d:a9:89:d5:2d:7d
    Fingerprint (SHA-256):
        9A:BC:4D:45:C5:9D:02:DA:18:75:A7:A3:87:C3:A8:79:AD:3B:8C:40:E7:3F:25:67:98:C0:90:FF:CE:11:AF:96
    Fingerprint (SHA1):
        BB:4F:B1:1D:98:27:7B:CE:AF:E7:58:58:99:A8:A0:55:E0:A9:B6:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12002: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154687 (0x1dee45bf)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:23 2017
            Not After : Mon May 02 15:48:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    84:01:ce:9c:71:b2:fc:f0:b2:da:71:3e:a3:e7:2d:3f:
                    35:14:14:ca:77:00:6d:dd:a4:bf:43:df:24:4a:61:52:
                    b8:08:5d:18:fa:93:f9:10:fb:7b:42:0d:8f:6c:26:1e:
                    d5:14:55:d8:db:87:df:d0:ce:b2:0a:6e:f1:93:80:37:
                    81:1a:27:56:53:87:2e:17:37:e1:b3:68:47:68:15:4e:
                    33:77:c0:3d:ac:92:a0:d1:c6:3e:1d:74:2c:13:c2:d4:
                    e6:56:9a:74:fa:75:73:3e:e5:02:cb:91:bf:af:86:da:
                    2c:b7:80:47:25:f9:e9:8e:13:ff:55:c1:7a:9c:98:f9:
                    1f:f2:8b:f0:72:17:55:ff:ef:b0:f0:95:a2:cf:9a:53:
                    e7:0f:f6:54:a6:74:9b:81:53:4b:72:2d:4e:79:4f:7e:
                    7f:ce:81:45:e8:19:ce:70:fa:cd:f9:d4:fd:44:68:3f:
                    2d:93:a7:d5:06:df:e8:64:c5:50:ba:f3:06:7d:d7:67:
                    a3:3a:4e:d9:88:b5:39:55:eb:0a:53:26:4d:43:29:a6:
                    52:04:9a:01:db:d1:fc:a1:d2:ef:55:a1:11:c9:4a:ea:
                    d8:bc:e7:14:77:50:a3:36:16:4c:17:83:aa:83:f2:76:
                    e9:b7:29:0e:39:06:17:e6:c9:75:e6:e0:8c:c8:70:ec
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:42:3e:ba:9b:9c:7c:e5:f8:fc:21:f2:cd:
        3e:49:0f:0e:60:30:5e:99:7f:5a:b8:a9:e0:f3:4a:5a:
        02:1d:00:b3:87:dd:42:23:45:a4:6f:14:c0:e4:22:d5:
        24:62:d4:cc:17:a2:22:c6:57:7d:a9:89:d5:2d:7d
    Fingerprint (SHA-256):
        9A:BC:4D:45:C5:9D:02:DA:18:75:A7:A3:87:C3:A8:79:AD:3B:8C:40:E7:3F:25:67:98:C0:90:FF:CE:11:AF:96
    Fingerprint (SHA1):
        BB:4F:B1:1D:98:27:7B:CE:AF:E7:58:58:99:A8:A0:55:E0:A9:B6:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12003: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154687 (0x1dee45bf)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:23 2017
            Not After : Mon May 02 15:48:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    84:01:ce:9c:71:b2:fc:f0:b2:da:71:3e:a3:e7:2d:3f:
                    35:14:14:ca:77:00:6d:dd:a4:bf:43:df:24:4a:61:52:
                    b8:08:5d:18:fa:93:f9:10:fb:7b:42:0d:8f:6c:26:1e:
                    d5:14:55:d8:db:87:df:d0:ce:b2:0a:6e:f1:93:80:37:
                    81:1a:27:56:53:87:2e:17:37:e1:b3:68:47:68:15:4e:
                    33:77:c0:3d:ac:92:a0:d1:c6:3e:1d:74:2c:13:c2:d4:
                    e6:56:9a:74:fa:75:73:3e:e5:02:cb:91:bf:af:86:da:
                    2c:b7:80:47:25:f9:e9:8e:13:ff:55:c1:7a:9c:98:f9:
                    1f:f2:8b:f0:72:17:55:ff:ef:b0:f0:95:a2:cf:9a:53:
                    e7:0f:f6:54:a6:74:9b:81:53:4b:72:2d:4e:79:4f:7e:
                    7f:ce:81:45:e8:19:ce:70:fa:cd:f9:d4:fd:44:68:3f:
                    2d:93:a7:d5:06:df:e8:64:c5:50:ba:f3:06:7d:d7:67:
                    a3:3a:4e:d9:88:b5:39:55:eb:0a:53:26:4d:43:29:a6:
                    52:04:9a:01:db:d1:fc:a1:d2:ef:55:a1:11:c9:4a:ea:
                    d8:bc:e7:14:77:50:a3:36:16:4c:17:83:aa:83:f2:76:
                    e9:b7:29:0e:39:06:17:e6:c9:75:e6:e0:8c:c8:70:ec
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:42:3e:ba:9b:9c:7c:e5:f8:fc:21:f2:cd:
        3e:49:0f:0e:60:30:5e:99:7f:5a:b8:a9:e0:f3:4a:5a:
        02:1d:00:b3:87:dd:42:23:45:a4:6f:14:c0:e4:22:d5:
        24:62:d4:cc:17:a2:22:c6:57:7d:a9:89:d5:2d:7d
    Fingerprint (SHA-256):
        9A:BC:4D:45:C5:9D:02:DA:18:75:A7:A3:87:C3:A8:79:AD:3B:8C:40:E7:3F:25:67:98:C0:90:FF:CE:11:AF:96
    Fingerprint (SHA1):
        BB:4F:B1:1D:98:27:7B:CE:AF:E7:58:58:99:A8:A0:55:E0:A9:B6:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #12004: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154687 (0x1dee45bf)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:23 2017
            Not After : Mon May 02 15:48:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    84:01:ce:9c:71:b2:fc:f0:b2:da:71:3e:a3:e7:2d:3f:
                    35:14:14:ca:77:00:6d:dd:a4:bf:43:df:24:4a:61:52:
                    b8:08:5d:18:fa:93:f9:10:fb:7b:42:0d:8f:6c:26:1e:
                    d5:14:55:d8:db:87:df:d0:ce:b2:0a:6e:f1:93:80:37:
                    81:1a:27:56:53:87:2e:17:37:e1:b3:68:47:68:15:4e:
                    33:77:c0:3d:ac:92:a0:d1:c6:3e:1d:74:2c:13:c2:d4:
                    e6:56:9a:74:fa:75:73:3e:e5:02:cb:91:bf:af:86:da:
                    2c:b7:80:47:25:f9:e9:8e:13:ff:55:c1:7a:9c:98:f9:
                    1f:f2:8b:f0:72:17:55:ff:ef:b0:f0:95:a2:cf:9a:53:
                    e7:0f:f6:54:a6:74:9b:81:53:4b:72:2d:4e:79:4f:7e:
                    7f:ce:81:45:e8:19:ce:70:fa:cd:f9:d4:fd:44:68:3f:
                    2d:93:a7:d5:06:df:e8:64:c5:50:ba:f3:06:7d:d7:67:
                    a3:3a:4e:d9:88:b5:39:55:eb:0a:53:26:4d:43:29:a6:
                    52:04:9a:01:db:d1:fc:a1:d2:ef:55:a1:11:c9:4a:ea:
                    d8:bc:e7:14:77:50:a3:36:16:4c:17:83:aa:83:f2:76:
                    e9:b7:29:0e:39:06:17:e6:c9:75:e6:e0:8c:c8:70:ec
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:42:3e:ba:9b:9c:7c:e5:f8:fc:21:f2:cd:
        3e:49:0f:0e:60:30:5e:99:7f:5a:b8:a9:e0:f3:4a:5a:
        02:1d:00:b3:87:dd:42:23:45:a4:6f:14:c0:e4:22:d5:
        24:62:d4:cc:17:a2:22:c6:57:7d:a9:89:d5:2d:7d
    Fingerprint (SHA-256):
        9A:BC:4D:45:C5:9D:02:DA:18:75:A7:A3:87:C3:A8:79:AD:3B:8C:40:E7:3F:25:67:98:C0:90:FF:CE:11:AF:96
    Fingerprint (SHA1):
        BB:4F:B1:1D:98:27:7B:CE:AF:E7:58:58:99:A8:A0:55:E0:A9:B6:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #12005: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12006: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12007: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12008: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12009: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12010: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12011: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12012: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12013: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12014: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12015: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12016: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12017: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12018: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12019: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12020: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #12021: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12022: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12023: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12024: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12025: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12026: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12027: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12028: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12029: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12030: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12031: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12032: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154832Z
nextupdate=20180502154832Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:48:32 2017
    Next Update: Wed May 02 15:48:32 2018
    CRL Extensions:
chains.sh: #12033: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154832Z
nextupdate=20180502154832Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:48:32 2017
    Next Update: Wed May 02 15:48:32 2018
    CRL Extensions:
chains.sh: #12034: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154832Z
nextupdate=20180502154832Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:48:32 2017
    Next Update: Wed May 02 15:48:32 2018
    CRL Extensions:
chains.sh: #12035: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154832Z
nextupdate=20180502154832Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:48:32 2017
    Next Update: Wed May 02 15:48:32 2018
    CRL Extensions:
chains.sh: #12036: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154833Z
addcert 14 20170502154833Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:48:33 2017
    Next Update: Wed May 02 15:48:32 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:48:33 2017
    CRL Extensions:
chains.sh: #12037: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154834Z
addcert 15 20170502154834Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:48:34 2017
    Next Update: Wed May 02 15:48:32 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:48:34 2017
    CRL Extensions:
chains.sh: #12038: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12039: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12040: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12041: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #12042: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #12043: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #12044: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #12045: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #12046: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #12047: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:28 2017
            Not After : Mon May 02 15:48:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:97:11:71:ce:73:68:b3:2d:99:f2:9f:7a:b1:55:69:
                    e9:c2:0a:26:c0:3c:b5:c7:14:03:bd:e0:a0:b1:a3:b2:
                    bc:0f:9a:58:a7:91:1d:a0:ca:6d:be:d3:8b:8f:fd:a4:
                    54:8d:82:fa:d5:a0:2b:b5:92:9c:d6:ce:a0:cb:4d:5f:
                    a5:e7:eb:89:fa:cb:b2:59:99:1d:38:27:d5:0e:f8:40:
                    e8:f4:d9:d4:97:c5:73:31:4d:4d:a9:12:e1:3c:78:41:
                    0e:ba:2a:1a:c7:90:93:70:a9:63:a3:9c:f4:0d:26:ca:
                    75:70:6f:20:f7:ad:be:da:ed:76:2f:35:82:5b:81:7d:
                    fd:45:c1:46:6f:ab:fb:66:98:3d:8b:4e:48:c2:7e:f9:
                    30:3f:37:4b:c9:42:76:f1:50:0d:a7:60:fd:f5:64:20:
                    6b:43:f5:7e:5e:8b:5c:2a:85:2f:79:19:d2:4c:a1:fa:
                    71:8f:dd:82:bd:fd:06:d1:ca:32:fc:50:a2:b0:49:d2:
                    07:c3:35:3b:44:68:be:fe:b1:16:d4:0d:50:7a:01:4c:
                    6b:47:0d:c5:ef:92:77:14:6b:49:d9:b4:e3:65:03:83:
                    12:78:de:01:23:74:c6:2a:de:a9:60:e4:59:94:1b:6b:
                    48:30:23:39:02:dd:ab:75:52:d8:97:fc:be:b2:64:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:35:e1:52:62:91:63:84:4d:59:d9:57:ee:c0:19:da:
        65:38:1f:f3:d7:12:71:f3:bf:ed:77:b2:54:c5:f9:9a:
        b1:c5:79:dc:7e:23:05:1d:f0:8c:a0:9b:a8:d4:f0:dd:
        25:08:11:8e:5b:7c:c3:90:08:02:05:94:cb:71:06:a7:
        dc:ad:48:5c:20:37:f8:56:7d:be:61:fb:d2:7a:32:da:
        fe:12:eb:55:52:3e:5f:8e:bc:e4:b0:88:21:69:c4:07:
        c6:36:7c:e9:10:93:7f:bd:7e:19:89:1c:07:fa:45:96:
        d9:a4:78:cc:87:d3:52:61:e9:04:8b:36:b3:ea:b2:eb:
        08:ca:b6:43:15:0f:a4:90:f4:9f:cc:98:09:ca:de:3d:
        4e:9e:35:7a:2e:57:87:a5:35:38:38:4e:b4:36:44:e9:
        af:90:31:90:c2:b4:c3:6d:0a:db:b9:bc:41:4f:89:64:
        fb:66:d1:87:9a:2e:cc:f2:97:4c:f5:c8:ee:2e:b2:90:
        26:39:3b:a7:38:71:ca:67:68:07:29:70:ce:54:22:21:
        54:7b:6f:ff:b1:89:d8:77:4c:05:4d:de:e2:53:d9:9f:
        8e:1a:2a:b5:ad:3a:73:f8:1d:f4:d2:9a:6e:54:e8:0c:
        b8:db:f9:91:5b:58:48:a7:25:ba:f9:24:cc:de:3c:2d
    Fingerprint (SHA-256):
        24:DA:81:DA:02:16:2E:E9:B1:EE:2D:28:85:89:33:04:AC:5F:66:AC:0C:CB:97:5D:3F:F9:92:05:E1:AD:90:2D
    Fingerprint (SHA1):
        5F:7D:2F:00:E9:C8:66:D3:17:B4:AA:14:BC:4F:3E:41:BC:AC:8C:43
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12048: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12049: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:28 2017
            Not After : Mon May 02 15:48:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:97:11:71:ce:73:68:b3:2d:99:f2:9f:7a:b1:55:69:
                    e9:c2:0a:26:c0:3c:b5:c7:14:03:bd:e0:a0:b1:a3:b2:
                    bc:0f:9a:58:a7:91:1d:a0:ca:6d:be:d3:8b:8f:fd:a4:
                    54:8d:82:fa:d5:a0:2b:b5:92:9c:d6:ce:a0:cb:4d:5f:
                    a5:e7:eb:89:fa:cb:b2:59:99:1d:38:27:d5:0e:f8:40:
                    e8:f4:d9:d4:97:c5:73:31:4d:4d:a9:12:e1:3c:78:41:
                    0e:ba:2a:1a:c7:90:93:70:a9:63:a3:9c:f4:0d:26:ca:
                    75:70:6f:20:f7:ad:be:da:ed:76:2f:35:82:5b:81:7d:
                    fd:45:c1:46:6f:ab:fb:66:98:3d:8b:4e:48:c2:7e:f9:
                    30:3f:37:4b:c9:42:76:f1:50:0d:a7:60:fd:f5:64:20:
                    6b:43:f5:7e:5e:8b:5c:2a:85:2f:79:19:d2:4c:a1:fa:
                    71:8f:dd:82:bd:fd:06:d1:ca:32:fc:50:a2:b0:49:d2:
                    07:c3:35:3b:44:68:be:fe:b1:16:d4:0d:50:7a:01:4c:
                    6b:47:0d:c5:ef:92:77:14:6b:49:d9:b4:e3:65:03:83:
                    12:78:de:01:23:74:c6:2a:de:a9:60:e4:59:94:1b:6b:
                    48:30:23:39:02:dd:ab:75:52:d8:97:fc:be:b2:64:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:35:e1:52:62:91:63:84:4d:59:d9:57:ee:c0:19:da:
        65:38:1f:f3:d7:12:71:f3:bf:ed:77:b2:54:c5:f9:9a:
        b1:c5:79:dc:7e:23:05:1d:f0:8c:a0:9b:a8:d4:f0:dd:
        25:08:11:8e:5b:7c:c3:90:08:02:05:94:cb:71:06:a7:
        dc:ad:48:5c:20:37:f8:56:7d:be:61:fb:d2:7a:32:da:
        fe:12:eb:55:52:3e:5f:8e:bc:e4:b0:88:21:69:c4:07:
        c6:36:7c:e9:10:93:7f:bd:7e:19:89:1c:07:fa:45:96:
        d9:a4:78:cc:87:d3:52:61:e9:04:8b:36:b3:ea:b2:eb:
        08:ca:b6:43:15:0f:a4:90:f4:9f:cc:98:09:ca:de:3d:
        4e:9e:35:7a:2e:57:87:a5:35:38:38:4e:b4:36:44:e9:
        af:90:31:90:c2:b4:c3:6d:0a:db:b9:bc:41:4f:89:64:
        fb:66:d1:87:9a:2e:cc:f2:97:4c:f5:c8:ee:2e:b2:90:
        26:39:3b:a7:38:71:ca:67:68:07:29:70:ce:54:22:21:
        54:7b:6f:ff:b1:89:d8:77:4c:05:4d:de:e2:53:d9:9f:
        8e:1a:2a:b5:ad:3a:73:f8:1d:f4:d2:9a:6e:54:e8:0c:
        b8:db:f9:91:5b:58:48:a7:25:ba:f9:24:cc:de:3c:2d
    Fingerprint (SHA-256):
        24:DA:81:DA:02:16:2E:E9:B1:EE:2D:28:85:89:33:04:AC:5F:66:AC:0C:CB:97:5D:3F:F9:92:05:E1:AD:90:2D
    Fingerprint (SHA1):
        5F:7D:2F:00:E9:C8:66:D3:17:B4:AA:14:BC:4F:3E:41:BC:AC:8C:43
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12050: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12051: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12052: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154696 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12053: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12054: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12055: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12056: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502154697   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12057: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12058: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12059: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154468.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12060: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502154442.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12061: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12062: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12063: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154468.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12064: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502154698   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12065: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12066: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12067: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154468.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12068: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502154443.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12069: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12070: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12071: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12072: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502154699   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12073: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12074: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12075: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154468.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12076: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502154444.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12077: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12078: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12079: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0-502154468.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12080: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9257/localhost-7616-CA0Root-502154445.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12081: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12082: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154841Z
nextupdate=20180502154841Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:48:41 2017
    Next Update: Wed May 02 15:48:41 2018
    CRL Extensions:
chains.sh: #12083: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154841Z
nextupdate=20180502154841Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:48:41 2017
    Next Update: Wed May 02 15:48:41 2018
    CRL Extensions:
chains.sh: #12084: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154841Z
nextupdate=20180502154841Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:48:41 2017
    Next Update: Wed May 02 15:48:41 2018
    CRL Extensions:
chains.sh: #12085: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154841Z
nextupdate=20180502154841Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:48:41 2017
    Next Update: Wed May 02 15:48:41 2018
    CRL Extensions:
chains.sh: #12086: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154842Z
addcert 20 20170502154842Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:48:42 2017
    Next Update: Wed May 02 15:48:41 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:48:42 2017
    CRL Extensions:
chains.sh: #12087: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154843Z
addcert 40 20170502154843Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:48:43 2017
    Next Update: Wed May 02 15:48:41 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:48:42 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:48:43 2017
    CRL Extensions:
chains.sh: #12088: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12089: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12090: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12091: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154696 (0x1dee45c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:36 2017
            Not After : Mon May 02 15:48:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:7f:04:92:f5:b7:2a:4b:eb:2f:71:5e:30:91:55:9f:
                    35:8d:d7:8d:21:f7:05:52:f5:78:c4:a8:99:f2:30:1f:
                    31:9a:d2:c6:5c:02:26:47:01:fb:fc:fc:56:64:a0:33:
                    0d:28:cb:06:d3:2c:85:32:98:72:7c:b5:b2:89:63:f3:
                    6b:f2:68:6d:13:33:57:85:da:81:8d:b0:e8:77:37:94:
                    ae:a9:3c:9e:c8:da:3f:f5:29:7c:3f:26:1d:ca:a9:88:
                    ed:49:07:45:89:88:26:34:e4:a0:d2:39:22:1e:5a:b2:
                    96:16:9e:52:74:41:40:af:a9:f5:53:12:77:1f:74:39:
                    98:c0:0d:fd:a9:a4:c4:41:d1:3d:f1:9b:fe:01:dd:c9:
                    b3:06:8b:50:e3:35:83:61:1a:29:2c:bc:da:88:ee:2a:
                    f0:8b:8d:21:48:a0:4a:43:4d:74:63:e9:5d:9a:79:fd:
                    eb:6f:9a:bf:4a:0e:e9:a8:02:9a:d8:5b:79:1c:69:dc:
                    3e:dc:1a:03:e4:40:fd:60:72:85:b5:66:08:c0:a8:e8:
                    3f:cd:e5:e7:d8:33:f8:c3:2c:31:ac:06:01:63:77:f7:
                    65:2b:fc:65:a7:32:da:95:43:68:04:2f:e0:bb:e3:9a:
                    a2:7b:3b:6d:ac:23:25:9c:47:82:2c:8f:9e:ea:33:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:08:5e:6f:02:c3:b2:07:ff:50:86:70:bd:42:fa:0c:
        cd:9c:1d:e7:29:af:74:48:58:7f:07:18:8b:98:8f:16:
        a8:77:f0:9b:8d:b7:23:68:a7:7f:9b:1a:83:d3:61:95:
        10:83:36:29:e9:d3:e5:f7:00:5f:19:d2:1d:7c:58:e5:
        eb:53:51:91:13:be:81:1f:04:8f:85:96:99:9f:20:5d:
        1d:fa:51:8a:c8:d8:9f:c9:c4:1f:a1:53:13:cf:83:61:
        a0:ff:15:c3:bf:44:cf:8d:70:27:26:b1:2f:69:7c:de:
        cf:0a:46:b0:78:39:38:6f:97:66:80:19:10:43:c4:17:
        b9:de:04:cd:53:bf:00:00:66:11:12:7f:d5:e6:32:ce:
        85:cd:86:26:52:75:46:e8:b1:aa:83:99:67:e1:51:10:
        9f:81:37:a0:f7:0d:a7:17:a0:b6:80:36:30:ee:57:17:
        f4:1f:b6:26:76:28:86:51:2d:47:5f:27:ff:10:b5:c1:
        14:b7:1c:cc:05:b7:db:24:5d:ff:0b:bb:26:1a:09:71:
        41:e3:6a:da:11:24:2c:83:60:b3:c0:ab:16:90:85:da:
        ec:28:69:51:8f:69:77:21:38:be:db:3d:80:f4:e5:7f:
        d8:d8:a5:97:51:46:85:56:de:95:fe:cf:f2:f6:8a:70
    Fingerprint (SHA-256):
        BC:75:E0:5E:B6:90:56:4B:F6:F7:E8:C2:2E:4E:85:8D:0F:2B:C4:7C:33:17:7E:E1:A0:55:7D:A0:87:41:F7:96
    Fingerprint (SHA1):
        11:6F:C0:1B:E3:2F:04:4B:C9:FE:D0:A0:F8:D0:52:7E:08:8B:26:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12092: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12093: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154696 (0x1dee45c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:48:36 2017
            Not After : Mon May 02 15:48:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:7f:04:92:f5:b7:2a:4b:eb:2f:71:5e:30:91:55:9f:
                    35:8d:d7:8d:21:f7:05:52:f5:78:c4:a8:99:f2:30:1f:
                    31:9a:d2:c6:5c:02:26:47:01:fb:fc:fc:56:64:a0:33:
                    0d:28:cb:06:d3:2c:85:32:98:72:7c:b5:b2:89:63:f3:
                    6b:f2:68:6d:13:33:57:85:da:81:8d:b0:e8:77:37:94:
                    ae:a9:3c:9e:c8:da:3f:f5:29:7c:3f:26:1d:ca:a9:88:
                    ed:49:07:45:89:88:26:34:e4:a0:d2:39:22:1e:5a:b2:
                    96:16:9e:52:74:41:40:af:a9:f5:53:12:77:1f:74:39:
                    98:c0:0d:fd:a9:a4:c4:41:d1:3d:f1:9b:fe:01:dd:c9:
                    b3:06:8b:50:e3:35:83:61:1a:29:2c:bc:da:88:ee:2a:
                    f0:8b:8d:21:48:a0:4a:43:4d:74:63:e9:5d:9a:79:fd:
                    eb:6f:9a:bf:4a:0e:e9:a8:02:9a:d8:5b:79:1c:69:dc:
                    3e:dc:1a:03:e4:40:fd:60:72:85:b5:66:08:c0:a8:e8:
                    3f:cd:e5:e7:d8:33:f8:c3:2c:31:ac:06:01:63:77:f7:
                    65:2b:fc:65:a7:32:da:95:43:68:04:2f:e0:bb:e3:9a:
                    a2:7b:3b:6d:ac:23:25:9c:47:82:2c:8f:9e:ea:33:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:08:5e:6f:02:c3:b2:07:ff:50:86:70:bd:42:fa:0c:
        cd:9c:1d:e7:29:af:74:48:58:7f:07:18:8b:98:8f:16:
        a8:77:f0:9b:8d:b7:23:68:a7:7f:9b:1a:83:d3:61:95:
        10:83:36:29:e9:d3:e5:f7:00:5f:19:d2:1d:7c:58:e5:
        eb:53:51:91:13:be:81:1f:04:8f:85:96:99:9f:20:5d:
        1d:fa:51:8a:c8:d8:9f:c9:c4:1f:a1:53:13:cf:83:61:
        a0:ff:15:c3:bf:44:cf:8d:70:27:26:b1:2f:69:7c:de:
        cf:0a:46:b0:78:39:38:6f:97:66:80:19:10:43:c4:17:
        b9:de:04:cd:53:bf:00:00:66:11:12:7f:d5:e6:32:ce:
        85:cd:86:26:52:75:46:e8:b1:aa:83:99:67:e1:51:10:
        9f:81:37:a0:f7:0d:a7:17:a0:b6:80:36:30:ee:57:17:
        f4:1f:b6:26:76:28:86:51:2d:47:5f:27:ff:10:b5:c1:
        14:b7:1c:cc:05:b7:db:24:5d:ff:0b:bb:26:1a:09:71:
        41:e3:6a:da:11:24:2c:83:60:b3:c0:ab:16:90:85:da:
        ec:28:69:51:8f:69:77:21:38:be:db:3d:80:f4:e5:7f:
        d8:d8:a5:97:51:46:85:56:de:95:fe:cf:f2:f6:8a:70
    Fingerprint (SHA-256):
        BC:75:E0:5E:B6:90:56:4B:F6:F7:E8:C2:2E:4E:85:8D:0F:2B:C4:7C:33:17:7E:E1:A0:55:7D:A0:87:41:F7:96
    Fingerprint (SHA1):
        11:6F:C0:1B:E3:2F:04:4B:C9:FE:D0:A0:F8:D0:52:7E:08:8B:26:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12094: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12095: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #12096: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154700 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12097: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #12098: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12099: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12100: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154701   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12101: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12102: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12103: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12104: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154702   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12105: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12106: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12107: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12108: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502154703   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12109: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12110: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #12111: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502154704 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12112: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #12113: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #12114: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12115: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502154705   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12116: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12117: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12118: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12119: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502154706   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12120: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12121: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #12122: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #12123: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #12124: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154700 (0x1dee45cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:48:45 2017
            Not After : Mon May 02 15:48:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b8:75:16:5a:2a:d6:ac:82:47:90:4d:83:a3:a7:83:
                    31:27:8a:31:ef:d3:89:57:b2:36:15:bf:9e:c7:c4:43:
                    7e:a4:3e:9d:97:4a:53:6f:94:87:b1:88:15:5a:e7:c8:
                    c4:7c:86:df:4d:ce:ec:86:ac:0c:d6:7b:87:d9:40:52:
                    11:e0:b7:5b:82:5d:3c:bb:5c:f4:c3:58:06:48:ca:0f:
                    74:07:6c:9a:7a:55:ef:e0:6b:43:d5:34:a0:d6:fe:7e:
                    4f:70:89:05:9f:e4:54:05:ff:0b:56:f7:79:f8:72:3d:
                    a2:7d:ff:80:05:11:32:99:7e:52:65:c9:7f:10:f1:f4:
                    55:e1:2b:83:75:18:90:68:45:39:29:5c:20:ba:79:76:
                    4e:0d:3e:c3:b5:4d:e9:f5:07:63:8f:9b:a6:0d:26:0d:
                    99:f8:05:ae:3c:1d:f2:cd:5c:5f:51:56:8c:8f:41:8e:
                    03:7b:5a:16:5d:8b:f2:0d:5c:46:42:42:13:ff:ab:40:
                    ce:85:79:55:ad:a0:1b:5d:b6:e4:6e:40:4e:64:1c:2b:
                    9a:98:16:35:93:89:34:bc:72:b3:f6:84:97:ae:69:bc:
                    2c:bf:45:c3:e8:3c:2c:ae:cf:49:28:63:f4:87:3f:b2:
                    42:a4:61:f3:6d:4b:65:f2:2c:27:3f:82:3b:e7:a5:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:2e:84:0c:34:fa:52:83:0d:2e:f3:65:ac:78:ab:e1:
        8a:9b:f8:9e:58:47:17:9a:2f:3f:0b:b5:af:0e:78:22:
        05:36:41:76:5d:8e:1c:e3:03:c9:e6:14:23:bd:74:02:
        77:84:0e:9d:ad:ac:4d:f1:ec:37:0d:d1:f1:62:88:c6:
        55:b3:86:b6:e4:4b:42:7e:25:78:06:d2:70:c3:0c:2d:
        8e:76:72:4d:77:3f:54:d2:c9:1c:ff:63:6c:a1:0c:48:
        10:80:07:0b:56:75:45:73:f3:b7:fc:0b:f9:e4:b6:1c:
        e7:c5:0d:00:fe:d8:b3:bc:fc:8f:d2:33:0f:6d:61:03:
        83:2a:90:5e:4e:54:90:bc:b1:ef:48:28:30:ac:e9:be:
        7e:3b:4f:ed:32:c2:74:08:ed:c8:c3:f5:8e:01:05:cb:
        a4:ea:dd:b0:f4:f8:86:45:55:ae:55:98:89:2f:51:74:
        18:d6:4a:66:4b:58:cc:f7:55:53:3a:11:da:ec:6a:df:
        e6:ed:23:ce:bc:e9:5c:38:e7:82:47:6b:c8:93:e8:3f:
        a4:e8:85:ac:22:44:6f:dc:f1:0d:2a:fc:39:13:2b:35:
        2f:76:85:22:3e:b0:ba:89:ae:fc:f1:f6:a8:43:e4:cc:
        7e:71:da:f1:6d:59:57:99:bd:f4:ef:d4:b6:a2:95:fc
    Fingerprint (SHA-256):
        BB:C3:77:08:0F:D4:10:36:10:40:85:E3:8B:C1:C9:7B:E9:47:33:81:4B:81:42:F5:0D:98:E1:D3:B7:57:D6:E4
    Fingerprint (SHA1):
        37:7D:CF:4D:E8:50:76:8F:8A:62:D4:A6:53:65:63:8A:14:4E:25:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12125: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154702 (0x1dee45ce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:48:46 2017
            Not After : Mon May 02 15:48:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:f1:99:bf:7f:cf:cb:26:9f:d9:ba:35:3e:db:2b:9f:
                    9e:31:5e:b9:bb:49:b1:c7:e3:6b:36:87:de:6f:dd:85:
                    b6:d2:43:90:7f:36:a6:15:b7:55:8e:ee:55:6b:c1:2d:
                    f7:92:58:80:3b:b7:94:4c:4a:23:e2:73:f4:de:ff:ea:
                    27:77:5f:96:69:1a:89:a8:25:2d:e9:30:bf:ca:53:21:
                    04:bc:7b:56:b0:2f:3f:4f:24:5c:bf:f4:f5:ce:09:fd:
                    9a:38:b5:dd:77:22:1d:5b:82:05:ea:2d:d4:b4:e9:4d:
                    43:f1:48:61:da:fb:6e:db:a4:27:00:5d:43:ab:47:3f:
                    3c:49:36:77:f9:45:25:e5:d3:09:55:1a:c6:be:5d:a1:
                    08:32:46:4c:18:a0:a0:14:43:64:39:7b:90:57:2b:7d:
                    5f:c7:c4:5f:b8:7e:8b:06:92:b7:b4:d8:98:7e:b2:47:
                    8b:c6:4a:b3:18:c9:f5:11:34:8a:e1:b6:fe:c5:c8:25:
                    82:6f:0f:dd:fa:3b:a8:9a:ab:93:0e:f3:d1:89:bc:53:
                    0d:fe:f5:d0:3f:7c:35:8f:d6:6b:06:56:8d:a7:5a:cf:
                    f5:3c:53:af:e3:e1:60:24:0d:b5:db:0a:87:d1:5f:1e:
                    f6:d5:d7:fa:27:4e:d1:25:96:4f:f3:9c:89:4c:9f:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:5b:6e:a8:7b:dc:4d:cd:04:3d:42:fa:a2:77:ff:ca:
        05:7b:89:d3:14:73:6e:93:2d:57:db:20:4a:03:ed:f2:
        36:b6:ba:8f:79:42:11:88:df:fd:92:91:34:ef:bc:1c:
        0e:94:d2:b8:15:0d:86:aa:26:d0:fd:38:30:e2:10:72:
        48:a8:bd:aa:24:24:cb:d7:3c:eb:c6:fc:78:c4:87:1f:
        02:48:2a:d9:bb:53:25:ca:96:73:a1:c0:c8:b8:b3:f6:
        fc:5c:e9:3d:d4:f4:7e:4b:9e:ed:82:28:48:18:9d:8e:
        97:2a:50:56:4a:a0:d9:75:64:92:f3:4d:93:25:c6:66:
        1b:96:e4:c5:02:57:b9:88:2d:90:bb:15:1f:80:48:94:
        dc:b7:ea:cc:45:e2:3e:93:84:39:ac:18:58:b8:e3:41:
        01:00:40:2e:5f:88:0c:d1:7e:ac:8f:56:ab:e9:0f:94:
        68:33:3a:d9:e8:0d:b3:37:d4:a3:eb:7e:8b:40:56:0d:
        f5:e5:2b:32:31:df:bd:f1:2b:3b:ba:fa:63:3a:b8:01:
        af:aa:36:c4:fc:a2:49:60:77:13:ed:2e:ab:5e:17:73:
        01:98:1f:98:99:96:ff:ec:91:1d:e1:99:a5:c5:da:f3:
        d0:0b:9e:b0:b3:af:0d:39:a0:70:cc:67:d5:79:65:f2
    Fingerprint (SHA-256):
        4F:2D:6A:4C:62:B4:27:B6:A5:D5:E6:70:A3:A8:04:BF:43:F5:5E:A3:B3:1C:CD:D3:0E:FA:8F:93:DF:AF:C8:F0
    Fingerprint (SHA1):
        4D:D5:F3:A6:65:31:B8:52:A2:BA:A0:BC:60:56:6D:F1:87:D4:CB:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12126: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154700 (0x1dee45cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:48:45 2017
            Not After : Mon May 02 15:48:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b8:75:16:5a:2a:d6:ac:82:47:90:4d:83:a3:a7:83:
                    31:27:8a:31:ef:d3:89:57:b2:36:15:bf:9e:c7:c4:43:
                    7e:a4:3e:9d:97:4a:53:6f:94:87:b1:88:15:5a:e7:c8:
                    c4:7c:86:df:4d:ce:ec:86:ac:0c:d6:7b:87:d9:40:52:
                    11:e0:b7:5b:82:5d:3c:bb:5c:f4:c3:58:06:48:ca:0f:
                    74:07:6c:9a:7a:55:ef:e0:6b:43:d5:34:a0:d6:fe:7e:
                    4f:70:89:05:9f:e4:54:05:ff:0b:56:f7:79:f8:72:3d:
                    a2:7d:ff:80:05:11:32:99:7e:52:65:c9:7f:10:f1:f4:
                    55:e1:2b:83:75:18:90:68:45:39:29:5c:20:ba:79:76:
                    4e:0d:3e:c3:b5:4d:e9:f5:07:63:8f:9b:a6:0d:26:0d:
                    99:f8:05:ae:3c:1d:f2:cd:5c:5f:51:56:8c:8f:41:8e:
                    03:7b:5a:16:5d:8b:f2:0d:5c:46:42:42:13:ff:ab:40:
                    ce:85:79:55:ad:a0:1b:5d:b6:e4:6e:40:4e:64:1c:2b:
                    9a:98:16:35:93:89:34:bc:72:b3:f6:84:97:ae:69:bc:
                    2c:bf:45:c3:e8:3c:2c:ae:cf:49:28:63:f4:87:3f:b2:
                    42:a4:61:f3:6d:4b:65:f2:2c:27:3f:82:3b:e7:a5:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:2e:84:0c:34:fa:52:83:0d:2e:f3:65:ac:78:ab:e1:
        8a:9b:f8:9e:58:47:17:9a:2f:3f:0b:b5:af:0e:78:22:
        05:36:41:76:5d:8e:1c:e3:03:c9:e6:14:23:bd:74:02:
        77:84:0e:9d:ad:ac:4d:f1:ec:37:0d:d1:f1:62:88:c6:
        55:b3:86:b6:e4:4b:42:7e:25:78:06:d2:70:c3:0c:2d:
        8e:76:72:4d:77:3f:54:d2:c9:1c:ff:63:6c:a1:0c:48:
        10:80:07:0b:56:75:45:73:f3:b7:fc:0b:f9:e4:b6:1c:
        e7:c5:0d:00:fe:d8:b3:bc:fc:8f:d2:33:0f:6d:61:03:
        83:2a:90:5e:4e:54:90:bc:b1:ef:48:28:30:ac:e9:be:
        7e:3b:4f:ed:32:c2:74:08:ed:c8:c3:f5:8e:01:05:cb:
        a4:ea:dd:b0:f4:f8:86:45:55:ae:55:98:89:2f:51:74:
        18:d6:4a:66:4b:58:cc:f7:55:53:3a:11:da:ec:6a:df:
        e6:ed:23:ce:bc:e9:5c:38:e7:82:47:6b:c8:93:e8:3f:
        a4:e8:85:ac:22:44:6f:dc:f1:0d:2a:fc:39:13:2b:35:
        2f:76:85:22:3e:b0:ba:89:ae:fc:f1:f6:a8:43:e4:cc:
        7e:71:da:f1:6d:59:57:99:bd:f4:ef:d4:b6:a2:95:fc
    Fingerprint (SHA-256):
        BB:C3:77:08:0F:D4:10:36:10:40:85:E3:8B:C1:C9:7B:E9:47:33:81:4B:81:42:F5:0D:98:E1:D3:B7:57:D6:E4
    Fingerprint (SHA1):
        37:7D:CF:4D:E8:50:76:8F:8A:62:D4:A6:53:65:63:8A:14:4E:25:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12127: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #12128: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154700 (0x1dee45cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:48:45 2017
            Not After : Mon May 02 15:48:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b8:75:16:5a:2a:d6:ac:82:47:90:4d:83:a3:a7:83:
                    31:27:8a:31:ef:d3:89:57:b2:36:15:bf:9e:c7:c4:43:
                    7e:a4:3e:9d:97:4a:53:6f:94:87:b1:88:15:5a:e7:c8:
                    c4:7c:86:df:4d:ce:ec:86:ac:0c:d6:7b:87:d9:40:52:
                    11:e0:b7:5b:82:5d:3c:bb:5c:f4:c3:58:06:48:ca:0f:
                    74:07:6c:9a:7a:55:ef:e0:6b:43:d5:34:a0:d6:fe:7e:
                    4f:70:89:05:9f:e4:54:05:ff:0b:56:f7:79:f8:72:3d:
                    a2:7d:ff:80:05:11:32:99:7e:52:65:c9:7f:10:f1:f4:
                    55:e1:2b:83:75:18:90:68:45:39:29:5c:20:ba:79:76:
                    4e:0d:3e:c3:b5:4d:e9:f5:07:63:8f:9b:a6:0d:26:0d:
                    99:f8:05:ae:3c:1d:f2:cd:5c:5f:51:56:8c:8f:41:8e:
                    03:7b:5a:16:5d:8b:f2:0d:5c:46:42:42:13:ff:ab:40:
                    ce:85:79:55:ad:a0:1b:5d:b6:e4:6e:40:4e:64:1c:2b:
                    9a:98:16:35:93:89:34:bc:72:b3:f6:84:97:ae:69:bc:
                    2c:bf:45:c3:e8:3c:2c:ae:cf:49:28:63:f4:87:3f:b2:
                    42:a4:61:f3:6d:4b:65:f2:2c:27:3f:82:3b:e7:a5:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:2e:84:0c:34:fa:52:83:0d:2e:f3:65:ac:78:ab:e1:
        8a:9b:f8:9e:58:47:17:9a:2f:3f:0b:b5:af:0e:78:22:
        05:36:41:76:5d:8e:1c:e3:03:c9:e6:14:23:bd:74:02:
        77:84:0e:9d:ad:ac:4d:f1:ec:37:0d:d1:f1:62:88:c6:
        55:b3:86:b6:e4:4b:42:7e:25:78:06:d2:70:c3:0c:2d:
        8e:76:72:4d:77:3f:54:d2:c9:1c:ff:63:6c:a1:0c:48:
        10:80:07:0b:56:75:45:73:f3:b7:fc:0b:f9:e4:b6:1c:
        e7:c5:0d:00:fe:d8:b3:bc:fc:8f:d2:33:0f:6d:61:03:
        83:2a:90:5e:4e:54:90:bc:b1:ef:48:28:30:ac:e9:be:
        7e:3b:4f:ed:32:c2:74:08:ed:c8:c3:f5:8e:01:05:cb:
        a4:ea:dd:b0:f4:f8:86:45:55:ae:55:98:89:2f:51:74:
        18:d6:4a:66:4b:58:cc:f7:55:53:3a:11:da:ec:6a:df:
        e6:ed:23:ce:bc:e9:5c:38:e7:82:47:6b:c8:93:e8:3f:
        a4:e8:85:ac:22:44:6f:dc:f1:0d:2a:fc:39:13:2b:35:
        2f:76:85:22:3e:b0:ba:89:ae:fc:f1:f6:a8:43:e4:cc:
        7e:71:da:f1:6d:59:57:99:bd:f4:ef:d4:b6:a2:95:fc
    Fingerprint (SHA-256):
        BB:C3:77:08:0F:D4:10:36:10:40:85:E3:8B:C1:C9:7B:E9:47:33:81:4B:81:42:F5:0D:98:E1:D3:B7:57:D6:E4
    Fingerprint (SHA1):
        37:7D:CF:4D:E8:50:76:8F:8A:62:D4:A6:53:65:63:8A:14:4E:25:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12129: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154702 (0x1dee45ce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:48:46 2017
            Not After : Mon May 02 15:48:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:f1:99:bf:7f:cf:cb:26:9f:d9:ba:35:3e:db:2b:9f:
                    9e:31:5e:b9:bb:49:b1:c7:e3:6b:36:87:de:6f:dd:85:
                    b6:d2:43:90:7f:36:a6:15:b7:55:8e:ee:55:6b:c1:2d:
                    f7:92:58:80:3b:b7:94:4c:4a:23:e2:73:f4:de:ff:ea:
                    27:77:5f:96:69:1a:89:a8:25:2d:e9:30:bf:ca:53:21:
                    04:bc:7b:56:b0:2f:3f:4f:24:5c:bf:f4:f5:ce:09:fd:
                    9a:38:b5:dd:77:22:1d:5b:82:05:ea:2d:d4:b4:e9:4d:
                    43:f1:48:61:da:fb:6e:db:a4:27:00:5d:43:ab:47:3f:
                    3c:49:36:77:f9:45:25:e5:d3:09:55:1a:c6:be:5d:a1:
                    08:32:46:4c:18:a0:a0:14:43:64:39:7b:90:57:2b:7d:
                    5f:c7:c4:5f:b8:7e:8b:06:92:b7:b4:d8:98:7e:b2:47:
                    8b:c6:4a:b3:18:c9:f5:11:34:8a:e1:b6:fe:c5:c8:25:
                    82:6f:0f:dd:fa:3b:a8:9a:ab:93:0e:f3:d1:89:bc:53:
                    0d:fe:f5:d0:3f:7c:35:8f:d6:6b:06:56:8d:a7:5a:cf:
                    f5:3c:53:af:e3:e1:60:24:0d:b5:db:0a:87:d1:5f:1e:
                    f6:d5:d7:fa:27:4e:d1:25:96:4f:f3:9c:89:4c:9f:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:5b:6e:a8:7b:dc:4d:cd:04:3d:42:fa:a2:77:ff:ca:
        05:7b:89:d3:14:73:6e:93:2d:57:db:20:4a:03:ed:f2:
        36:b6:ba:8f:79:42:11:88:df:fd:92:91:34:ef:bc:1c:
        0e:94:d2:b8:15:0d:86:aa:26:d0:fd:38:30:e2:10:72:
        48:a8:bd:aa:24:24:cb:d7:3c:eb:c6:fc:78:c4:87:1f:
        02:48:2a:d9:bb:53:25:ca:96:73:a1:c0:c8:b8:b3:f6:
        fc:5c:e9:3d:d4:f4:7e:4b:9e:ed:82:28:48:18:9d:8e:
        97:2a:50:56:4a:a0:d9:75:64:92:f3:4d:93:25:c6:66:
        1b:96:e4:c5:02:57:b9:88:2d:90:bb:15:1f:80:48:94:
        dc:b7:ea:cc:45:e2:3e:93:84:39:ac:18:58:b8:e3:41:
        01:00:40:2e:5f:88:0c:d1:7e:ac:8f:56:ab:e9:0f:94:
        68:33:3a:d9:e8:0d:b3:37:d4:a3:eb:7e:8b:40:56:0d:
        f5:e5:2b:32:31:df:bd:f1:2b:3b:ba:fa:63:3a:b8:01:
        af:aa:36:c4:fc:a2:49:60:77:13:ed:2e:ab:5e:17:73:
        01:98:1f:98:99:96:ff:ec:91:1d:e1:99:a5:c5:da:f3:
        d0:0b:9e:b0:b3:af:0d:39:a0:70:cc:67:d5:79:65:f2
    Fingerprint (SHA-256):
        4F:2D:6A:4C:62:B4:27:B6:A5:D5:E6:70:A3:A8:04:BF:43:F5:5E:A3:B3:1C:CD:D3:0E:FA:8F:93:DF:AF:C8:F0
    Fingerprint (SHA1):
        4D:D5:F3:A6:65:31:B8:52:A2:BA:A0:BC:60:56:6D:F1:87:D4:CB:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12130: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #12131: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #12132: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #12133: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154700 (0x1dee45cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:48:45 2017
            Not After : Mon May 02 15:48:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b8:75:16:5a:2a:d6:ac:82:47:90:4d:83:a3:a7:83:
                    31:27:8a:31:ef:d3:89:57:b2:36:15:bf:9e:c7:c4:43:
                    7e:a4:3e:9d:97:4a:53:6f:94:87:b1:88:15:5a:e7:c8:
                    c4:7c:86:df:4d:ce:ec:86:ac:0c:d6:7b:87:d9:40:52:
                    11:e0:b7:5b:82:5d:3c:bb:5c:f4:c3:58:06:48:ca:0f:
                    74:07:6c:9a:7a:55:ef:e0:6b:43:d5:34:a0:d6:fe:7e:
                    4f:70:89:05:9f:e4:54:05:ff:0b:56:f7:79:f8:72:3d:
                    a2:7d:ff:80:05:11:32:99:7e:52:65:c9:7f:10:f1:f4:
                    55:e1:2b:83:75:18:90:68:45:39:29:5c:20:ba:79:76:
                    4e:0d:3e:c3:b5:4d:e9:f5:07:63:8f:9b:a6:0d:26:0d:
                    99:f8:05:ae:3c:1d:f2:cd:5c:5f:51:56:8c:8f:41:8e:
                    03:7b:5a:16:5d:8b:f2:0d:5c:46:42:42:13:ff:ab:40:
                    ce:85:79:55:ad:a0:1b:5d:b6:e4:6e:40:4e:64:1c:2b:
                    9a:98:16:35:93:89:34:bc:72:b3:f6:84:97:ae:69:bc:
                    2c:bf:45:c3:e8:3c:2c:ae:cf:49:28:63:f4:87:3f:b2:
                    42:a4:61:f3:6d:4b:65:f2:2c:27:3f:82:3b:e7:a5:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:2e:84:0c:34:fa:52:83:0d:2e:f3:65:ac:78:ab:e1:
        8a:9b:f8:9e:58:47:17:9a:2f:3f:0b:b5:af:0e:78:22:
        05:36:41:76:5d:8e:1c:e3:03:c9:e6:14:23:bd:74:02:
        77:84:0e:9d:ad:ac:4d:f1:ec:37:0d:d1:f1:62:88:c6:
        55:b3:86:b6:e4:4b:42:7e:25:78:06:d2:70:c3:0c:2d:
        8e:76:72:4d:77:3f:54:d2:c9:1c:ff:63:6c:a1:0c:48:
        10:80:07:0b:56:75:45:73:f3:b7:fc:0b:f9:e4:b6:1c:
        e7:c5:0d:00:fe:d8:b3:bc:fc:8f:d2:33:0f:6d:61:03:
        83:2a:90:5e:4e:54:90:bc:b1:ef:48:28:30:ac:e9:be:
        7e:3b:4f:ed:32:c2:74:08:ed:c8:c3:f5:8e:01:05:cb:
        a4:ea:dd:b0:f4:f8:86:45:55:ae:55:98:89:2f:51:74:
        18:d6:4a:66:4b:58:cc:f7:55:53:3a:11:da:ec:6a:df:
        e6:ed:23:ce:bc:e9:5c:38:e7:82:47:6b:c8:93:e8:3f:
        a4:e8:85:ac:22:44:6f:dc:f1:0d:2a:fc:39:13:2b:35:
        2f:76:85:22:3e:b0:ba:89:ae:fc:f1:f6:a8:43:e4:cc:
        7e:71:da:f1:6d:59:57:99:bd:f4:ef:d4:b6:a2:95:fc
    Fingerprint (SHA-256):
        BB:C3:77:08:0F:D4:10:36:10:40:85:E3:8B:C1:C9:7B:E9:47:33:81:4B:81:42:F5:0D:98:E1:D3:B7:57:D6:E4
    Fingerprint (SHA1):
        37:7D:CF:4D:E8:50:76:8F:8A:62:D4:A6:53:65:63:8A:14:4E:25:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12134: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154704 (0x1dee45d0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:48:47 2017
            Not After : Mon May 02 15:48:47 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:13:d2:84:c5:44:60:ea:3d:98:00:4e:d4:37:92:fc:
                    ba:9d:ec:dc:38:d0:e5:c9:de:c4:86:97:7e:fd:b5:cd:
                    28:43:cc:d4:c3:cd:01:57:73:6d:5c:20:1a:e7:93:89:
                    7c:c2:e3:38:24:55:a2:bf:8a:1a:a5:99:1f:49:9c:8f:
                    00:06:f7:ce:6c:80:71:83:6d:65:39:82:31:32:74:33:
                    ab:42:84:e5:37:e4:7d:07:4f:cd:d7:82:81:7c:f9:e6:
                    7c:0d:f5:43:90:88:07:56:0c:d1:3b:9a:2d:5a:d6:9b:
                    d5:f8:72:6a:d7:91:e5:5b:0d:55:64:80:ca:ef:3d:af:
                    2a:72:53:87:57:3e:24:c3:fa:b1:39:02:24:35:36:f1:
                    6e:a4:e2:a7:ad:7f:a6:39:01:de:d0:a4:a5:fd:6a:09:
                    88:dc:7f:12:f6:9f:78:aa:e5:a3:80:4b:2e:62:b8:cb:
                    8b:8d:78:df:80:44:43:c7:f1:de:04:1a:a8:5f:d8:77:
                    82:88:cf:99:f5:ce:e5:e5:7b:4f:27:bc:5e:4c:84:19:
                    55:89:93:09:b1:c9:d1:23:d8:4e:05:9a:2c:a2:20:b4:
                    98:29:73:51:68:66:ec:95:eb:1a:53:58:c5:c7:af:3b:
                    9c:c9:cf:2b:42:da:1f:68:4f:9f:ad:27:ea:06:45:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d4:dd:50:88:8a:38:01:16:88:23:c1:3d:55:f0:8b:87:
        36:b9:3e:e5:9c:67:dd:6f:44:95:62:6a:b0:de:71:b8:
        ce:5f:78:75:fb:7f:b3:4c:ce:c2:7c:e6:2d:b1:2e:9d:
        38:94:b4:3f:fc:24:1f:52:51:83:08:44:d1:cd:8a:d0:
        9d:09:89:23:4d:39:0e:c9:d5:3d:60:94:34:0c:21:db:
        11:3d:e7:60:66:4d:7d:c1:cd:1b:7a:e2:9b:81:10:a1:
        5c:20:2f:0d:d9:e1:3e:da:7a:b8:cf:3b:99:b4:c1:4d:
        38:30:12:03:50:21:9e:f4:86:9d:b7:bf:59:6b:0d:48:
        4f:bc:96:08:34:b3:e1:e4:f4:ac:cb:9f:c8:d7:46:2d:
        3f:79:73:e9:86:1e:33:8d:9e:58:83:fe:e0:7c:bc:92:
        05:a1:49:c7:0f:7a:9a:fb:e7:8e:a7:48:21:11:e5:ff:
        94:c5:b9:42:cb:88:f3:72:49:58:b4:e9:1c:fd:f4:15:
        f3:f7:44:0f:c7:52:16:c9:ac:eb:a6:34:bc:ab:b8:86:
        8a:f2:6f:37:2b:6a:6a:e8:f7:fb:37:82:72:60:ef:72:
        48:ef:76:f6:79:a9:a5:2a:3e:b1:20:55:2b:8c:bc:d3:
        ed:48:23:98:aa:30:33:8e:41:86:5d:d6:1b:06:19:61
    Fingerprint (SHA-256):
        FA:C2:9A:6A:85:E5:95:F4:72:24:1B:4D:CD:12:04:C5:A3:41:F6:EC:17:C5:40:09:B5:EF:56:72:CB:66:78:43
    Fingerprint (SHA1):
        E8:36:B1:1F:65:02:0C:28:51:E2:C9:25:41:BE:FB:EE:F6:DB:1B:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #12135: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154700 (0x1dee45cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:48:45 2017
            Not After : Mon May 02 15:48:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b8:75:16:5a:2a:d6:ac:82:47:90:4d:83:a3:a7:83:
                    31:27:8a:31:ef:d3:89:57:b2:36:15:bf:9e:c7:c4:43:
                    7e:a4:3e:9d:97:4a:53:6f:94:87:b1:88:15:5a:e7:c8:
                    c4:7c:86:df:4d:ce:ec:86:ac:0c:d6:7b:87:d9:40:52:
                    11:e0:b7:5b:82:5d:3c:bb:5c:f4:c3:58:06:48:ca:0f:
                    74:07:6c:9a:7a:55:ef:e0:6b:43:d5:34:a0:d6:fe:7e:
                    4f:70:89:05:9f:e4:54:05:ff:0b:56:f7:79:f8:72:3d:
                    a2:7d:ff:80:05:11:32:99:7e:52:65:c9:7f:10:f1:f4:
                    55:e1:2b:83:75:18:90:68:45:39:29:5c:20:ba:79:76:
                    4e:0d:3e:c3:b5:4d:e9:f5:07:63:8f:9b:a6:0d:26:0d:
                    99:f8:05:ae:3c:1d:f2:cd:5c:5f:51:56:8c:8f:41:8e:
                    03:7b:5a:16:5d:8b:f2:0d:5c:46:42:42:13:ff:ab:40:
                    ce:85:79:55:ad:a0:1b:5d:b6:e4:6e:40:4e:64:1c:2b:
                    9a:98:16:35:93:89:34:bc:72:b3:f6:84:97:ae:69:bc:
                    2c:bf:45:c3:e8:3c:2c:ae:cf:49:28:63:f4:87:3f:b2:
                    42:a4:61:f3:6d:4b:65:f2:2c:27:3f:82:3b:e7:a5:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:2e:84:0c:34:fa:52:83:0d:2e:f3:65:ac:78:ab:e1:
        8a:9b:f8:9e:58:47:17:9a:2f:3f:0b:b5:af:0e:78:22:
        05:36:41:76:5d:8e:1c:e3:03:c9:e6:14:23:bd:74:02:
        77:84:0e:9d:ad:ac:4d:f1:ec:37:0d:d1:f1:62:88:c6:
        55:b3:86:b6:e4:4b:42:7e:25:78:06:d2:70:c3:0c:2d:
        8e:76:72:4d:77:3f:54:d2:c9:1c:ff:63:6c:a1:0c:48:
        10:80:07:0b:56:75:45:73:f3:b7:fc:0b:f9:e4:b6:1c:
        e7:c5:0d:00:fe:d8:b3:bc:fc:8f:d2:33:0f:6d:61:03:
        83:2a:90:5e:4e:54:90:bc:b1:ef:48:28:30:ac:e9:be:
        7e:3b:4f:ed:32:c2:74:08:ed:c8:c3:f5:8e:01:05:cb:
        a4:ea:dd:b0:f4:f8:86:45:55:ae:55:98:89:2f:51:74:
        18:d6:4a:66:4b:58:cc:f7:55:53:3a:11:da:ec:6a:df:
        e6:ed:23:ce:bc:e9:5c:38:e7:82:47:6b:c8:93:e8:3f:
        a4:e8:85:ac:22:44:6f:dc:f1:0d:2a:fc:39:13:2b:35:
        2f:76:85:22:3e:b0:ba:89:ae:fc:f1:f6:a8:43:e4:cc:
        7e:71:da:f1:6d:59:57:99:bd:f4:ef:d4:b6:a2:95:fc
    Fingerprint (SHA-256):
        BB:C3:77:08:0F:D4:10:36:10:40:85:E3:8B:C1:C9:7B:E9:47:33:81:4B:81:42:F5:0D:98:E1:D3:B7:57:D6:E4
    Fingerprint (SHA1):
        37:7D:CF:4D:E8:50:76:8F:8A:62:D4:A6:53:65:63:8A:14:4E:25:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12136: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #12137: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #12138: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #12139: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #12140: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #12141: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154705 (0x1dee45d1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:48:48 2017
            Not After : Mon May 02 15:48:48 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:31:8b:0c:2c:f6:92:aa:36:47:e9:d5:f5:55:2d:6a:
                    2e:5b:77:01:40:da:43:8b:8c:6a:77:01:13:2f:ea:cc:
                    46:52:7c:86:1b:61:6c:64:fd:fe:02:9a:7e:38:6b:62:
                    70:43:b6:dc:b8:04:95:0c:f5:0e:f5:45:e4:1a:1d:9e:
                    3a:2d:6c:cb:9d:07:0a:0c:3b:aa:9a:ef:9f:17:67:4d:
                    cd:80:ea:b9:14:91:ec:09:e9:e7:04:78:59:77:5c:46:
                    b2:e4:69:a3:b1:91:01:8a:8f:cd:31:4c:7e:c1:c5:31:
                    13:46:60:ef:1c:73:78:e2:7c:b8:f0:a4:42:9c:c2:74:
                    e5:ea:1f:db:06:32:d7:36:96:f0:75:b9:d8:e8:de:fd:
                    50:15:6f:62:da:25:cd:bb:78:1d:c8:b6:15:b0:ac:de:
                    50:4c:c0:30:7a:a0:0f:ee:98:0d:d8:0b:34:ec:2c:c6:
                    a3:89:1f:f3:4b:1d:04:39:9b:6a:f5:41:7b:1d:3d:02:
                    96:d8:d4:d4:cb:eb:36:3f:8a:e4:49:12:1b:d0:8c:af:
                    30:be:8d:24:86:04:3f:c3:9e:61:a7:cf:4c:1c:62:7f:
                    c3:25:07:71:d2:41:09:72:3a:5e:3d:9f:c7:cb:42:67:
                    49:cb:fe:2d:c9:01:68:a2:a4:d2:45:50:2c:ba:db:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:10:fd:22:8b:d1:00:82:b1:e8:72:bd:50:fb:c5:d9:
        ea:9c:37:34:85:d0:03:b6:f8:54:91:56:13:e2:69:bc:
        53:26:68:59:a7:eb:0b:a2:37:60:71:3a:bb:dc:07:14:
        f6:d1:0a:a3:66:f8:6e:dd:6b:fa:d2:1f:b8:d2:b4:06:
        4b:72:dd:30:2f:7c:2d:0a:e5:78:33:cb:f5:6b:8b:dc:
        63:fb:45:83:84:a7:05:c2:62:60:9f:8d:a7:c9:32:1f:
        b8:cb:41:37:ea:73:30:1b:d8:99:4f:e4:50:6b:6f:ef:
        f3:db:dc:01:1a:34:e2:2c:02:22:9f:4f:41:b5:54:d4:
        1e:3b:4e:02:a8:31:ec:3e:c1:f0:fd:01:52:cb:94:81:
        a6:03:02:bf:50:ee:fd:8a:e3:96:ad:98:16:eb:32:7a:
        f8:30:c6:1d:21:fc:4b:c4:dc:6b:f0:12:6e:0a:b5:57:
        8f:5b:2b:c8:98:a5:d9:c7:ae:c8:c5:de:25:bd:03:28:
        db:16:dc:0a:e1:e1:21:79:82:01:55:d1:77:4d:ec:54:
        69:ad:ea:e8:38:e4:30:3d:1d:25:e9:af:a2:86:44:44:
        ac:85:c6:ec:39:e7:cb:e3:1c:d4:52:37:cd:54:14:4a:
        98:cd:9f:b1:32:e5:2f:5e:6a:ef:d8:99:67:80:09:57
    Fingerprint (SHA-256):
        21:DC:98:41:C3:08:DA:E9:3D:33:41:F6:41:3A:C3:36:DE:48:87:35:7D:5D:99:70:8E:EA:3A:BC:CF:88:AE:1E
    Fingerprint (SHA1):
        B4:4D:FF:40:AD:A5:17:77:6B:96:57:C9:D2:41:4A:D3:69:56:B1:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12142: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #12143: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #12144: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #12145: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #12146: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12147: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12148: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12149: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12150: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12151: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12152: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12153: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12154: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12155: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12156: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12157: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12158: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12159: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12160: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12161: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12162: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12163: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12164: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12165: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 21411 at Tue May  2 15:48:53 UTC 2017
kill -USR1 21411
httpserv: normal termination
httpserv -b -p 9257 2>/dev/null;
httpserv with PID 21411 killed at Tue May  2 15:48:53 UTC 2017
TIMESTAMP chains END: Tue May  2 15:48:53 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:48:53 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:48:53 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #12166: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:48:53 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:48:53 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12167: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12168: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12169: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12170: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #12171: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #12172: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:48:54 UTC 2017
TIMESTAMP ec END: Tue May  2 15:48:54 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:48:54 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (1 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (1 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (1 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #12173: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #12174: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #12175: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #12176: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #12177: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #12178: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #12179: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #12180: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #12181: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #12182: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #12183: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #12184: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #12185: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #12186: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #12187: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #12188: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #12189: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #12190: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #12191: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:48:54 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:48:54 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #12192: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12193: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12194: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12195: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12196: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12197: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12198: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12199: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12200: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12201: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12202: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12203: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12204: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12205: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12206: create certificate: sign  - PASSED
ssl_gtest.sh: #12207: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:48:57 UTC 2017
SUMMARY:
========
NSS variables:
--------------
HOST=localhost
DOMSUF=localdomain
BUILD_OPT=1
USE_X32=
USE_64=1
NSS_CYCLES=""
NSS_TESTS="libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests"
NSS_SSL_TESTS="crl fips_normal normal_fips iopr policy"
NSS_SSL_RUN="cov auth stapling stress"
NSS_AIA_PATH=
NSS_AIA_HTTP=
NSS_AIA_OCSP=
IOPR_HOSTADDR_LIST=
PKITS_DATA=
Tests summary:
--------------
Passed:             12195
Failed:             0
Failed with core:   0
ASan failures:      0
Unknown status:     12
TinderboxPrint:Unknown: 12
~/build/BUILD/nss-3.29.1
+ popd
+ killall selfserv_9247
selfserv_9247: no process found
+ :
+ '[' x == x ']'
++ grep -c FAILED ./tests_results/security/localhost.1/output.log
+ TEST_FAILURES=0
+ GREP_EXIT_STATUS=1
okay: test suite detected no failures
test suite completed
+ '[' 1 -eq 1 ']'
+ echo 'okay: test suite detected no failures'
+ echo 'test suite completed'
+ exit 0
Processing files: nss-3.29.1-2.1.module_7e01f122.x86_64
Executing(%license): /bin/sh -e /var/tmp/rpm-tmp.CaYz2t
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ LICENSEDIR=/builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/licenses/nss
+ export LICENSEDIR
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/licenses/nss
+ cp -pr nss/COPYING /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64/usr/share/licenses/nss
+ exit 0
Provides: config(nss) = 3.29.1-2.1.module_7e01f122 libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.10.2)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.11.9)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.10)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.4)(64bit) libnss3.so(NSS_3.12.5)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.7)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.13.2)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.15.4)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.19)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.2.1)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.7.1)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssckbi.so()(64bit) libnssckbi.so(NSS_3.1)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.12.10)(64bit) libsmime3.so(NSS_3.12.2)(64bit) libsmime3.so(NSS_3.13)(64bit) libsmime3.so(NSS_3.15)(64bit) libsmime3.so(NSS_3.16)(64bit) libsmime3.so(NSS_3.18)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.2.1)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.4.1)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.7)(64bit) libsmime3.so(NSS_3.7.2)(64bit) libsmime3.so(NSS_3.8)(64bit) libsmime3.so(NSS_3.9)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.11.4)(64bit) libssl3.so(NSS_3.11.8)(64bit) libssl3.so(NSS_3.12.10)(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.2.1)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.21)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.23)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.28)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) nss = 3.29.1-2.1.module_7e01f122 nss(x86-64) = 3.29.1-2.1.module_7e01f122
Requires(interp): /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): /bin/sh /usr/sbin/update-alternatives
Requires(postun): /bin/sh /usr/sbin/update-alternatives
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.3)(64bit) libnssutil3.so(NSSUTIL_3.12.5)(64bit) libnssutil3.so(NSSUTIL_3.13)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libnssutil3.so(NSSUTIL_3.17.1)(64bit) libnssutil3.so(NSSUTIL_3.21)(64bit) libnssutil3.so(NSSUTIL_3.24)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Conflicts: firefox < 50.1.0-3 seamonkey < 2.46-2 thunderbird < 45.6.0-5 xulrunner < 44.0-9
Processing files: nss-tools-3.29.1-2.1.module_7e01f122.x86_64
Provides: nss-tools = 3.29.1-2.1.module_7e01f122 nss-tools(x86-64) = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.7)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libsoftokn3.so()(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: nss-sysinit-3.29.1-2.1.module_7e01f122.x86_64
Provides: libnsssysinit.so()(64bit) nss-sysinit = 3.29.1-2.1.module_7e01f122 nss-sysinit(x86-64) = 3.29.1-2.1.module_7e01f122 nss-system-init
Requires(interp): /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): coreutils sed
Requires: /bin/sh libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) rtld(GNU_HASH)
Processing files: nss-devel-3.29.1-2.1.module_7e01f122.x86_64
Provides: nss-devel = 3.29.1-2.1.module_7e01f122 nss-devel(x86-64) = 3.29.1-2.1.module_7e01f122 nss-static = 3.29.1-2.1.module_7e01f122 pkgconfig(nss) = 3.29.1
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: /bin/sh /usr/bin/pkg-config pkgconfig(nspr) >= 4.13.0 pkgconfig(nss-util) >= 3.29.1
Processing files: nss-pkcs11-devel-3.29.1-2.1.module_7e01f122.x86_64
Provides: nss-pkcs11-devel = 3.29.1-2.1.module_7e01f122 nss-pkcs11-devel(x86-64) = 3.29.1-2.1.module_7e01f122 nss-pkcs11-devel-static = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: nss-debuginfo-3.29.1-2.1.module_7e01f122.x86_64
Provides: nss-debuginfo = 3.29.1-2.1.module_7e01f122 nss-debuginfo(x86-64) = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Checking for unpackaged file(s): /usr/lib/rpm/check-files /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64
Wrote: /builddir/build/RPMS/nss-3.29.1-2.1.module_7e01f122.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-tools-3.29.1-2.1.module_7e01f122.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-sysinit-3.29.1-2.1.module_7e01f122.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-devel-3.29.1-2.1.module_7e01f122.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-pkcs11-devel-3.29.1-2.1.module_7e01f122.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-debuginfo-3.29.1-2.1.module_7e01f122.x86_64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.Zks76x
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.x86_64
+ exit 0
Child return code was: 0